CVSROOT: /cvs
Module name: src
Changes by: st...@cvs.openbsd.org 2012/06/06 10:54:33
Modified files:
usr.sbin/bind/lib/dns: rdata.c rdataslab.c
Log message:
Add a fix for CVE-2012-1667, backported from ISC BIND. ok millert@
http://www.isc.org/software/bind/advisories/cve-2012-1667
Distinguish rdata removed by BIND due to duplication, from zero-length rdata
received from a server. Otherwise a server supplying zero-length rdata sections
can trigger crashes or possible memory disclosure to the client.
Primarily affects recursive servers.
