Date: Fri, 26 Jul 2013 22:43:09 +0000 (UTC) From: Xin LI <delphij@FreeBSD.org> To: src-committers@freebsd.org, svn-src-all@freebsd.org, svn-src-stable@freebsd.org, svn-src-stable-9@freebsd.org Subject: svn commit: r253695 - stable/9/contrib/bind9/lib/dns/rdata/generic Message-ID: <201307262243.r6QMh91C064533@svn.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: delphij Date: Fri Jul 26 22:43:09 2013 New Revision: 253695 URL: http://svnweb.freebsd.org/changeset/base/253695 Log: Fix Denial of Service vulnerability in named(8). [13:07] Security: CVE-2013-4854 Security: FreeBSD-SA-13:07.bind Approved by: re (rodrigc) Modified: stable/9/contrib/bind9/lib/dns/rdata/generic/keydata_65533.c Modified: stable/9/contrib/bind9/lib/dns/rdata/generic/keydata_65533.c ============================================================================== --- stable/9/contrib/bind9/lib/dns/rdata/generic/keydata_65533.c Fri Jul 26 22:40:29 2013 (r253694) +++ stable/9/contrib/bind9/lib/dns/rdata/generic/keydata_65533.c Fri Jul 26 22:43:09 2013 (r253695) @@ -176,7 +176,7 @@ fromwire_keydata(ARGS_FROMWIRE) { UNUSED(options); isc_buffer_activeregion(source, &sr); - if (sr.length < 4) + if (sr.length < 16) return (ISC_R_UNEXPECTEDEND); isc_buffer_forward(source, sr.length);
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201307262243.r6QMh91C064533>