forked from pool/c-ares
Adam Majer
6810ec45ff
Security:
* avoid read-heap-buffer-overflow in ares_parse_soa_reply found during
fuzzing
* Avoid theoretical buffer overflow in RC4 loop comparison
* Empty hquery->name could lead to invalid memory access
* ares_parse_{a,aaaa}_reply() could return a larger *naddrttls than was
passed in (bsc#1178882, CVE-2020-8277)
Changes:
* Update help information for adig, acountry, and ahost
* Test Suite now uses dynamic system-assigned ports rather than hardcoded
ports to prevent failures in containers
* Detect remote DNS server does not support EDNS using rules from RFC 6891
* Source tree has been reorganized to use a more modern layout
* Allow parsing of CAA Resource Record
Bug fixes:
* readaddrinfo bad sizeof()
* Test cases should honor HAVE_WRITEV flag, not depend on WIN32
* FQDN with trailing period should be queried first
* ares_getaddrinfo() was returning members of the struct as garbage values if
unset, and was not honoring ai_socktype and ai_protocol hints.
* ares_gethostbyname() with AF_UNSPEC and an ip address would fail
* Properly document ares_set_local_ip4() uses host byte order
For details, see https://c-ares.haxx.se/changelog.html
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/c-ares?expand=0&rev=24
|
||
|---|---|---|
| _multibuild | ||
| .gitattributes | ||
| .gitignore | ||
| 0001-Use-RPM-compiler-options.patch | ||
| baselibs.conf | ||
| c-ares-1.17.0.tar.gz | ||
| c-ares-1.17.0.tar.gz.asc | ||
| c-ares-config.cmake.in | ||
| c-ares.changes | ||
| c-ares.keyring | ||
| c-ares.spec | ||
| disable-live-tests.patch | ||
| libcares.pc.cmake | ||