]> git.ipfire.org Git - thirdparty/bind9.git/commit
projects / thirdparty / bind9.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 613a934) | patch
Fix stack Use-After-Return in SIG(0) handling
authorOndřej Surý <ondrej@isc.org>
Fri, 20 Feb 2026 08:46:32 +0000 (09:46 +0100)
committerMichał Kępień <michal@isc.org>
Fri, 13 Mar 2026 12:47:17 +0000 (13:47 +0100)
commitb4b81deed9930fdb59cfbf8179218621c812497b
tree0b299bda9073c201933db534c367c34fb699a2bctree | snapshot
parent613a93478ba7c406a9f111b3dad0fe1b36ee8a8dcommit | diff
Fix stack Use-After-Return in SIG(0) handling

The asynchronous SIG(0) handling improperly used srcaddr, and dstaddr
from the caller's stack and didn't attach to aclenv.  This could
possibly lead to ACL bypass as an invalid srcaddr could be matched or
possible assertion failure if the ACL environment would change between
the initial call and the SIG(0) processing due to the server
reconfiguration.  This has been fixed.
bin/named/server.c diff | blob | blame | history
Mirror of https://gitlab.isc.org/isc-projects/bind9.git