openwrtv3/package/network/services/dnsmasq/patches
Kevin Darbyshire-Bryant ca79337306 dnsmasq: forward.c: fix CVE-2017-13704
Fix SIGSEGV in rfc1035.c answer_request() line 1228 where memset()
is called with header & limit pointing at the same address and thus
tries to clear memory from before the buffer begins.

answer_request() is called with an invalid edns packet size provided by
the client.  Ensure the udp_size provided by the client is bounded by
512 and configured maximum as per RFC 6891 6.2.3 "Values lower than 512
MUST be treated as equal to 512"

The client that exposed the problem provided a payload udp size of 0.

Signed-off-by: Kevin Darbyshire-Bryant <kevin@darbyshire-bryant.me.uk>
Acked-by: Hans Dedecker <dedeckeh@gmail.com>
2017-08-30 17:05:10 +02:00
..
010-Tweak-ICMP-ping-check-logic-for-DHCPv4.patch dnsmasq: backport tweak ICMP ping logic for DHCPv4 2017-06-26 10:49:13 +02:00
011-Remove-ping-check-of-configured-DHCP-address.patch dnsmasq: backport remove ping check of configured dhcp address 2017-07-18 23:17:37 +02:00
020-Try-other-servers-if-first-returns-REFUSED-when-stri.patch dnsmasq: backport patch fixing DNS failover (FS#841) 2017-06-28 11:33:42 +02:00
025-fix-CVE-2017-13704.patch dnsmasq: forward.c: fix CVE-2017-13704 2017-08-30 17:05:10 +02:00
110-ipset-remove-old-kernel-support.patch dnsmasq: update to dnsmasq 2.77test1 2017-02-05 22:26:23 +01:00
210-dnssec-improve-timestamp-heuristic.patch dnsmasq: bump to 2.77rc3 2017-05-12 21:30:56 +02:00
230-fix-poll-h-include-warning-on-musl.patch dnsmasq: update to dnsmasq v2.76 2016-05-24 13:30:58 +02:00
240-ubus.patch dnsmasq: add ubus notifications for new leases 2017-08-22 21:31:39 +02:00