]> git.ipfire.org Git - thirdparty/bind9.git/commit
projects / thirdparty / bind9.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(merge: aceaebe e9c23f5)
[9.18] chg: dev: Invalid NSEC3 can cause OOB read of the isdelegation() stack
authorOndřej Surý <ondrej@isc.org>
Tue, 24 Feb 2026 16:29:38 +0000 (17:29 +0100)
committerOndřej Surý <ondrej@isc.org>
Tue, 24 Feb 2026 16:29:38 +0000 (17:29 +0100)
commit97fd0c56e485ee686bd243288ca87e7a79b9aa72
tree35e2f9aaafb5ddf48a59d436e35a3a878b7d9f47tree | snapshot
parentaceaebe530e90dae39255a297bbfc4edc644b977commit | diff
parente9c23f598bfcb90e6a39eb418d8f30391e42b13bcommit | diff
[9.18] chg: dev: Invalid NSEC3 can cause OOB read of the isdelegation() stack

When .next_length is longer than NSEC3_MAX_HASH_LENGTH, it causes a
harmless out-of-bound read of the isdelegation() stack.  This has been
fixed.

Closes #5749

Backport of MR !11553

Merge branch 'backport-5749-fix-OOB-read-in-isdelegation-9.18' into 'bind-9.18'

See merge request isc-projects/bind9!11595
Mirror of https://gitlab.isc.org/isc-projects/bind9.git