Checkout
Lucas Holt
committed
on 30 Nov
ICMP buffer underwrite

The icmp_error routine allocates either an mbuf or a cluster depending on the
size of the data to be quoted in the I… Show more
ICMP buffer underwrite

The icmp_error routine allocates either an mbuf or a cluster depending on the

size of the data to be quoted in the ICMP reply, but the calculation failed

to account for additional padding on 64-bit platforms when using a

non-default sysctl value for net.inet.icmp.quotelen.

Show less