rpms/avahi/FC-5 avahi-0.6.11-dos.patch,NONE,1.1
fedora-cvs-commits at redhat.com
fedora-cvs-commits at redhat.com
Sat Jan 6 22:30:57 UTC 2007
Author: mbacovsk
Update of /cvs/dist/rpms/avahi/FC-5
In directory cvs.devel.redhat.com:/tmp/cvs-serv4347
Added Files:
avahi-0.6.11-dos.patch
Log Message:
* Sat Jan 6 2007 Martin Bacovsky <mbacovsk at redhat.com> - 0.6.11-3.fc5
- Resolves: #221726 - CVE-2006-6870 Maliciously crafted packed can DoS avahi daemon
avahi-0.6.11-dos.patch:
dns.c | 3 ++-
dns.h | 1 +
2 files changed, 3 insertions(+), 1 deletion(-)
--- NEW FILE avahi-0.6.11-dos.patch ---
Index: trunk/avahi-core/dns.c
===================================================================
--- trunk/avahi-core/dns.c (revision 1203)
+++ trunk/avahi-core/dns.c (revision 1341)
@@ -333,7 +333,8 @@
int compressed = 0;
int first_label = 1;
+ int i;
assert(p && ret_name && l);
- for (;;) {
+ for (i = 0; i < AVAHI_DNS_LABELS_MAX; i++) {
uint8_t n;
Index: trunk/avahi-core/dns.h
===================================================================
--- trunk/avahi-core/dns.h (revision 867)
+++ trunk/avahi-core/dns.h (revision 1341)
@@ -29,4 +29,5 @@
#define AVAHI_DNS_PACKET_HEADER_SIZE 12
#define AVAHI_DNS_PACKET_EXTRA_SIZE 48
+#define AVAHI_DNS_LABELS_MAX 127
typedef struct AvahiDnsPacket {
More information about the fedora-cvs-commits
mailing list