nss_dns: Validate RDATA length against packet length [BZ #19830]

In _nss_dns_getcanonname_r, a check for the availability of RR metadata was missing as well.
author: Florian Weimer <fweimer@redhat.com> 2016-04-27 15:11:41 +0200
committer: Florian Weimer <fweimer@redhat.com> 2016-04-27 15:11:42 +0200
commit: f749498fa53df9ead81e291cd9378d67483c2452 (patch)
tree: 6d4153c36df6d2a75e43ea51584f3664b5695ac8 /ChangeLog
parent: b9bdfa7c8fa22c944bb5f21a673dfd1f91b71c56 (diff)
download: glibc-f749498fa53df9ead81e291cd9378d67483c2452.tar.gz
glibc-f749498fa53df9ead81e291cd9378d67483c2452.tar.xz
glibc-f749498fa53df9ead81e291cd9378d67483c2452.zip
1 files changed, 8 insertions, 0 deletions
diff --git a/ChangeLog b/ChangeLog
index 954c95f9a9..081994cf6f 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,5 +1,13 @@
 2016-04-27  Florian Weimer  <fweimer@redhat.com>
 
+	[BZ #19830]
+	* resolv/nss_dns/dns-host.c (getanswer_r): Check RDATA length.
+	(gaih_getanswer_slice): Likewise.
+	* resolv/nss_dns/dns-canon.c (_nss_dns_getcanonname_r): Likewise.
+	Also check for availability of RR metadata.
+
+2016-04-27  Florian Weimer  <fweimer@redhat.com>
+
 	[BZ #19825]
 	* resolv/res_send.c (send_vc): Remove early *resplen2
 	initialization.  Set *resplen2 on socket error.  Call
author	Florian Weimer <fweimer@redhat.com>	2016-04-27 15:11:41 +0200
committer	Florian Weimer <fweimer@redhat.com>	2016-04-27 15:11:42 +0200
commit	f749498fa53df9ead81e291cd9378d67483c2452 (patch)
tree	6d4153c36df6d2a75e43ea51584f3664b5695ac8 /ChangeLog
parent	b9bdfa7c8fa22c944bb5f21a673dfd1f91b71c56 (diff)
download	glibc-f749498fa53df9ead81e291cd9378d67483c2452.tar.gz glibc-f749498fa53df9ead81e291cd9378d67483c2452.tar.xz glibc-f749498fa53df9ead81e291cd9378d67483c2452.zip