Bugzilla – Bug 403
heap overflow in ldns_rr_new_frm_str_internal
Last modified: 2011-08-24 23:29:31 CEST
Created attachment 180 [details]
In ldns_rr_new_frm_str_internal, when parsing rr data that uses the "\#" notation, there can be a heap overflow when there is more data present than indicated by the number after the "\#". For example, if the data part looked like "\# 1 0000", there would be an overflow, because the tokenizer grabs all of the "0000" and puts it in a buffer only large enough for "00".
You are right! Thanks for the fix.
Patch applied in trunk.
Looking forward to your coming fixes :)
(In reply to comment #1)
> You are right! Thanks for the fix.
> Patch applied in trunk.
> Looking forward to your coming fixes :)
Thanks for the quick responses :)