| commit | 51a4571849c5a84b994ce72908eac8141c2d72ed | |
| author | Douglas Bagnall <douglas.bagnall@catalyst.net.nz> | |
| Fri, 24 Apr 2020 23:10:18 +0000 (25 11:10 +1200) | ||
| committer | Karolin Seeger <kseeger@samba.org> | |
| Thu, 2 Jul 2020 09:01:41 +0000 (2 09:01 +0000) | ||
| tree | ffad7e62a3c9fac070eab0d09c75723e82a2061c | treesnapshot (tar.gz zip) |
| parent | bb6373790567ed56a56ea968cfee8da2f92e5cc6 | commitdiff |
CVE-2020-10745: ndr_dns: do not allow consecutive dots
The empty subdomain component is reserved for the root domain, which we
should only (and always) see at the end of the list. That is, we expect
"example.com.", but never "example..com".
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14378
Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz>
The empty subdomain component is reserved for the root domain, which we
should only (and always) see at the end of the list. That is, we expect
"example.com.", but never "example..com".
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14378
Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz>
| librpc/ndr/ndr_dns_utils.c | diffblobblamehistory | |
| selftest/knownfail.d/dns_packet | diffblobblamehistory | |
| selftest/knownfail.d/ndr_dns_nbt | diffblobblamehistory |