diff options
| author | Robert Yang <liezhi.yang@windriver.com> | 2015-04-27 20:43:24 -0700 |
|---|---|---|
| committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2015-05-03 11:43:51 +0100 |
| commit | 39bd94a290365468b98d4bd811a85871ae1f4b08 (patch) | |
| tree | fb82c415407a0304bbe7b5961517cd42bf1f67eb /meta/recipes-connectivity/bind/bind/bind-CVE-2012-1667.patch | |
| parent | daf5113a819f970b207da7eb31f9d25f7e146897 (diff) | |
| download | poky-39bd94a290365468b98d4bd811a85871ae1f4b08.tar.gz | |
bind: remove 5 backport patches
They are backport patches, and verified that the patches are in the
source.
(From OE-Core rev: 6e4a10ab030c192e2437592538e4713b1ee2032b)
Signed-off-by: Robert Yang <liezhi.yang@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-connectivity/bind/bind/bind-CVE-2012-1667.patch')
| -rw-r--r-- | meta/recipes-connectivity/bind/bind/bind-CVE-2012-1667.patch | 92 |
1 files changed, 0 insertions, 92 deletions
diff --git a/meta/recipes-connectivity/bind/bind/bind-CVE-2012-1667.patch b/meta/recipes-connectivity/bind/bind/bind-CVE-2012-1667.patch deleted file mode 100644 index c441eab65d..0000000000 --- a/meta/recipes-connectivity/bind/bind/bind-CVE-2012-1667.patch +++ /dev/null | |||
| @@ -1,92 +0,0 @@ | |||
| 1 | bind CVE-2012-1667 | ||
| 2 | |||
| 3 | Upstream-Status: Backport | ||
| 4 | |||
| 5 | ISC BIND 9.x before 9.7.6-P1, 9.8.x before 9.8.3-P1, 9.9.x before 9.9.1-P1, | ||
| 6 | and 9.4-ESV and 9.6-ESV before 9.6-ESV-R7-P1 does not properly handle resource | ||
| 7 | records with a zero-length RDATA section, which allows remote DNS servers to | ||
| 8 | cause a denial of service (daemon crash or data corruption) or obtain | ||
| 9 | sensitive information from process memory via a crafted record. | ||
| 10 | |||
| 11 | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-1667 | ||
| 12 | |||
| 13 | The cve patch comes from bind97-9.7.0-10.P2.el5_8.1.src.rpm package. | ||
| 14 | |||
| 15 | Signed-off-by: Li Wang <li.wang@windriver.com> | ||
| 16 | --- | ||
| 17 | lib/dns/rdata.c | 8 ++++---- | ||
| 18 | lib/dns/rdataslab.c | 11 ++++++++--- | ||
| 19 | 2 files changed, 12 insertions(+), 7 deletions(-) | ||
| 20 | |||
| 21 | diff --git a/lib/dns/rdata.c b/lib/dns/rdata.c | ||
| 22 | index 063b1f6..9337a80 100644 | ||
| 23 | --- a/lib/dns/rdata.c | ||
| 24 | +++ b/lib/dns/rdata.c | ||
| 25 | @@ -325,8 +325,8 @@ dns_rdata_compare(const dns_rdata_t *rdata1, const dns_rdata_t *rdata2) { | ||
| 26 | |||
| 27 | REQUIRE(rdata1 != NULL); | ||
| 28 | REQUIRE(rdata2 != NULL); | ||
| 29 | - REQUIRE(rdata1->data != NULL); | ||
| 30 | - REQUIRE(rdata2->data != NULL); | ||
| 31 | + REQUIRE(rdata1->length == 0 || rdata1->data != NULL); | ||
| 32 | + REQUIRE(rdata2->length == 0 || rdata2->data != NULL); | ||
| 33 | REQUIRE(DNS_RDATA_VALIDFLAGS(rdata1)); | ||
| 34 | REQUIRE(DNS_RDATA_VALIDFLAGS(rdata2)); | ||
| 35 | |||
| 36 | @@ -356,8 +356,8 @@ dns_rdata_casecompare(const dns_rdata_t *rdata1, const dns_rdata_t *rdata2) { | ||
| 37 | |||
| 38 | REQUIRE(rdata1 != NULL); | ||
| 39 | REQUIRE(rdata2 != NULL); | ||
| 40 | - REQUIRE(rdata1->data != NULL); | ||
| 41 | - REQUIRE(rdata2->data != NULL); | ||
| 42 | + REQUIRE(rdata1->length == 0 || rdata1->data != NULL); | ||
| 43 | + REQUIRE(rdata2->length == 0 || rdata2->data != NULL); | ||
| 44 | REQUIRE(DNS_RDATA_VALIDFLAGS(rdata1)); | ||
| 45 | REQUIRE(DNS_RDATA_VALIDFLAGS(rdata2)); | ||
| 46 | |||
| 47 | diff --git a/lib/dns/rdataslab.c b/lib/dns/rdataslab.c | ||
| 48 | index a41f16f..ed13b30 100644 | ||
| 49 | --- a/lib/dns/rdataslab.c | ||
| 50 | +++ b/lib/dns/rdataslab.c | ||
| 51 | @@ -125,6 +125,11 @@ isc_result_t | ||
| 52 | dns_rdataslab_fromrdataset(dns_rdataset_t *rdataset, isc_mem_t *mctx, | ||
| 53 | isc_region_t *region, unsigned int reservelen) | ||
| 54 | { | ||
| 55 | + /* | ||
| 56 | + * Use &removed as a sentinal pointer for duplicate | ||
| 57 | + * rdata as rdata.data == NULL is valid. | ||
| 58 | + */ | ||
| 59 | + static unsigned char removed; | ||
| 60 | struct xrdata *x; | ||
| 61 | unsigned char *rawbuf; | ||
| 62 | #if DNS_RDATASET_FIXED | ||
| 63 | @@ -168,6 +173,7 @@ dns_rdataslab_fromrdataset(dns_rdataset_t *rdataset, isc_mem_t *mctx, | ||
| 64 | INSIST(result == ISC_R_SUCCESS); | ||
| 65 | dns_rdata_init(&x[i].rdata); | ||
| 66 | dns_rdataset_current(rdataset, &x[i].rdata); | ||
| 67 | + INSIST(x[i].rdata.data != &removed); | ||
| 68 | #if DNS_RDATASET_FIXED | ||
| 69 | x[i].order = i; | ||
| 70 | #endif | ||
| 71 | @@ -200,8 +206,7 @@ dns_rdataslab_fromrdataset(dns_rdataset_t *rdataset, isc_mem_t *mctx, | ||
| 72 | */ | ||
| 73 | for (i = 1; i < nalloc; i++) { | ||
| 74 | if (compare_rdata(&x[i-1].rdata, &x[i].rdata) == 0) { | ||
| 75 | - x[i-1].rdata.data = NULL; | ||
| 76 | - x[i-1].rdata.length = 0; | ||
| 77 | + x[i-1].rdata.data = &removed; | ||
| 78 | #if DNS_RDATASET_FIXED | ||
| 79 | /* | ||
| 80 | * Preserve the least order so A, B, A -> A, B | ||
| 81 | @@ -291,7 +296,7 @@ dns_rdataslab_fromrdataset(dns_rdataset_t *rdataset, isc_mem_t *mctx, | ||
| 82 | #endif | ||
| 83 | |||
| 84 | for (i = 0; i < nalloc; i++) { | ||
| 85 | - if (x[i].rdata.data == NULL) | ||
| 86 | + if (x[i].rdata.data == &removed) | ||
| 87 | continue; | ||
| 88 | #if DNS_RDATASET_FIXED | ||
| 89 | offsettable[x[i].order] = rawbuf - offsetbase; | ||
| 90 | -- | ||
| 91 | 1.7.0.5 | ||
| 92 | |||