File bsc1185388_CVE-2019-25037_d2eb78e8.patch of Package unbound.24859

From d2eb78e871153f22332d30c6647f3815148f21e5 Mon Sep 17 00:00:00 2001
From: "W.C.A. Wijngaards" <wouter@nlnetlabs.nl>
Date: Tue, 3 Dec 2019 15:20:48 +0100
Subject: [PATCH] - Fix Assert Causing DoS in dname_pkt_copy(),   reported by
 X41 D-Sec.

---
 util/data/dname.c |    4 ++++
 1 file changed, 4 insertions(+)

--- util/data/dname.c
+++ util/data/dname.c	2022-01-17 12:53:03.504445842 +0000
@@ -358,6 +358,10 @@ void dname_pkt_copy(sldns_buffer* pkt, u
 			lablen = *dname++;
 			continue;
 		}
+		if(lablen > LDNS_MAX_LABELLEN) {
+			*to = 0; /* end the result prematurely */
+			return;
+		}
 		log_assert(lablen <= LDNS_MAX_LABELLEN);
 		len += (size_t)lablen+1;
 		if(len >= LDNS_MAX_DOMAINLEN) {

Places

File bsc1185388_CVE-2019-25037_d2eb78e8.patch of Package unbound.24859

Places