]> git.ipfire.org Git - thirdparty/bind9.git/commitdiff
projects / thirdparty / bind9.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | combined (merge: 8c3b226 12d13ff)
[9.20] [CVE-2025-40775] sec: usr: Prevent assertion when processing TSIG algorithm
authorMichał Kępień <michal@isc.org>
Wed, 7 May 2025 11:46:13 +0000 (11:46 +0000)
committerMichał Kępień <michal@isc.org>
Wed, 7 May 2025 11:46:13 +0000 (11:46 +0000)
DNS messages that included a Transaction Signature (TSIG) containing an
invalid value in the algorithm field caused :iscman:`named` to crash
with an assertion failure. This has been fixed.  :cve:`2025-40775`

Backport of !793

See isc-projects/bind9#5300

Merge branch '5300-confidential-tsig-unknown-alg-bind-9.20' into 'v9.20.9-release'

See merge request isc-private/bind9!795


Trivial merge
Mirror of https://gitlab.isc.org/isc-projects/bind9.git