)]}'
{
  "commit": "370b64a2ad38e43b4bed028960481bbf4192becd",
  "tree": "ebecb7f934a7058d582e52b5c64a21eb676ec994",
  "parents": [
    "a7f93f3e060fdb2dc7bf5ff4ed4563d4b689bc6c"
  ],
  "author": {
    "name": "Paul Jakma",
    "email": "paul.jakma@sun.com",
    "time": "Sat Dec 22 16:49:52 2007 +0000"
  },
  "committer": {
    "name": "Paul Jakma",
    "email": "paul.jakma@sun.com",
    "time": "Sat Dec 22 16:49:52 2007 +0000"
  },
  "message": "[bgpd] Fix number of DoS security issues, restricted to configured peers.\n\n2007-12-22 Paul Jakma \u003cpaul.jakma@sun.com\u003e\n\n\t* Fix series of vulnerabilities reported by \"Mu Security\n\t  Research Team\", where bgpd can be made to crash by sending\n\t  malformed packets - requires that bgpd be configured with a\n\t  session to the peer.\n\t* bgp_attr.c: (bgp_attr_as4_path) aspath_parse may fail, only\n\t  set the attribute flag indicating AS4_PATH if we actually managed\n\t  to parse one.\n\t  (bgp_attr_munge_as4_attrs) Assert was too general, it is possible\n\t  to receive AS4_AGGREGATOR before AGGREGATOR.\n\t  (bgp_attr_parse) Check that we have actually received the extra\n\t  byte of header for Extended-Length attributes.\n\t* bgp_attr.h: Fix BGP_ATTR_MIN_LEN to account for the length byte.\n\t* bgp_open.c: (cap_minsizes) Fix size of CAPABILITY_CODE_RESTART,\n\t  incorrect -2 left in place from a development version of as4-path\n\t  patch.\n\t* bgp_packet.c: (bgp_route_refresh_receive) ORF length parameter\n\t  needs to be properly sanity checked.\n\t* tests/bgp_capability_test.c: Test for empty capabilities.\n",
  "tree_diff": [
    {
      "type": "modify",
      "old_id": "3fa3837a3743d9827f7954263744595efb768b68",
      "old_mode": 33188,
      "old_path": "bgpd/ChangeLog",
      "new_id": "70bcc0fb98a31e14ecb8cee77d1246582fb16b7b",
      "new_mode": 33188,
      "new_path": "bgpd/ChangeLog"
    },
    {
      "type": "modify",
      "old_id": "b463b3c0fc36a3b6b29c984a5b752791caeb97d5",
      "old_mode": 33188,
      "old_path": "bgpd/bgp_attr.c",
      "new_id": "dd3cc965a907902db2b0d12533afee45e60555cf",
      "new_mode": 33188,
      "new_path": "bgpd/bgp_attr.c"
    },
    {
      "type": "modify",
      "old_id": "1af9ce30c8cbc458f2b374ea6e56c6040bfe0b4a",
      "old_mode": 33188,
      "old_path": "bgpd/bgp_attr.h",
      "new_id": "e152b9f42c210c08bcbdbabce605e0ac67b21560",
      "new_mode": 33188,
      "new_path": "bgpd/bgp_attr.h"
    },
    {
      "type": "modify",
      "old_id": "38431d4c63d91875c69663c7a466006a3160de8b",
      "old_mode": 33188,
      "old_path": "bgpd/bgp_open.c",
      "new_id": "1b13a458746e045adc17b88d64d3e5b1bb620116",
      "new_mode": 33188,
      "new_path": "bgpd/bgp_open.c"
    },
    {
      "type": "modify",
      "old_id": "1fa2fdfde988a7a99a71814e9899196e9320a68f",
      "old_mode": 33188,
      "old_path": "bgpd/bgp_packet.c",
      "new_id": "8319a8853b9633660ec3e99fe0d5c8ea7f5471a1",
      "new_mode": 33188,
      "new_path": "bgpd/bgp_packet.c"
    },
    {
      "type": "modify",
      "old_id": "94f587492b46b3e8705dcde28d4c358875d8c886",
      "old_mode": 33188,
      "old_path": "tests/ChangeLog",
      "new_id": "16412bdead5cd2a192468a4cc28efb26366706c9",
      "new_mode": 33188,
      "new_path": "tests/ChangeLog"
    },
    {
      "type": "modify",
      "old_id": "6771b57998e4485d5ea7a515f1bb0fb5c89ab717",
      "old_mode": 33188,
      "old_path": "tests/bgp_capability_test.c",
      "new_id": "0dbf4fb95615baf548d354e7f1d1b8f4f6eb4646",
      "new_mode": 33188,
      "new_path": "tests/bgp_capability_test.c"
    }
  ]
}