CVSROOT: /cvs
Module name: src
Changes by: [email protected] 2024/02/13 05:58:05
Modified files:
sbin/unwind/libunbound/services: authzone.c
sbin/unwind/libunbound/services/cache: dns.c dns.h
sbin/unwind/libunbound/util: fptr_wlist.c
sbin/unwind/libunbound/validator: val_nsec.c val_nsec3.c
val_nsec3.h val_sigcrypt.c
val_sigcrypt.h val_utils.c
val_utils.h validator.c
validator.h
Log message:
Fix for CVE-2023-50387 and CVE-2023-50868.
Both can be used to cause high CPU load and potentially denial of
service with specifically crafted DNSSEC responses.
This is a sync with unbound(8).
