From: Evan Hunt Date: Sat, 14 May 2022 02:59:58 +0000 (-0700) Subject: prevent a possible buffer overflow in configuration check X-Git-Tag: v9.19.2~35^2 X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=921043b54161c7a3e6dc4036b038ca4dbc5fe472;p=thirdparty%2Fbind9.git prevent a possible buffer overflow in configuration check corrected code that could have allowed a buffer overfow while parsing named.conf. --- diff --git a/lib/bind9/check.c b/lib/bind9/check.c index 658daec76de..baacd29a840 100644 --- a/lib/bind9/check.c +++ b/lib/bind9/check.c @@ -3009,8 +3009,8 @@ check_zoneconf(const cfg_obj_t *zconfig, const cfg_obj_t *voptions, } else if (dns_name_isula(zname)) { ula = true; } - tmp += strlen(tmp); len -= strlen(tmp); + tmp += strlen(tmp); (void)snprintf(tmp, len, "%u/%s", zclass, (ztype == CFG_ZONE_INVIEW) ? target : (viewname != NULL) ? viewname @@ -3719,8 +3719,8 @@ check_zoneconf(const cfg_obj_t *zconfig, const cfg_obj_t *voptions, char *tmp = keydirbuf; size_t len = sizeof(keydirbuf); dns_name_format(zname, keydirbuf, sizeof(keydirbuf)); - tmp += strlen(tmp); len -= strlen(tmp); + tmp += strlen(tmp); (void)snprintf(tmp, len, "/%s", (dir == NULL) ? "(null)" : dir); tresult = keydirexist(zconfig, (const char *)keydirbuf, kaspname, keydirs, logctx, mctx);