summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2019-01-28ares_parse_naptr_reply: check sufficient datatizen_6.0.m2_releasetizen_5.5.m2_releasesubmit/tizen_base/20190311.051335submit/tizen_6.0_base_hotfix/20201102.162701submit/tizen_6.0_base_hotfix/20201030.192501submit/tizen_6.0_base/20201029.184801submit/tizen_5.5_base_wearable_hotfix/20201023.155601submit/tizen_5.5_base_mobile_hotfix/20201023.171501submit/tizen_5.5_base/20191030.000001accepted/tizen/base/20190316.131830accepted/tizen/6.0/base/hotfix/20201102.093258accepted/tizen/6.0/base/20201029.110307accepted/tizen/5.5/base/wearable/hotfix/20201023.081830accepted/tizen/5.5/base/mobile/hotfix/20201023.085651accepted/tizen/5.5/base/20191030.084059tizen_6.0_base_hotfixtizen_6.0_basetizen_5.5_tvtizen_5.5_base_wearable_hotfixtizen_5.5_base_mobile_hotfixtizen_5.5_baseaccepted/tizen_6.0_base_hotfixaccepted/tizen_6.0_baseaccepted/tizen_5.5_base_wearable_hotfixaccepted/tizen_5.5_base_mobile_hotfixaccepted/tizen_5.5_baseDavid Drysdale1-1/+6
Check that there is enough data for the required elements of an NAPTR record (2 int16, 3 bytes for string lengths) before processing a record. Bug: https://c-ares.haxx.se/adv_20170620.html Patch Link: https://c-ares.haxx.se/CVE-2017-1000381.patch Change-Id: I16056280817af5cd7a62ddc366280c73391cbc6a Signed-off-by: Nishant Chaprana <n.chaprana@samsung.com>
2017-08-07Merge branch 'tizen' into tizen_basesubmit/tizen_base/20171106.054136submit/tizen_5.0_base/20181101.000001accepted/tizen/base/20171110.163200accepted/tizen/5.0/base/20181101.091108Jiung1-0/+7
Change-Id: I57bed66206d1aab30e02ded357d1ff4f2d444ed6
2017-08-07ares_parse_naptr_reply: check sufficient dataJiung1-0/+7
Description: https://github.com/c-ares/c-ares/commit/9478908a490a6bf009ba58d81de8c1d06d50a117 ares_parse_naptr_reply: check sufficient data Check that there is enough data for the required elements of an NAPTR record (2 int16, 3 bytes for string lengths) before processing a record. https://github.com/c-ares/c-ares/commit/18ea99693d63f957ecb670045adbd2c1da8a4641 ares_parse_naptr_reply: make buffer length check more accurate 9478908 introduced a length check for records parsed by `ares_parse_naptr_reply()`. However, that function is designed to parse replies which also contain non-NAPTR records; for A records, the `rr_len > 7` check will fail as there are only 4 bytes of payload. In particular, parsing ANY replies for NAPTR records was broken by that patch. Fix that by moving the check into the case in which it is already known that the record is a NAPTR record. Change-Id: I7ca730c0367ff1cc416e67a3a99021438d237666
2016-11-10Merge branch 'tizen' into tizen_basetizen_4.0.m2_releasetizen_4.0.IoT.p1_releasesubmit/tizen_base/20170705.023439submit/tizen_base/20170703.013654submit/tizen_4.0_base/20170828.000001submit/tizen_4.0_base/20170828.000000submit/tizen_4.0_base/20170811.071500accepted/tizen/base/20170707.183634accepted/tizen/4.0/base/20170828.221324accepted/tizen/4.0/base/20170811.093019Yu Jiung102-2635/+7583
Conflicts: packaging/c-ares.spec Change-Id: I1ec10e394aed3ef19ee21fefbe3aba7d7a615c74
2016-11-09Disable building testsYu Jiung2-2/+2
Change-Id: Id873fdec5e3e0c5e1f185a0d3abc5cca7acdaa9e
2016-11-09Remove unused files and update spec file versionYu Jiung103-93861/+1
Change-Id: I55aba1ebcb3cf685b5f61f3608b0601c1f210290
2016-11-09Merge branch 'upstream' into tizenYu Jiung113-1482/+5568
Change-Id: If7b14a6bca2079b3cc58a0432a9eb05a41ea5ceb
2016-11-09Imported Upstream version 1.12.0upstream/1.12.0Yu Jiung113-1482/+5568
Change-Id: I6a571bddd24d1cb7d64b74bc66e878ccba2ce638
2016-11-09Merge branch 'upstream' into tizenYu Jiung184-6924/+43389
Conflicts: ares_set_local_dev.3 ares_set_servers_csv.3 Change-Id: I1da63c678df60657e903fd4917f07784bd37ce94
2016-11-09Merge branch 'upstream' into tizenYu Jiung58-0/+56268
Change-Id: If6a93118ede3c8d2c51e6c76df37b2fdf0df49ed
2016-11-09Imported Upstream version 1.11.0upstream/1.11.0Yu Jiung186-6922/+43524
Change-Id: I238c24b75a10aa902d9bc4076ed68b76b5e2a750
2016-11-09Imported Upstream version 1.10.0Yu Jiung163-4801/+12640
Change-Id: Ic7f3b0ad7dca62abe4cfa642a5eb5e190eb7a8c9
2016-11-09Remove tizen specific changes to update upstreamYu Jiung14-1308/+3431
Change-Id: I3d785ffd2f334386561f59d076fdd5610626605b
2016-11-03Merge branch 'tizen_3.0_base' into tizen_basetizen_4.0.m1_releasesubmit/tizen_base/20161103.074054accepted/tizen/base/20161104.200131chleun.moon3-3/+26
Change-Id: I5ab9d75268fe587280668f752f93908decb84c64 Signed-off-by: cheoleun <chleun.moon@samsung.com>
2016-11-03Fixed build errorsubmit/tizen_3.0_base/20161103.074103accepted/tizen/3.0/base/20161104.104345chleun.moon3-3/+26
Change-Id: I00e6ac85101d53923cb9464dfa43af5c67563c21 Signed-off-by: cheoleun <chleun.moon@samsung.com>
2016-11-03Merge branch 'tizen_3.0_base' into tizen_basesubmit/tizen_base/20161103.045154chleun.moon4-47/+73
Change-Id: If19e1e8ff43361d06f956ec72892838ba56cb22d Signed-off-by: cheoleun <chleun.moon@samsung.com>
2016-11-03Merge branch 'tizen' into tizen_3.0_basesubmit/tizen_3.0_base/20161103.045206submit/tizen_3.0_base/20161103.044410chleun.moon4-47/+73
Change-Id: Ic1ba0de5d4ffef7e3debed8e309bab8839c3f283 Signed-off-by: cheoleun <chleun.moon@samsung.com>
2016-10-31CVE-2016-5180hyunuktak1-45/+39
ares_create_query single byte out of buffer write Change-Id: I42baed5e1354095b27eab3fa90dc7433f6ba8362 Signed-off-by: hyunuktak <hyunuk.tak@samsung.com>
2015-12-22Modified license using SPDX license identifiertaesub.kim3-2/+34
Change-Id: I295f6c8928965973ccf3dfb173d1d0b43a2edc5f Signed-off-by: Taesub Kim <taesub.kim@samsung.com>
2014-12-08packaging: Bump to 1.10.0tizen_3.0_ivi_releasetizen_3.0.m2.a1_tv_releasetizen_3.0.m2.a1_mobile_releasetizen_3.0.m1_tv_releasetizen_3.0.m1_mobile_releasesubmit/tizen_wearable/20150128.000000submit/tizen_wearable/20150127.000001submit/tizen_wearable/20150116.000000submit/tizen_tv/20150320.000001submit/tizen_tv/20150119.000001submit/tizen_mobile/20150302.000000submit/tizen_mobile/20150223.000000submit/tizen_mobile/20150213.000000submit/tizen_mobile/20150116.000001submit/tizen_ivi/20141225.222222submit/tizen_common/20151019.135620submit/tizen_common/20151015.190624submit/tizen_common/20141209.172751submit/tizen_common/20141209.112152submit/tizen_common/20141209.111242submit/tizen_common/20141209.092539submit/tizen_common/20141208.144953submit/tizen_common/20141208.142121submit/tizen_base/20151223.111112submit/tizen_base/20151223.111111submit/tizen_3.0_base/20161028.062323accepted/tizen/wearable/20150129.005743accepted/tizen/tv/20150324.014512accepted/tizen/mobile/20150304.131056accepted/tizen/ivi/20141225.103500accepted/tizen/common/20141209.182138accepted/tizen/base/20151223.052335accepted/tizen/3.0/base/20161028.103013tizen_3.0_ivitizen_3.0.m1_tvtizen_3.0.m1_mobiletizen_3.0.2015.q2_commontizen_3.0.2015.q1_commontizen_3.0.2014.q4_commonsandbox/pcoval/latestaccepted/tizen_wearableaccepted/tizen_tvaccepted/tizen_mobileaccepted/tizen_iviaccepted/tizen_commonaccepted/tizen_3.0_iviPhilippe Coval1-3/+2
Skip: 8c8d79c Bug-Tizen: TC-2003/part Change-Id: Iaaa0144a08e2d5df10850af83246ff03887d3c6b Signed-off-by: Philippe Coval <philippe.coval@open.eurogiciel.org>
2014-12-08resetting manifest requested domain to floorAlexandru Cornea2-0/+9
2014-12-08Fixed packaging per rpmlintAnas Nashif2-8/+9
2014-12-08packaging: Intitial packaging for TizenAnas Nashif2-0/+69
Change-Id: Iaba7c263da4ef05284cbd4f159a14911f78a146b Author: Anas Nashif <anas.nashif@intel.com>
2014-12-08downstream: ocloexecAnas Nashif5-11/+11
Change-Id: Ie10c7a5414603781405af5b7a094c9cc359e2465 Author: Anas Nashif <anas.nashif@intel.com>
2013-05-12RELEASE-NOTES: two more bug fixesupstream/1.10.0sandbox/pcoval/upstreamDaniel Stenberg1-1/+4
2013-05-12ares_set_servers_csv: fixed IPv6 address parsingKeith Shaw1-15/+45
Fixed bug that caused the last part of an IPv6 address to be parsed as the port number when the last part is all numeric.
2013-05-02nroff: fix two syntax mistakesDaniel Stenberg2-2/+2
ares_parse_a_reply and ares_parse_aaaa_reply both had two \fB instead of \fP Reported-by: Alexander Klauer Bug: http://c-ares.haxx.se/mail/c-ares-archive-2013-03/0010.shtml
2013-05-02build: fix build on msvc11Alex Loukissas2-2/+3
2013-04-23Makefile.am: increment -version-info for 1.10.0 releaseDaniel Stenberg1-1/+1
2013-04-23README: remove unnecessary commentDaniel Stenberg1-2/+0
2013-04-23ares_version.h: copyright end range year is now 2013Daniel Stenberg1-1/+1
2013-04-23RELEASE-NOTES: synced with fb0737f3a0a1c37Daniel Stenberg1-3/+24
2013-04-22ares_parse_aaaa_reply: Plug memory leakPaul Saab1-0/+2
This change is similar to ares_parse_a_reply.c in commit bffd67f16a8f42fe6dbf79ab2e39d92eea05c8a6
2013-04-22ares_parse_txt_reply: return a ares_txt_reply node for each sub-stringPatrick Valsecchi2-48/+38
Previously, the function would wrongly return all substrings merged into one.
2013-04-22library init: documentation updateAlexander Klauer2-9/+28
This commit updates the documentation of ares_library_init() and ares_library_cleanup() with regard to the newly introduced reference counting of initializations and deinitializations.
2013-04-22library init: be recursiveAlexander Klauer1-1/+6
Previously, a single call to ares_library_cleanup() would deinitialise the c-ares library, regardless of how many times ares_library_init() was called. This behaviour may cause problems in programs linking two or more libraries which, in turn, use c-ares. The present commit fixes this problem, deinitializing the library only after a number of calls to ares_library_cleanup() matching the number of calls to ares_library_init().
2013-04-15protocol parsing: check input data stricterPatrick Valsecchi9-2/+52
... so that bad length fields aren't blindly accepted Bug: http://c-ares.haxx.se/mail/c-ares-archive-2013-04/0016.shtml
2013-04-11Create ares_build.h when buidling from Git.Guenter Knauf1-0/+7
2013-04-09Added -DCARES_STATICLIB to CFLAGS.Guenter Knauf1-0/+1
Currently this static makefile does only support building the static library libcares.a.
2013-04-08.gitignore: ignore patch filesAlexander Klauer1-0/+1
This commit adds a line to .gitignore to the effect that patch files generated by 'git format-patch' are excluded from the repository.
2013-04-08ares_destroy() documentation: no new requestsAlexander Klauer1-1/+2
Clarify that no new requests may be added to a resolver channel that is currently being destroyed.
2013-04-08Documentation: properly document ARES_ECANCELLEDAlexander Klauer7-1/+21
This commit clarifies the behaviour of ares_cancel() with respect to callbacks and adds missing documentation of ARES_ECANCELLED to the man pages of the affected functions.
2013-04-08ares_cancel(): cancel requests safelyAlexander Klauer1-20/+20
An invocation of ares_cancel() walks through the request list, calling the callbacks of all pending requests on a channel. Previously, if such a callback added a new request to the channel, the request list might not end up empty, causing an abort by assertion failure. The present commit ensures that precisely all requests present upon entry of ares_cancel() are cancelled, and that adding new requests through callbacks is safe.
2013-03-10ares.h: stricter CARES_EXTERN linkage decorations logicYang Tse3-52/+46
No API change involved.
2013-03-10ares_build.h.dist: enhance non-configure GCC ABI detection logicYang Tse1-3/+5
GCC specific adjustments: - check __ILP32__ before 32 and 64bit processor architectures in order to detect ILP32 programming model on 64 bit processors which, of course, also support LP64 programming model, when using gcc 4.7 or newer. - keep 32bit processor architecture checks in order to support gcc versions older than 4.7 which don't define __ILP32__ - check __LP64__ for gcc 3.3 and newer, while keeping 64bit processor architecture checks for older versions which don't define __LP64__
2013-03-09ares.h: there is no ares_free_soa functionDaniel Stenberg1-3/+1
2013-03-09Makefile.am: empty AM_LDFLAGS definition for automake 1.7 compatibilityYang Tse1-0/+2
2013-03-08ares_inet_ntop.3: s/socklen_t/ares_socklen_tYang Tse1-1/+1
2013-03-08configure: use XC_LIBTOOL for portability across libtool versionsYang Tse3-62/+27
2013-03-08xc-lt-iface.m4: provide XC_LIBTOOL macroYang Tse1-0/+465