[3.5] bind: A query name which is too long can cause a segmentation fault in lwresd (CVE-2016-2775)
If the lightweight resolver is asked to resolve a query name which, when
combined with a search list entry,
exceeds the maximum allowable length, the server can terminate due to an
error.
Fixed In Version:
bind 9.9.9-P2, bind 9.10.4-P2, bind 9.11.0b2, bind 9.9.9-S3
References
https://kb.isc.org/article/AA-01393/
(from redmine: issue id 5951, created on 2016-07-25, closed on 2016-07-25)
- Relations:
- parent #5950 (closed)
- Changesets:
- Revision abed434a by Natanael Copa on 2016-07-25T13:47:52Z:
main/bind: security upgrade to 9.10.4_p2 (CVE-2016-2775)
fixes #5951