[Dnsmasq-discuss] reproducible segmentation fault - bisected!

Kevin Darbyshire-Bryant kevin at darbyshire-bryant.me.uk
Tue Aug 29 12:45:07 BST 2017


I've a *much* better fix for this.  Will submit once I've collected 
someone from the station!

Mad busy life,

Kevin

On 28/08/17 17:27, Christian Kujau wrote:
> On Mon, 28 Aug 2017, Christian Kujau wrote:
>> On Mon, 28 Aug 2017, Kevin Darbyshire-Bryant wrote:
>>> My workaround is to only call memset if the difference between buffer begin
>>> and buffer limit is bigger than the query length, thus it retains Simon's
>>> intent of clearing memory most of the time but avoids the SIGSEGV trampling.
>>
>> Thanks, with your patch dnsmasq doesn't crash anymore when receiving odd
>> EDNS packets from dnseval.
>>
>> And thanks for requesting the CVE - I thought about this too, as the bug
>> constitutes some kind of DoS issue, but since nobody else complained, I
>> suspected it to be some variation of PEBKAC on my part :)
> 
> Oh, I believe it was Juan Manuel requesting the CVE - thanks!
> 
> C.
> 



More information about the Dnsmasq-discuss mailing list