File CVE-2020-22217.patch of Package libcares2.32783

Index: c-ares-1.9.1/ares_parse_soa_reply.c
===================================================================
--- c-ares-1.9.1.orig/ares_parse_soa_reply.c
+++ c-ares-1.9.1/ares_parse_soa_reply.c
@@ -70,6 +70,9 @@ ares_parse_soa_reply(const unsigned char
   status = ares__expand_name_for_response(aptr, abuf, alen, &qname, &len);
   if (status != ARES_SUCCESS)
     goto failed_stat;
+
+  if (alen <= len + HFIXEDSZ + 1)
+    goto failed;
   aptr += len;
 
   /* skip qtype & qclass */

Places

File CVE-2020-22217.patch of Package libcares2.32783

Places