This is the mail archive of the
glibc-bugs@sourceware.org
mailing list for the glibc project.
[Bug network/19831] nss_dns: getaddrinfo returns uninitialized data when confronted with A/AAAA records of invalid size
- From: "cvs-commit at gcc dot gnu.org" <sourceware-bugzilla at sourceware dot org>
- To: glibc-bugs at sourceware dot org
- Date: Sat, 12 Nov 2016 06:41:44 +0000
- Subject: [Bug network/19831] nss_dns: getaddrinfo returns uninitialized data when confronted with A/AAAA records of invalid size
- Auto-submitted: auto-generated
- References: <bug-19831-131@http.sourceware.org/bugzilla/>
https://sourceware.org/bugzilla/show_bug.cgi?id=19831
--- Comment #5 from cvs-commit at gcc dot gnu.org <cvs-commit at gcc dot gnu.org> ---
This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "GNU C Library master sources".
The branch, gentoo/2.23 has been updated
via b7d81292bf651f176790011e83338a496dc9e778 (commit)
from 200001ce3f8e3c174ec77f63ef0b6075eb148fcd (commit)
Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.
- Log -----------------------------------------------------------------
https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=b7d81292bf651f176790011e83338a496dc9e778
commit b7d81292bf651f176790011e83338a496dc9e778
Author: Florian Weimer <fweimer@redhat.com>
Date: Wed Apr 27 16:39:12 2016 +0200
nss_dns: Check address length before creating addrinfo result [BZ #19831]
Previously, we allocated room in the result space before the check,
leaving uninitialized data there in case the check failed.
This also consolidates the behavior between single (A or AAAA) and
dual (A and AAAA in parallel) queries. Single queries checked
the record length against the QTYPE, not the RRTYPE.
(cherry picked from commit 5e0c421cc07e2d06945b863ed3bb92395472705d)
(cherry picked from commit 730244f49ad8f46308f5513e58365eed370423cb)
-----------------------------------------------------------------------
Summary of changes:
resolv/nss_dns/dns-host.c | 59 +++++++++++++++++++++++++++++---------------
1 files changed, 39 insertions(+), 20 deletions(-)
--
You are receiving this mail because:
You are on the CC list for the bug.