git.samba.org / kai / samba-autobuild / .git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c3f6085) | patch
CVE-2018-14629 dns: CNAME loop prevention using counter
authorAaron Haslett <aaronhaslett@catalyst.net.nz>
Tue, 23 Oct 2018 04:25:51 +0000 (17:25 +1300)
committerKarolin Seeger <kseeger@samba.org>
Wed, 28 Nov 2018 07:22:23 +0000 (08:22 +0100)
commit97b426babaa2a812946c77bd841a33c1a9399ab5
treed66b7c873ecc6f887fb1a6607c122c6735dd04c4tree
parentc3f6085991938488b9e48611b4beb5bdc9cbfb04commit | diff
CVE-2018-14629 dns: CNAME loop prevention using counter

Count number of answers generated by internal DNS query routine and stop at
20 to match Microsoft's loop prevention mechanism.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=13600

Signed-off-by: Aaron Haslett <aaronhaslett@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Garming Sam <garming@catalyst.net.nz>
python/samba/tests/dns.py diff | blob | history
selftest/knownfail.d/dns diff | blob | history
source4/dns_server/dns_query.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.