CVS: cvs.openbsd.org: src

Florian Obser Tue, 13 Feb 2024 04:57:19 -0800

CVSROOT:        /cvs
Module name:    src
Changes by:     [email protected] 2024/02/13 05:57:11


Modified files:
        usr.sbin/unbound/services: authzone.c 
        usr.sbin/unbound/services/cache: dns.c dns.h 
        usr.sbin/unbound/testcode: unitverify.c 
        usr.sbin/unbound/util: fptr_wlist.c 
        usr.sbin/unbound/validator: val_nsec.c val_nsec3.c val_nsec3.h 
                                    val_sigcrypt.c val_sigcrypt.h 
                                    val_utils.c val_utils.h validator.c 
                                    validator.h 

Log message:
Fix for CVE-2023-50387 and CVE-2023-50868.

Both can be used to cause high CPU load and potentially denial of
service with specifically crafted DNSSEC responses.

CVS: cvs.openbsd.org: src

Reply via email to