Home Explore Help
Register Sign In
Mangix
/
libreCMC
forked from libreCMC/libreCMC
1
0
Fork 0
Files
Browse Source

dnsmasq: backport validation fix in dnssec security fix

A DNSSEC validation error was introduced in the fix for CVE-2017-15107

Backport the upstream fix to the fix (a simple typo)

Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk>
(backported from commit adaf1cbcc8b253ea807dbe0416b4b04c33dceadf)
Kevin Darbyshire-Bryant 6 years ago
parent
b6a05ed3d4
commit
d0266fd309
2 changed files with 2 additions and 2 deletions
Split View Show Diff Stats
  1. 1 1
      package/network/services/dnsmasq/Makefile
  2. 1 1
      package/network/services/dnsmasq/patches/270-dnssec-wildcards.patch

+ 1 - 1
package/network/services/dnsmasq/Makefile
View File 

@@ -9,7 +9,7 @@ include $(TOPDIR)/rules.mk
 
 
 PKG_NAME:=dnsmasq
 
 PKG_VERSION:=2.78
 
-PKG_RELEASE:=5
 
+PKG_RELEASE:=6
 
 
 PKG_SOURCE:=$(PKG_NAME)-$(PKG_VERSION).tar.xz
 
 PKG_SOURCE_URL:=http://thekelleys.org.uk/dnsmasq/

+ 1 - 1
package/network/services/dnsmasq/patches/270-dnssec-wildcards.patch
View File 

@@ -160,7 +160,7 @@ in a domain which includes a wildcard for NSEC.
 
 +		       int type_covered;
 
 +		       unsigned char *psav = p1;
 
 +		       
-+		       if (rdlen < 18)
 
++		       if (rdlen1 < 18)
 
 +			 return 0; /* bad packet */
 
 +
 
 +		       GETSHORT(type_covered, p1);