Date: Fri, 26 Jul 2013 22:53:18 +0000 (UTC) From: Xin LI <delphij@FreeBSD.org> To: src-committers@freebsd.org, svn-src-all@freebsd.org, svn-src-stable@freebsd.org, svn-src-stable-8@freebsd.org Subject: svn commit: r253696 - stable/8/contrib/bind9/lib/dns/rdata/generic Message-ID: <201307262253.r6QMrIZw071296@svn.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: delphij Date: Fri Jul 26 22:53:17 2013 New Revision: 253696 URL: http://svnweb.freebsd.org/changeset/base/253696 Log: Fix Denial of Service vulnerability in named(8). [13:07] Security: CVE-2013-4854 Security: FreeBSD-SA-13:07.bind Approved by: so Modified: stable/8/contrib/bind9/lib/dns/rdata/generic/keydata_65533.c Modified: stable/8/contrib/bind9/lib/dns/rdata/generic/keydata_65533.c ============================================================================== --- stable/8/contrib/bind9/lib/dns/rdata/generic/keydata_65533.c Fri Jul 26 22:43:09 2013 (r253695) +++ stable/8/contrib/bind9/lib/dns/rdata/generic/keydata_65533.c Fri Jul 26 22:53:17 2013 (r253696) @@ -176,7 +176,7 @@ fromwire_keydata(ARGS_FROMWIRE) { UNUSED(options); isc_buffer_activeregion(source, &sr); - if (sr.length < 4) + if (sr.length < 16) return (ISC_R_UNEXPECTEDEND); isc_buffer_forward(source, sr.length);
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201307262253.r6QMrIZw071296>