223eda903e
Fix Denial of Service vulnerability in named(8). [13:07] Fix a bug that allows remote client bypass the normal access checks when when -network or -host restrictions are used at the same time with -mapall. [13:08]
13 lines
472 B
Diff
13 lines
472 B
Diff
Index: contrib/bind9/lib/dns/rdata/generic/keydata_65533.c
|
|
===================================================================
|
|
--- contrib/bind9/lib/dns/rdata/generic/keydata_65533.c (revision 253461)
|
|
+++ contrib/bind9/lib/dns/rdata/generic/keydata_65533.c (working copy)
|
|
@@ -176,7 +176,7 @@
|
|
UNUSED(options);
|
|
|
|
isc_buffer_activeregion(source, &sr);
|
|
- if (sr.length < 4)
|
|
+ if (sr.length < 16)
|
|
return (ISC_R_UNEXPECTEDEND);
|
|
|
|
isc_buffer_forward(source, sr.length);
|