Overview

File bsc1185393_CVE-2019-25042_6c3a0b54.patch of Package libunbound-devel-mini.22509

From 6c3a0b54ed8ace93d5b5ca7b8078dc87e75cd640 Mon Sep 17 00:00:00 2001
From: "W.C.A. Wijngaards" <wouter@nlnetlabs.nl>
Date: Tue, 3 Dec 2019 16:18:47 +0100
Subject: [PATCH] - Fix Out of Bound Write Compressed Names in rdata_copy(),  
 reported by X41 D-Sec.

---
 util/data/msgreply.c |    2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

--- util/data/msgreply.c
+++ util/data/msgreply.c	2022-01-17 12:53:39.551759915 +0000
@@ -238,10 +238,10 @@ rdata_copy(sldns_buffer* pkt, struct pac
 				break;
 			}
 			if(len) {
+				log_assert(len <= pkt_len);
 				memmove(to, sldns_buffer_current(pkt), len);
 				to += len;
 				sldns_buffer_skip(pkt, (ssize_t)len);
-				log_assert(len <= pkt_len);
 				pkt_len -= len;
 			}
 			rdf++;
openSUSE Build Service is sponsored by
Places