SECURITY: DKIM DNS buffer overflow protection
authorPhil Pennock <pdp@exim.org>
Thu, 25 Oct 2012 03:26:29 +0000 (23:26 -0400)
committerPhil Pennock <pdp@exim.org>
Thu, 25 Oct 2012 03:26:29 +0000 (23:26 -0400)
commit4263f395efd136dece52d765dfcff3c96f17506e
tree867adc4c09b196ed44a7a334025b09c36501b0b9
parentbba74fc65f77dc6678b3d33eef0acf43efe8f653
SECURITY: DKIM DNS buffer overflow protection

CVE-2012-5671

malloc/heap overflow, with a 60kB window of overwrite.
Requires DNS under control of person sending email, leaves plenty of
evidence, but is very likely exploitable on OSes that have not been
well hardened.
doc/doc-txt/ChangeLog
src/src/dkim.c
src/src/pdkim/pdkim.h