dnsmasq: CVE-2017-15107

* CVE-2017-15107 A vulnerability was found in Dnsmasq's implementation of DNSSEC. Wildcard synthesized NSEC records could be improperly interpreted to prove the non-existence of hostnames that actually exist. Affects dnsmasq <= 2.78 CVE: CVE-2017-15107 Ref: https://access.redhat.com/security/cve/cve-2017-15107 Signed-off-by: Sinan Kaya <okaya@kernel.org> Signed-off-by: Armin Kuster <akuster808@gmail.com>
author: Sinan Kaya <okaya@kernel.org> 2018-09-24 19:21:02 +0000
committer: Armin Kuster <akuster808@gmail.com> 2018-09-26 18:51:17 -0700
commit: ca2870ff8e96c3e82ed2c0cc5607b35fbf8c4b4c (patch)
tree: 417e4d22e58e8dc0d6507847868891312f824cd3 /meta-networking/recipes-support/dnsmasq/dnsmasq_2.78.bb
parent: 35c6359155d6082d279ba86b94125d684d435dad (diff)
download: meta-openembedded-contrib-ca2870ff8e96c3e82ed2c0cc5607b35fbf8c4b4c.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/meta-networking/recipes-support/dnsmasq/dnsmasq_2.78.bb b/meta-networking/recipes-support/dnsmasq/dnsmasq_2.78.bb
index 4d1dc6e69e..d2465f82d6 100644
--- a/meta-networking/recipes-support/dnsmasq/dnsmasq_2.78.bb
+++ b/meta-networking/recipes-support/dnsmasq/dnsmasq_2.78.bb
@@ -2,6 +2,7 @@ require dnsmasq.inc
 
 SRC_URI += "\
     file://lua.patch \
+    file://CVE-2017-15107.patch \
 "
 
 SRC_URI[dnsmasq-2.78.md5sum] = "3bb97f264c73853f802bf70610150788"
author	Sinan Kaya <okaya@kernel.org>	2018-09-24 19:21:02 +0000
committer	Armin Kuster <akuster808@gmail.com>	2018-09-26 18:51:17 -0700
commit	ca2870ff8e96c3e82ed2c0cc5607b35fbf8c4b4c (patch)
tree	417e4d22e58e8dc0d6507847868891312f824cd3 /meta-networking/recipes-support/dnsmasq/dnsmasq_2.78.bb
parent	35c6359155d6082d279ba86b94125d684d435dad (diff)
download	meta-openembedded-contrib-ca2870ff8e96c3e82ed2c0cc5607b35fbf8c4b4c.tar.gz