git.ipfire.org Git - thirdparty/bind9.git/commit

]> git.ipfire.org Git - thirdparty/bind9.git/commit

projects / thirdparty / bind9.git / commit

author	Evan Hunt <each@isc.org>
	Thu, 4 Jan 2018 03:19:46 +0000 (19:19 -0800)
committer	Evan Hunt <each@isc.org>
	Thu, 4 Jan 2018 03:19:46 +0000 (19:19 -0800)
commit	7ff28f5befbee76048a23e504dcd3f9a44ce6209
tree	69a753de8dcfe184f4f51de34fb63ca3543daabc	tree \| snapshot
parent	cad79077bd5b2616bc4a7a6b3cbc0953bef8917f	commit \| diff

[v9_11] block validator deadlock and prevent use-after-free

4859. [bug] A loop was possible when attempting to validate
unsigned CNAME responses from secure zones;
this caused a delay in returning SERVFAIL and
also increased the chances of encountering
CVE-2017-3145. [RT #46839]

4858. [security] Addresses could be referenced after being freed
in resolver.c, causing an assertion failure.
(CVE-2017-3145) [RT #46839]

CHANGES		diff \| blob \| blame \| history
doc/arm/notes.xml		diff \| blob \| blame \| history
lib/dns/resolver.c		diff \| blob \| blame \| history
lib/dns/validator.c		diff \| blob \| blame \| history

Mirror of https://gitlab.isc.org/isc-projects/bind9.git

RSS Atom