rpms / bind

Clone
Source Code
GIT

Blame SOURCES/bind99-CVE-2017-3136.patch

c4 c5 c5-plus c6 c6-plus c7 c7-alt c7-beta c7-sig-altarch-fasttrack c8 c8-beta c8s c9 c9-beta
  1.   c7-sig-altarch-fasttrack
  2.   SOURCES
  3.   bind99-CVE-2017-3136.patch
Blob History Raw
a3e803 
From d4d151cf34fab415e2823deada3433df7f475c71 Mon Sep 17 00:00:00 2001
a3e803 
From: =?UTF-8?q?Petr=20Men=C5=A1=C3=ADk?= <pemensik@redhat.com>
a3e803 
Date: Tue, 11 Apr 2017 16:19:08 +0200
a3e803 
Subject: [PATCH 1/3] 4575.   [security]      DNS64 with "break-dnssec yes;"
a3e803 
 can result in an                         assertion failure. (CVE-2017-3136)
a3e803 
 [RT #44653]
a3e803
a3e803 
---
a3e803 
 bin/named/query.c | 1 +
a3e803 
 1 file changed, 1 insertion(+)
a3e803
a3e803 
diff --git a/bin/named/query.c b/bin/named/query.c
a3e803 
index f60078b..6e988f5 100644
a3e803 
--- a/bin/named/query.c
a3e803 
+++ b/bin/named/query.c
a3e803 
@@ -7324,6 +7324,7 @@ query_find(ns_client_t *client, dns_fetchevent_t *event, dns_rdatatype_t qtype)
a3e803 
 			result = query_dns64(client, &fname, rdataset,
a3e803 
 					     sigrdataset, dbuf,
a3e803 
 					     DNS_SECTION_ANSWER);
a3e803 
+			noqname = NULL;
a3e803 
 			dns_rdataset_disassociate(rdataset);
a3e803 
 			dns_message_puttemprdataset(client->message, &rdataset);
a3e803 
 			if (result == ISC_R_NOMORE) {
a3e803 
--
a3e803 
2.9.3
a3e803

Powered by Pagure 5.13.3

SSH Hostkey/Fingerprint | Documentation