2640. [security] A specially crafted update packet will cause named

author Mark Andrews <marka@isc.org>

Tue, 28 Jul 2009 13:57:27 +0000 (13:57 +0000)

committer Mark Andrews <marka@isc.org>

Tue, 28 Jul 2009 13:57:27 +0000 (13:57 +0000)
author Mark Andrews <marka@isc.org>
Tue, 28 Jul 2009 13:57:27 +0000 (13:57 +0000)
committer Mark Andrews <marka@isc.org>
Tue, 28 Jul 2009 13:57:27 +0000 (13:57 +0000)
diff --git a/CHANGES b/CHANGES

index 8d1f22b8e3811277a977592fb0c1e57d9b8dd0ca..b7852397253423360ed9971a58a4417bfdecd77a 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -1,3 +1,8 @@
+       --- 9.4.3-P3 released ---
+
+2640.  [security]      A specially crafted update packet will cause named
+                       to exit. [RT #20000]
+
         --- 9.4.3-P2 released ---
  
  2579.  [bug]           DNSSEC lookaside validation failed to handle unknown
diff --git a/bin/named/update.c b/bin/named/update.c

index fb6dec2f11e0e3dac34cc414ea3baeaf18b5b343..ddb426afb2021cb333bca704916cfd7c437cbefc 100644 (file)
--- a/bin/named/update.c
+++ b/bin/named/update.c
@@ -15,7 +15,7 @@
   * PERFORMANCE OF THIS SOFTWARE.
   */
  
-/* $Id: update.c,v 1.109.18.27 2008/02/07 03:16:08 marka Exp $ */
+/* $Id: update.c,v 1.109.18.27.4.1 2009/07/28 13:57:27 marka Exp $ */
  
  #include <config.h>
  
@@ -865,7 +865,11 @@ temp_check(isc_mem_t *mctx, dns_diff_t *temp, dns_db_t *db,
                         if (type == dns_rdatatype_rrsig ||
                             type == dns_rdatatype_sig)
                                 covers = dns_rdata_covers(&t->rdata);
-                       else
+                       else if (type == dns_rdatatype_any) {
+                               dns_db_detachnode(db, &node);
+                               dns_diff_clear(&trash);
+                               return (DNS_R_NXRRSET);
+                       } else
                                 covers = 0;
  
                         /*
diff --git a/version b/version

index 1eb5a692d92344a40bf4eb0d65c027593c735d8a..7b907241d137d58f7e9e9d6c60ff7130d30833e2 100644 (file)
--- a/version
+++ b/version
@@ -1,4 +1,4 @@
-# $Id: version,v 1.29.134.23.2.2 2009/03/17 02:23:49 marka Exp $
+# $Id: version,v 1.29.134.23.2.3 2009/07/28 13:57:27 marka Exp $
  #
  # This file must follow /bin/sh rules.  It is imported directly via
  # configure.
@@ -7,4 +7,4 @@ MAJORVER=9
  MINORVER=4
  PATCHVER=3
  RELEASETYPE=-P
-RELEASEVER=2
+RELEASEVER=3
author	Mark Andrews <marka@isc.org>
	Tue, 28 Jul 2009 13:57:27 +0000 (13:57 +0000)
committer	Mark Andrews <marka@isc.org>
	Tue, 28 Jul 2009 13:57:27 +0000 (13:57 +0000)
CHANGES		patch \| blob \| blame \| history
bin/named/update.c		patch \| blob \| blame \| history
version		patch \| blob \| blame \| history