artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 817bdb8) | patch
Fix for CVE-2023-50387 and CVE-2023-50868.
authorflorian <florian@openbsd.org>
Tue, 13 Feb 2024 12:58:05 +0000 (12:58 +0000)
committerflorian <florian@openbsd.org>
Tue, 13 Feb 2024 12:58:05 +0000 (12:58 +0000)
commitfed3efa7ebe28a42f8790bbd65433d2483df6870
tree9dbed0c18baad55fd91932a738a045c4d1a06f0ftree | snapshot
parent817bdb8f8c00756cba1860e85cbb52fd1f125ba8commit | diff
Fix for CVE-2023-50387 and CVE-2023-50868.

Both can be used to cause high CPU load and potentially denial of
service with specifically crafted DNSSEC responses.

This is a sync with unbound(8).
13 files changed:
sbin/unwind/libunbound/services/authzone.c diff | blob | history
sbin/unwind/libunbound/services/cache/dns.c diff | blob | history
sbin/unwind/libunbound/services/cache/dns.h diff | blob | history
sbin/unwind/libunbound/util/fptr_wlist.c diff | blob | history
sbin/unwind/libunbound/validator/val_nsec.c diff | blob | history
sbin/unwind/libunbound/validator/val_nsec3.c diff | blob | history
sbin/unwind/libunbound/validator/val_nsec3.h diff | blob | history
sbin/unwind/libunbound/validator/val_sigcrypt.c diff | blob | history
sbin/unwind/libunbound/validator/val_sigcrypt.h diff | blob | history
sbin/unwind/libunbound/validator/val_utils.c diff | blob | history
sbin/unwind/libunbound/validator/val_utils.h diff | blob | history
sbin/unwind/libunbound/validator/validator.c diff | blob | history
sbin/unwind/libunbound/validator/validator.h diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim