Fix the handling of connection requests on the failover port.

Previously a connection request from a source that wasn't
listed as a failover peer would cause the server to become
non-responsive.  [ISC-Bugs #22679]
CERT: VU#159528 CVE: CVE-2010-3616

diff --git a/RELNOTES b/RELNOTES
index 4dff15cae8d1c5ac115cda7216abc999bf482c3a..e43a2ffcba8b31ba855f3112471b2bc4ce3d3f94 100644 (file)
--- a/RELNOTES
+++ b/RELNOTES
@@ -140,6 +140,12 @@ work on other platforms. Please report any problems and suggested fixes to
   as a hex list.  We shall investigate other ways of displaying time
   values more usefully.  [ISC-Bugs #22626]
 
+! Fix the handling of connection requests on the failover port.
+  Previously a connection request from a source that wasn't
+  listed as a failover peer would cause the server to become
+  non-responsive.  [ISC-Bugs #22679]
+  CERT: VU#159528 CVE: CVE-2010-3616 
+
                        Changes since 4.2.0rc1
 
 - Documentation cleanup covering multiple tickets

diff --git a/server/failover.c b/server/failover.c
index b91aea5e570990950073c946ac39c709ae94ce02..1dbcc1d101e9c8836dc145ae3400b33b85847941 100644 (file)
--- a/server/failover.c
+++ b/server/failover.c
@@ -1101,7 +1101,8 @@ isc_result_t dhcp_failover_listener_signal (omapi_object_t *o,
        }               
        if (!state) {
                log_info ("failover: listener: no matching state");
-               return omapi_disconnect ((omapi_object_t *)c, 1);
+               omapi_disconnect ((omapi_object_t *)c, 1);
+               return(ISC_R_NOTFOUND);
        }
 
        obj = (dhcp_failover_link_t *)0;