summaryrefslogtreecommitdiff
path: root/lib
AgeCommit message (Collapse)AuthorFilesLines
2023-06-21[CVE-2020-8623] A flaw in native PKCS#11 code can lead to a remotely ↵submit/tizen_6.0/20230621.060633accepted/tizen/6.0/unified/20230626.074933tizen_6.0accepted/tizen_6.0_unifiedhyunsube.lee3-45/+97
triggerable assertion failure in pk11.c Change-Id: Idb5f01dbc5d4f4827a2d420e5c4720f36e81540e
2023-03-21[CVE-2022-38178] eddsa verify leaksubmit/tizen_6.0/20230321.113815accepted/tizen/6.0/unified/20230322.053243Seonah Moon1-2/+2
Free ctx on invalid siglen Change-Id: I7682b5711d9799f117021c3dc96881593311b061
2023-03-21[CVE-2022-38177] ecdsa verify leakSeonah Moon1-1/+1
Free eckey on siglen mismatch Change-Id: Ib10c4b6fc1edd71ad9a3306db22754b99a08e3e5
2023-03-21[CVE-2022-2795] Bound the amount of work performed for delegationsSeonah Moon1-0/+13
Limit the amount of database lookups that can be triggered in fctx_getaddresses() (i.e. when determining the name server addresses to query next) by setting a hard limit on the number of NS RRs processed for any delegation encountered. Without any limit in place, named can be forced to perform large amounts of database lookups per each query received, which severely impacts resolver performance. The limit used (20) is an arbitrary value that is considered to be big enough for any sane DNS delegation. (cherry picked from commit 3a44097f) Change-Id: I91033c9ff4a70c55b32c80e9eb3cf35309b79384
2023-02-20[CVE-2021-25215] Properly answer queries for DNAME records that require the ↵Seonah Moon1-4/+10
DNAME to be processed to resolve itself See merge request isc-private/bind9!281 https://kb.isc.org/v1/docs/cve-2021-25215 Change-Id: Ibd8d0ee0e637eda7d4540c567dca6a7569f04058
2023-02-20[CVE-2020-8625] Fix off-by-one bug in ISC SPNEGO implementationSeonah Moon1-2/+2
See merge request isc-private/bind9!235 https://kb.isc.org/v1/docs/cve-2020-8625 Change-Id: Ic341e6aa2d32084c7c50f53dff9e70a219b5ddd6
2023-02-20[CVE-2020-8621] Ensure QNAME minimization is permanently disabled when ↵Seonah Moon1-0/+9
forwarding [TEST] [v9.16] See merge request isc-projects/bind9!4042 https://kb.isc.org/v1/docs/cve-2020-8621 Change-Id: I754eb4efae881f57f5dea2bfada27d4208e0c4b7
2023-02-20Imported Upstream version 9.14.12upstream/9.14.12Seonah Moon947-84906/+72032
Change-Id: I927c881925cd7d9bc9a275fd846505d503b43a9b
2021-01-18Imported Upstream version 9.16.8upstream/9.16.8Seonah Moon949-73377/+88315
Change-Id: I122b98d3f939c6e8533ee78070a065b6bec17085
2019-08-09Imported Upstream version 9.14.4upstream/9.14.4Seonah Moon1229-110314/+103393
Change-Id: I04261b1d3d81ead0a7732834f02fc4219d86f5aa
2017-03-28Imported Upstream version 9.11.0upstream/9.11.0taesub kim1131-0/+377393
Change-Id: I9862c8cce19b946c136679f28ba5ecbf59eed586
generated by cgit v1.2.3 (git 2.25.1) at 2024-10-10 17:28:45 +0000