diff options
author | Thomas Markwalder <tmark@isc.org> | 2021-05-13 13:22:29 -0400 |
---|---|---|
committer | Wlodek Wencel <wlodek@isc.org> | 2022-01-25 18:25:58 +0100 |
commit | 3d53b2f2a0369c2af83c738d4e8194077315cbb4 (patch) | |
tree | e14f8c48e975d8f39be0819ecd6c27ea9c482612 /RELNOTES | |
parent | b2ca192e648a33feed6c25989d0fe4be9cc93f6e (diff) | |
download | isc-dhcp-3d53b2f2a0369c2af83c738d4e8194077315cbb4.tar.gz |
[#182] Corrected CVE: CVE-2021-25217
Addressed buffer overwrite in parse_X()
Added Release Note
common/parse.c
parse_X() - reworked to avoid buffer overwrite on
over-sized hex literals
common/tests/option_unittest.c
ATF_TC_BODY(parse_X) - new test which verifies
parse_X() logic.
Diffstat (limited to 'RELNOTES')
-rw-r--r-- | RELNOTES | 11 |
1 files changed, 9 insertions, 2 deletions
@@ -27,7 +27,7 @@ ISC DHCP is open source software maintained by Internet Systems Consortium. This product includes cryptographic software written by Eric Young (eay@cryptsoft.com). - Changes since 4.4.2 (New Features) + Changes since 4.4.2-P1 (New Features) - BIND libraries updated to the latest version, 9.11.36. This fixes a number of compilation issues on various systems, including OpenWRT. Thanks to @@ -39,7 +39,7 @@ by Eric Young (eay@cryptsoft.com). and the client Linux script sample was updated. [Gitlab #132] - Changes since 4.4.2 (Bug Fixes) + Changes since 4.4.2-P1 (Bug Fixes) - Minor corrections to allow compilation under gcc 10. [Gitlab #117] @@ -73,6 +73,13 @@ by Eric Young (eay@cryptsoft.com). an object to fail. [Gitlab #148] + Changes since 4.4.2 (Bug Fixes) + +- Corrected a buffer overwrite possible when parsing hexadecimal + literals with more than 1024 octets. + [Gitlab #182] + CVE: CVE-2021-25217 + Changes since 4.4.2b1 (Bug Fixes) - Added a clarification on DHCPINFORMs and server authority to |