artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ee9c620) | patch
Fix for CVE-2023-50387 and CVE-2023-50868.
authorflorian <florian@openbsd.org>
Tue, 13 Feb 2024 12:57:11 +0000 (12:57 +0000)
committerflorian <florian@openbsd.org>
Tue, 13 Feb 2024 12:57:11 +0000 (12:57 +0000)
commit817bdb8f8c00756cba1860e85cbb52fd1f125ba8
tree293d9f3d2b999b929f5c489d4b4c9dcb8c048b24tree | snapshot
parentee9c6200f9dcdfe6c777f48c0a27d9aa918683e0commit | diff
Fix for CVE-2023-50387 and CVE-2023-50868.

Both can be used to cause high CPU load and potentially denial of
service with specifically crafted DNSSEC responses.
14 files changed:
usr.sbin/unbound/services/authzone.c diff | blob | history
usr.sbin/unbound/services/cache/dns.c diff | blob | history
usr.sbin/unbound/services/cache/dns.h diff | blob | history
usr.sbin/unbound/testcode/unitverify.c diff | blob | history
usr.sbin/unbound/util/fptr_wlist.c diff | blob | history
usr.sbin/unbound/validator/val_nsec.c diff | blob | history
usr.sbin/unbound/validator/val_nsec3.c diff | blob | history
usr.sbin/unbound/validator/val_nsec3.h diff | blob | history
usr.sbin/unbound/validator/val_sigcrypt.c diff | blob | history
usr.sbin/unbound/validator/val_sigcrypt.h diff | blob | history
usr.sbin/unbound/validator/val_utils.c diff | blob | history
usr.sbin/unbound/validator/val_utils.h diff | blob | history
usr.sbin/unbound/validator/validator.c diff | blob | history
usr.sbin/unbound/validator/validator.h diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim