]> git.ipfire.org Git - thirdparty/bind9.git/commitdiff
projects / thirdparty / bind9.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | combined (merge: adbe035 b4b81de)
[CVE-2026-3591] sec: usr: Fix a stack use-after-return flaw in SIG(0) handling code
authorMichał Kępień <michal@isc.org>
Fri, 13 Mar 2026 13:31:40 +0000 (14:31 +0100)
committerMichał Kępień <michal@isc.org>
Fri, 13 Mar 2026 13:31:40 +0000 (14:31 +0100)
A stack use-after-return flaw in SIG(0) handling code could enable ACL
bypass and/or assertion failures in certain circumstances. This flaw has
been fixed.

ISC would like to thank Mcsky23 for bringing this vulnerability to our
attention.

Closes isc-projects/bind9#5754

Merge branch '5754-stack-use-after-free-sig0' into 'v9.21.20-release'

See merge request isc-private/bind9!920


Trivial merge
Mirror of https://gitlab.isc.org/isc-projects/bind9.git