You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
30 lines
849 B
30 lines
849 B
4 weeks ago
|
From 274463c5b71db87a615694889da23837ba48db9a Mon Sep 17 00:00:00 2001
|
||
|
From: Petr Mensik <pemensik@redhat.com>
|
||
|
Date: Tue, 16 Jul 2024 19:49:26 +0200
|
||
|
Subject: [PATCH] Resolve CVE-2024-4076
|
||
|
|
||
|
6403. [security] qctx-zversion was not being cleared when it should have
|
||
|
been leading to an assertion failure if it needed to be
|
||
|
reused. (CVE-2024-4076) [GL #4507]
|
||
|
|
||
|
Resolves: CVE-2024-4076
|
||
|
---
|
||
|
lib/ns/query.c | 1 +
|
||
|
1 file changed, 1 insertion(+)
|
||
|
|
||
|
diff --git a/lib/ns/query.c b/lib/ns/query.c
|
||
|
index 537d332..be4cbb6 100644
|
||
|
--- a/lib/ns/query.c
|
||
|
+++ b/lib/ns/query.c
|
||
|
@@ -5325,6 +5325,7 @@ qctx_freedata(query_ctx_t *qctx) {
|
||
|
ns_client_releasename(qctx->client, &qctx->zfname);
|
||
|
dns_db_detachnode(qctx->zdb, &qctx->znode);
|
||
|
dns_db_detach(&qctx->zdb);
|
||
|
+ qctx->zversion = NULL;
|
||
|
}
|
||
|
|
||
|
if (qctx->event != NULL && !qctx->client->nodetach) {
|
||
|
--
|
||
|
2.45.2
|
||
|
|