cirros-testvm/src-cirros/buildroot-2015.05/package/glibc/2.20/0002-CVE-2014-9402.patch

   1 Fix CVE-2014-9402 - denial of service in getnetbyname function.
   2 Backport from https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=11e3417af6e354f1942c68a271ae51e892b2814d
   3 See https://bugzilla.redhat.com/show_bug.cgi?id=1175369
   4
   5 Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
   6
   7 diff --git a/resolv/nss_dns/dns-network.c b/resolv/nss_dns/dns-network.c
   8 index 0a77c8b..08cf0a6 100644
   9 --- a/resolv/nss_dns/dns-network.c
  10 +++ b/resolv/nss_dns/dns-network.c
  11 @@ -398,8 +398,8 @@ getanswer_r (const querybuf *answer, int anslen, struct netent *result,
  12
  13         case BYNAME:
  14           {
  15 -           char **ap = result->n_aliases++;
  16 -           while (*ap != NULL)
  17 +           char **ap;
  18 +           for (ap = result->n_aliases; *ap != NULL; ++ap)
  19               {
  20                 /* Check each alias name for being of the forms:
  21                    4.3.2.1.in-addr.arpa         = net 1.2.3.4
  22 --
  23 1.7.1
  24