openbsd-compat/getrrsetbyname.c: answer buffer size too large for EDNS0 and glibc
Darren Tucker
dtucker at zip.com.au
Mon Jul 13 11:39:21 EST 2009
Hauke Lampe wrote:
> Damien Miller wrote:
>
>> No, but doesn't the glibc bug need to be fixed too? There is nothing in
>> the res_query(3) documentation that specifies integer overflow of the
>> length argument.
>
> I agree. If larger buffers are allowed in res_* arguments, the library
> should cap EDNS0 buffer size at 65535.
>
> Until a fix for this reaches main distributions, getrrsetbyname should
> work around it, though, IMHO.
Thanks, your patch has been applied and will be in the next release.
--
Darren Tucker (dtucker at zip.com.au)
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4 37C9 C982 80C7 8FF4 FA69
Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.
More information about the openssh-unix-dev
mailing list