From: Michał Kępień Date: Fri, 13 Mar 2026 14:45:01 +0000 (+0100) Subject: [9.20] [CVE-2026-3591] sec: usr: Fix a stack use-after-return flaw in SIG(0) handling... X-Git-Tag: v9.20.21~2 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=aaaae0fd97e6bab8be0747d3261bf607d961b78b;p=thirdparty%2Fbind9.git [9.20] [CVE-2026-3591] sec: usr: Fix a stack use-after-return flaw in SIG(0) handling code A stack use-after-return flaw in SIG(0) handling code could enable ACL bypass and/or assertion failures in certain circumstances. This flaw has been fixed. ISC would like to thank Mcsky23 for bringing this vulnerability to our attention. Closes isc-projects/bind9#5754 Backport of !920 Merge branch '5754-stack-use-after-free-sig0-9.20' into 'v9.20.21-release' See merge request isc-private/bind9!931 --- aaaae0fd97e6bab8be0747d3261bf607d961b78b