diff options
author | Sona Sarmadi <sona.sarmadi@enea.com> | 2016-04-07 12:27:27 +0200 |
---|---|---|
committer | Sona Sarmadi <sona.sarmadi@enea.com> | 2016-04-08 12:32:32 +0200 |
commit | 71129828ff4cfda3d66aa9378be3c5a53f2beb8b (patch) | |
tree | 7a71ee4e6376fd06a3678251c8f3f6e5d7617f9a /meta/recipes-connectivity/bind/bind/fix-typo-in-CVE-2016-1285.patch | |
parent | 4ddc912615a690b7f612517ac5a5b345c9f89f8e (diff) | |
download | poky-daisy-enea.tar.gz |
bind: CVE-2016-1285 CVE-2016-1286daisy-enea
CVE-2016-1285 bind: malformed packet sent to rndc can trigger assertion failure
CVE-2016-1286 bind: malformed signature records for DNAME records can
trigger assertion failure
[YOCTO #9400]
External References:
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-1285
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-1286
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1285
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1286
References to the Upstream commits and Security Advisories:
CVE-2016-1285: https://kb.isc.org/article/AA-01352
https://source.isc.org/cgi-bin/gitweb.cgi?p=bind9.git;a=patch;
h=31e4657cf246e41d4c5c890315cb6cf89a0db25a
CVE-2016-1286_1: https://kb.isc.org/article/AA-01353
https://source.isc.org/cgi-bin/gitweb.cgi?p=bind9.git;a=patch;
h=76c3c9fe9f3f1353b47214b8f98b3d7f53e10bc7
CVE-2016-1286_2: https://kb.isc.org/article/AA-01353
https://source.isc.org/cgi-bin/gitweb.cgi?p=bind9.git;a=patch;
h=ce3cd91caee698cb144e1350c6c78292c6be6339
Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
Signed-off-by: Tudor Florea <tudor.florea@enea.com>
Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
Diffstat (limited to 'meta/recipes-connectivity/bind/bind/fix-typo-in-CVE-2016-1285.patch')
-rw-r--r-- | meta/recipes-connectivity/bind/bind/fix-typo-in-CVE-2016-1285.patch | 31 |
1 files changed, 31 insertions, 0 deletions
diff --git a/meta/recipes-connectivity/bind/bind/fix-typo-in-CVE-2016-1285.patch b/meta/recipes-connectivity/bind/bind/fix-typo-in-CVE-2016-1285.patch new file mode 100644 index 0000000000..5858c805df --- /dev/null +++ b/meta/recipes-connectivity/bind/bind/fix-typo-in-CVE-2016-1285.patch | |||
@@ -0,0 +1,31 @@ | |||
1 | From a078c9eeae8c2db7edf2b15ff1d25a3a297c7512 Mon Sep 17 00:00:00 2001 | ||
2 | From: Evan Hunt <each@isc.org> | ||
3 | Date: Wed, 17 Feb 2016 19:13:22 -0800 | ||
4 | Subject: [PATCH] [v9_9] fix backport error | ||
5 | |||
6 | This fixes typo in the: | ||
7 | CVE-2016-1285.patch [upstream commit 31e4657cf246e41d4c5c890315cb6cf89a0db25a] | ||
8 | |||
9 | Upstream-Status: Backport | ||
10 | |||
11 | Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com> | ||
12 | --- | ||
13 | lib/isccc/cc.c | 2 +- | ||
14 | 1 file changed, 1 insertion(+), 1 deletion(-) | ||
15 | |||
16 | diff --git a/lib/isccc/cc.c b/lib/isccc/cc.c | ||
17 | index ffcd584..9c7d18c 100644 | ||
18 | --- a/lib/isccc/cc.c | ||
19 | +++ b/lib/isccc/cc.c | ||
20 | @@ -287,7 +287,7 @@ verify(isccc_sexpr_t *alist, unsigned char *data, unsigned int length, | ||
21 | if (!isccc_alist_alistp(_auth)) | ||
22 | return (ISC_R_FAILURE); | ||
23 | hmd5 = isccc_alist_lookup(_auth, "hmd5"); | ||
24 | - if (!isccc_sexpr_binaryp(hmac)) | ||
25 | + if (!isccc_sexpr_binaryp(hmd5)) | ||
26 | return (ISC_R_FAILURE); | ||
27 | /* | ||
28 | * Compute digest. | ||
29 | -- | ||
30 | 1.9.1 | ||
31 | |||