Marcus Meissner
d16c91b060
- Add upstream patch bind-prevent-buffer-overflow.patch. OBS-URL: https://build.opensuse.org/request/show/977464 OBS-URL: https://build.opensuse.org/package/show/network/bind?expand=0&rev=341
39 lines
1.3 KiB
Diff
39 lines
1.3 KiB
Diff
From 921043b54161c7a3e6dc4036b038ca4dbc5fe472 Mon Sep 17 00:00:00 2001
|
|
From: Evan Hunt <each@isc.org>
|
|
Date: Fri, 13 May 2022 19:59:58 -0700
|
|
Subject: [PATCH] prevent a possible buffer overflow in configuration check
|
|
|
|
corrected code that could have allowed a buffer overfow while
|
|
parsing named.conf.
|
|
---
|
|
lib/bind9/check.c | 4 ++--
|
|
1 file changed, 2 insertions(+), 2 deletions(-)
|
|
|
|
diff --git a/lib/bind9/check.c b/lib/bind9/check.c
|
|
index 658daec76d..baacd29a84 100644
|
|
--- a/lib/bind9/check.c
|
|
+++ b/lib/bind9/check.c
|
|
@@ -3009,8 +3009,8 @@ check_zoneconf(const cfg_obj_t *zconfig, const cfg_obj_t *voptions,
|
|
} else if (dns_name_isula(zname)) {
|
|
ula = true;
|
|
}
|
|
- tmp += strlen(tmp);
|
|
len -= strlen(tmp);
|
|
+ tmp += strlen(tmp);
|
|
(void)snprintf(tmp, len, "%u/%s", zclass,
|
|
(ztype == CFG_ZONE_INVIEW) ? target
|
|
: (viewname != NULL) ? viewname
|
|
@@ -3719,8 +3719,8 @@ check_zoneconf(const cfg_obj_t *zconfig, const cfg_obj_t *voptions,
|
|
char *tmp = keydirbuf;
|
|
size_t len = sizeof(keydirbuf);
|
|
dns_name_format(zname, keydirbuf, sizeof(keydirbuf));
|
|
- tmp += strlen(tmp);
|
|
len -= strlen(tmp);
|
|
+ tmp += strlen(tmp);
|
|
(void)snprintf(tmp, len, "/%s", (dir == NULL) ? "(null)" : dir);
|
|
tresult = keydirexist(zconfig, (const char *)keydirbuf,
|
|
kaspname, keydirs, logctx, mctx);
|
|
--
|
|
GitLab
|
|
|