lib/glibc
1
0
Fork 0
mirror of https://sourceware.org/git/glibc.git synced 2025-08-10 05:03:06 +03:00
Code Activity

hesiod: Avoid heap overflow in get_txt_records [BZ #20031]

Browse Source
This commit is contained in:
Florian Weimer
2016-05-02 16:04:32 +02:00
parent 5018f16c62
commit 8a03ccbb77
2 changed files with 7 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
ChangeLog
View File

@@ -1,3 +1,9 @@
2016-05-02 Florian Weimer <fweimer@redhat.com>
[BZ #20031]
* hesiod/hesiod.c (get_txt_records): Return error if TXT record is
completely empty.
2016-05-02 Florian Weimer <fweimer@redhat.com> 2016-05-02 Florian Weimer <fweimer@redhat.com>
[BZ #19573] [BZ #19573]

2
hesiod/hesiod.c
View File

@@ -398,7 +398,7 @@ get_txt_records(struct hesiod_p *ctx, int class, const char *name) {
cp += INT16SZ + INT32SZ; /* skip the ttl, too */ cp += INT16SZ + INT32SZ; /* skip the ttl, too */
rr.dlen = ns_get16(cp); rr.dlen = ns_get16(cp);
cp += INT16SZ; cp += INT16SZ;
if (cp + rr.dlen > eom) { if (rr.dlen == 0 || cp + rr.dlen > eom) {
__set_errno(EMSGSIZE); __set_errno(EMSGSIZE);
goto cleanup; goto cleanup;
} }