Skip to content
GitLab
Projects
Groups
Snippets
/
Help
Help
Support
Community forum
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in / Register
Toggle navigation
Menu
Open sidebar
ISC Open Source Projects
BIND
Commits
293a9e99
Commit
293a9e99
authored
Feb 23, 2016
by
Mukund Sivaraman
Browse files
Fix allocation for "none" ACL that caused assertion failure (#41745)
parent
a125381c
Changes
3
Hide whitespace changes
Inline
Side-by-side
CHANGES
View file @
293a9e99
4320. [bug] Insufficient memory allocation when handling
"none" ACL could cause an assertion failure in
named when parsing ACL configuration. [RT #41745]
4319. [security] Fix resolver assertion failure due to improper
DNAME handling when parsing fetch reply messages.
(CVE-2016-1286) [RT #41753]
...
...
bin/tests/system/checkconf/good-acl.conf
0 → 100644
View file @
293a9e99
acl
a
{
{
"none"
; };
{ !
19
.
0
.
0
.
0
/
0
; };
};
options
{
allow
-
query
{
a
; };
};
lib/isccfg/aclconf.c
View file @
293a9e99
...
...
@@ -273,10 +273,11 @@ count_acl_elements(const cfg_obj_t *caml, const cfg_obj_t *cctx,
}
else
if
(
cfg_obj_isstring
(
ce
))
{
const
char
*
name
=
cfg_obj_asstring
(
ce
);
if
(
strcasecmp
(
name
,
"localhost"
)
==
0
||
strcasecmp
(
name
,
"localnets"
)
==
0
)
{
strcasecmp
(
name
,
"localnets"
)
==
0
||
strcasecmp
(
name
,
"none"
)
==
0
)
{
n
++
;
}
else
if
(
strcasecmp
(
name
,
"any"
)
!=
0
&&
strcasecmp
(
name
,
"none"
)
!=
0
)
{
}
else
if
(
strcasecmp
(
name
,
"any"
)
!=
0
)
{
dns_acl_t
*
inneracl
=
NULL
;
/*
* Convert any named acls we reference now if
...
...
Write
Preview
Supports
Markdown
0%
Try again
or
attach a new file
.
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment