projects / dnsmasq.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b697fbb) | patch
Security fix, CVE-2017-14491 DNS heap buffer overflow.
authorSimon Kelley <simon@thekelleys.org.uk>
Mon, 25 Sep 2017 17:17:11 +0000 (18:17 +0100)
committerSimon Kelley <simon@thekelleys.org.uk>
Mon, 25 Sep 2017 17:17:11 +0000 (18:17 +0100)
commit0549c73b7ea6b22a3c49beb4d432f185a81efcbc
tree358881f981cb34b7d88fdc54260cf4245d61cac4tree | snapshot
parentb697fbb7f17ee80ce579361920cb6a879fb868e8commit | diff
Security fix, CVE-2017-14491 DNS heap buffer overflow.

Fix heap overflow in DNS code. This is a potentially serious
security hole. It allows an attacker who can make DNS
requests to dnsmasq, and who controls the contents of
a domain, which is thereby queried, to overflow
(by 2 bytes) a heap buffer and either crash, or
even take control of, dnsmasq.
CHANGELOG diff | blob | history
src/dnsmasq.h diff | blob | history
src/dnssec.c diff | blob | history
src/option.c diff | blob | history
src/rfc1035.c diff | blob | history
src/rfc2131.c diff | blob | history
src/rfc3315.c diff | blob | history
src/util.c diff | blob | history
Dnsmasq DNS proxy and DHCP server.