diff options
| author | Sona Sarmadi <sona.sarmadi@enea.com> | 2016-04-07 12:27:27 +0200 |
|---|---|---|
| committer | Sona Sarmadi <sona.sarmadi@enea.com> | 2016-04-08 12:32:32 +0200 |
| commit | 71129828ff4cfda3d66aa9378be3c5a53f2beb8b (patch) | |
| tree | 7a71ee4e6376fd06a3678251c8f3f6e5d7617f9a /meta/recipes-connectivity/bind/bind/fix-typo-in-CVE-2016-1285.patch | |
| parent | 4ddc912615a690b7f612517ac5a5b345c9f89f8e (diff) | |
| download | poky-daisy-enea.tar.gz | |
bind: CVE-2016-1285 CVE-2016-1286daisy-enea
CVE-2016-1285 bind: malformed packet sent to rndc can trigger assertion failure
CVE-2016-1286 bind: malformed signature records for DNAME records can
trigger assertion failure
[YOCTO #9400]
External References:
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-1285
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-1286
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1285
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1286
References to the Upstream commits and Security Advisories:
CVE-2016-1285: https://kb.isc.org/article/AA-01352
https://source.isc.org/cgi-bin/gitweb.cgi?p=bind9.git;a=patch;
h=31e4657cf246e41d4c5c890315cb6cf89a0db25a
CVE-2016-1286_1: https://kb.isc.org/article/AA-01353
https://source.isc.org/cgi-bin/gitweb.cgi?p=bind9.git;a=patch;
h=76c3c9fe9f3f1353b47214b8f98b3d7f53e10bc7
CVE-2016-1286_2: https://kb.isc.org/article/AA-01353
https://source.isc.org/cgi-bin/gitweb.cgi?p=bind9.git;a=patch;
h=ce3cd91caee698cb144e1350c6c78292c6be6339
Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
Signed-off-by: Tudor Florea <tudor.florea@enea.com>
Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
Diffstat (limited to 'meta/recipes-connectivity/bind/bind/fix-typo-in-CVE-2016-1285.patch')
| -rw-r--r-- | meta/recipes-connectivity/bind/bind/fix-typo-in-CVE-2016-1285.patch | 31 |
1 files changed, 31 insertions, 0 deletions
diff --git a/meta/recipes-connectivity/bind/bind/fix-typo-in-CVE-2016-1285.patch b/meta/recipes-connectivity/bind/bind/fix-typo-in-CVE-2016-1285.patch new file mode 100644 index 0000000000..5858c805df --- /dev/null +++ b/meta/recipes-connectivity/bind/bind/fix-typo-in-CVE-2016-1285.patch | |||
| @@ -0,0 +1,31 @@ | |||
| 1 | From a078c9eeae8c2db7edf2b15ff1d25a3a297c7512 Mon Sep 17 00:00:00 2001 | ||
| 2 | From: Evan Hunt <each@isc.org> | ||
| 3 | Date: Wed, 17 Feb 2016 19:13:22 -0800 | ||
| 4 | Subject: [PATCH] [v9_9] fix backport error | ||
| 5 | |||
| 6 | This fixes typo in the: | ||
| 7 | CVE-2016-1285.patch [upstream commit 31e4657cf246e41d4c5c890315cb6cf89a0db25a] | ||
| 8 | |||
| 9 | Upstream-Status: Backport | ||
| 10 | |||
| 11 | Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com> | ||
| 12 | --- | ||
| 13 | lib/isccc/cc.c | 2 +- | ||
| 14 | 1 file changed, 1 insertion(+), 1 deletion(-) | ||
| 15 | |||
| 16 | diff --git a/lib/isccc/cc.c b/lib/isccc/cc.c | ||
| 17 | index ffcd584..9c7d18c 100644 | ||
| 18 | --- a/lib/isccc/cc.c | ||
| 19 | +++ b/lib/isccc/cc.c | ||
| 20 | @@ -287,7 +287,7 @@ verify(isccc_sexpr_t *alist, unsigned char *data, unsigned int length, | ||
| 21 | if (!isccc_alist_alistp(_auth)) | ||
| 22 | return (ISC_R_FAILURE); | ||
| 23 | hmd5 = isccc_alist_lookup(_auth, "hmd5"); | ||
| 24 | - if (!isccc_sexpr_binaryp(hmac)) | ||
| 25 | + if (!isccc_sexpr_binaryp(hmd5)) | ||
| 26 | return (ISC_R_FAILURE); | ||
| 27 | /* | ||
| 28 | * Compute digest. | ||
| 29 | -- | ||
| 30 | 1.9.1 | ||
| 31 | |||