e8dc42753c
Fixes security issues: * CVE-2022-0396 -- A synchronous call to closehandle_cb() caused isc__nm_process_sock_buffer() to be called recursively, which in turn left TCP connections hanging in the CLOSE_WAIT state blocking indefinitely when out-of-order processing was disabled. * CVE-2021-25220 -- The rules for acceptance of records into the cache have been tightened to prevent the possibility of poisoning if forwarders send records outside the configured bailiwick. Signed-off-by: Noah Meyerhans <frodo@morgul.net> |
||
---|---|---|
.. | ||
001-no-tests.patch |