From 9388cf013f9a2303cd839c87f2199861a145cac5 Mon Sep 17 00:00:00 2001
From: Natanael Copa <ncopa@alpinelinux.org>
Date: Fri, 6 Mar 2009 07:57:19 +0000
Subject: extra/djbdns: security fix

http://securityandthe.net/2009/03/05/security-issue-in-djbdns-confirmed/
---
 extra/djbdns/1.05-response.patch | 11 +++++++++++
 1 file changed, 11 insertions(+)
 create mode 100644 extra/djbdns/1.05-response.patch

(limited to 'extra/djbdns/1.05-response.patch')

diff --git a/extra/djbdns/1.05-response.patch b/extra/djbdns/1.05-response.patch
new file mode 100644
index 00000000000..eb6ae59049a
--- /dev/null
+++ b/extra/djbdns/1.05-response.patch
@@ -0,0 +1,11 @@
+--- a/response.c.orig     2009-02-24 21:04:06.000000000 -0800
++++ b/response.c  2009-02-24 21:04:25.000000000 -0800
+@@ -34,7 +34,7 @@
+         uint16_pack_big(buf,49152 + name_ptr[i]);
+         return response_addbytes(buf,2);
+       }
+-    if (dlen <= 128)
++    if ((dlen <= 128) && (response_len < 16384))
+       if (name_num < NAMES) {
+        byte_copy(name[name_num],dlen,d);
+        name_ptr[name_num] = response_len;
-- 
cgit v1.2.3