projects / platform / upstream / dnsmasq.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 883c522) | patch
Security fix, CVE-2017-14491, DNS heap buffer overflow.(1) 75/168275/1
authorSeonah Moon <seonah1.moon@samsung.com>
Mon, 16 Oct 2017 09:27:03 +0000 (18:27 +0900)
committerSeonah Moon <seonah1.moon@samsung.com>
Thu, 25 Jan 2018 08:59:13 +0000 (17:59 +0900)
commitc89c363213d85f0916451cddacf359be0400dcbb
treeb858ccdd39039b04eaa1e3a439536a36750c74fbtree | snapshot
parent883c52234c45d62c130ccd518e422f9c9625f296commit | diff
Security fix, CVE-2017-14491, DNS heap buffer overflow.(1)

Fix heap overflow in DNS code. This is a potentially serious
security hole. It allows an attacker who can make DNS
requests to dnsmasq, and who controls the contents of
a domain, which is thereby queried, to overflow
(by 2 bytes) a heap buffer and either crash, or
even take control of, dnsmasq.

http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=0549c73b7ea6b22a3c49beb4d432f185a81efcbc

Change-Id: I3cc432632f51e89b888f3a5d999ba422c134847a
Signed-off-by: Seonah Moon <seonah1.moon@samsung.com>
src/dnsmasq.h diff | blob | history
src/dnssec.c diff | blob | history
src/option.c diff | blob | history
src/rfc1035.c diff | blob | history
src/rfc2131.c diff | blob | history
src/rfc3315.c diff | blob | history
src/util.c diff | blob | history
Domain: Network & Connectivity / Data Network;