mir/bind
2
0
Fork 0
mirror of https://gitlab.isc.org/isc-projects/bind9 synced 2025-08-31 06:25:31 +00:00
Code Issues Releases Wiki Activity

[master] block validator deadlock and prevent use-after-free

Browse Source 
4859.	[bug]		A loop was possible when attempting to validate
			unsigned CNAME responses from secure zones;
			this caused a delay in returning SERVFAIL and
			also increased the chances of encountering
			CVE-2017-3145. [RT #46839]

4858.	[security]	Addresses could be referenced after being freed
			in resolver.c, causing an assertion failure.
			(CVE-2017-3145) [RT #46839]
This commit is contained in:
Evan Hunt
2018-01-03 19:11:18 -08:00
parent 9e6b394410
commit 053b51c4db
4 changed files with 46 additions and 18 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
doc/arm/notes.xml
View File

@@ -40,7 +40,11 @@
<itemizedlist>
<listitem>
<para>
None.
Addresses could be referenced after being freed during resolver
processing, causing an assertion failure. The chances of this
happening were remote, but the introduction of a delay in
resolution increasred them. This bug is disclosed in
CVE-2017-3145. [RT #46839]
</para>
</listitem>
</itemizedlist>
@@ -73,7 +77,11 @@
<itemizedlist>
<listitem>
<para>
None.
Attempting to validate improperly unsigned CNAME responses
from secure zones could cause a validator loop. This caused
a delay in returning SERVFAIL and also increased the chances
of encountering the crash bug described in CVE-2017-3145.
[RT #46839]
</para>
</listitem>
</itemizedlist>