DNS resolver NULL pointer dereference with crafted record type
Florian Weimer discovered a NULL pointer dereference in the DNS
resolver of the GNU C Library. An attacker could use this to cause
a denial of service.
tyhicks> See test case in the bug
tyhicks> no fix upstream as of 2016-09-09
sbeattie> patch committed upstream on 2016-12-31; renames symbol so
backporting may not be easy.
sbeattie> commit included in glibc 2.25 release
sbeattie> debian fixed this in unstable in 2.24-9
sbeattie> fixing this does indeed break the internal ABI between
libnss_dns and libresolv. We're backing out this change.
sbeattie> reverted from zesty in 2.24-9ubuntu2 by infinity.
sbeattie> For existing releases, DO NOT APPLY THIS PATCH due to ABI
breakage. Fix will come in to 17.10 when we get glibc-2.25 as we
do not guarantee ABI for libresolv internals across different
different glibc releases, just for upgrades for same versions
e.g. (2.24 -> 2.24)
REPEAT: DO NOT APPLY THIS PATCH (UNMODIFIED) IN A STABLE RELEASE
Updated: 2017-03-22 01:14:14 UTC (commit 12281)