git://git.exim.org / exim.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: bba74fc) | patch
SECURITY: DKIM DNS buffer overflow protection
authorPhil Pennock <pdp@exim.org>
Thu, 25 Oct 2012 03:26:29 +0000 (23:26 -0400)
committerPhil Pennock <pdp@exim.org>
Thu, 25 Oct 2012 03:26:29 +0000 (23:26 -0400)
commit4263f395efd136dece52d765dfcff3c96f17506e
tree867adc4c09b196ed44a7a334025b09c36501b0b9tree | snapshot
parentbba74fc65f77dc6678b3d33eef0acf43efe8f653commit | diff
SECURITY: DKIM DNS buffer overflow protection

CVE-2012-5671

malloc/heap overflow, with a 60kB window of overwrite.
Requires DNS under control of person sending email, leaves plenty of
evidence, but is very likely exploitable on OSes that have not been
well hardened.
doc/doc-txt/ChangeLog diff | blob | history
src/src/dkim.c diff | blob | history
src/src/pdkim/pdkim.h diff | blob | history
Master Exim source repository