Pi-Hole/dnsmasq
1
0
Fork 0
mirror of https://github.com/pi-hole/dnsmasq.git synced 2025-12-19 10:18:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

Update credits for Google security team.

Browse Source
This commit is contained in:
Simon Kelley
2017-09-26 18:43:19 +01:00
parent 6a0b00f0d6
commit 39921d03ba
1 changed files with 8 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
CHANGELOG
View File

@@ -32,7 +32,7 @@ version 2.78
even take control of, dnsmasq. even take control of, dnsmasq.
CVE-2017-14491 applies. CVE-2017-14491 applies.
Credit to Felix Wilhelm, Fermin J. Serna, Gabriel Campana Credit to Felix Wilhelm, Fermin J. Serna, Gabriel Campana
and Kevin Hamacher of the Google Security Team for Kevin Hamacher and Ron Bowes of the Google Security Team for
finding this. finding this.
Fix heap overflow in IPv6 router advertisement code. Fix heap overflow in IPv6 router advertisement code.
@@ -49,7 +49,7 @@ version 2.78
crash or control dnsmasq. crash or control dnsmasq.
CVE-2017-14493 applies. CVE-2017-14493 applies.
Credit to Felix Wilhelm, Fermin J. Serna, Gabriel Campana Credit to Felix Wilhelm, Fermin J. Serna, Gabriel Campana
and Kevin Hamacher of the Google Security Team for Kevin Hamacher and Ron Bowes of the Google Security Team for
finding this. finding this.
Fix information leak in DHCPv6. A crafted DHCPv6 packet can Fix information leak in DHCPv6. A crafted DHCPv6 packet can
@@ -57,9 +57,9 @@ version 2.78
buffer to a DHCPv6 server when acting as a relay. buffer to a DHCPv6 server when acting as a relay.
CVE-2017-14494 applies. CVE-2017-14494 applies.
Credit to Felix Wilhelm, Fermin J. Serna, Gabriel Campana Credit to Felix Wilhelm, Fermin J. Serna, Gabriel Campana
and Kevin Hamacher of the Google Security Team for Kevin Hamacher and Ron Bowes of the Google Security Team for
finding this. finding this.
Fix DoS in DNS. Invalid boundary checks in the Fix DoS in DNS. Invalid boundary checks in the
add_pseudoheader function allows a memcpy call with negative add_pseudoheader function allows a memcpy call with negative
size An attacker which can send malicious DNS queries size An attacker which can send malicious DNS queries
@@ -68,7 +68,7 @@ version 2.78
specified: --add-mac, --add-cpe-id or --add-subnet. specified: --add-mac, --add-cpe-id or --add-subnet.
CVE-2017-14496 applies. CVE-2017-14496 applies.
Credit to Felix Wilhelm, Fermin J. Serna, Gabriel Campana Credit to Felix Wilhelm, Fermin J. Serna, Gabriel Campana
and Kevin Hamacher of the Google Security Team for Kevin Hamacher and Ron Bowes of the Google Security Team for
finding this. finding this.
Fix out-of-memory Dos vulnerability. An attacker which can Fix out-of-memory Dos vulnerability. An attacker which can
@@ -80,10 +80,10 @@ version 2.78
--add-mac, --add-cpe-id or --add-subnet. --add-mac, --add-cpe-id or --add-subnet.
CVE-2017-14495 applies. CVE-2017-14495 applies.
Credit to Felix Wilhelm, Fermin J. Serna, Gabriel Campana Credit to Felix Wilhelm, Fermin J. Serna, Gabriel Campana
and Kevin Hamacher of the Google Security Team for Kevin Hamacher and Ron Bowes of the Google Security Team for
finding this. finding this.
version 2.77 version 2.77
Generate an error when configured with a CNAME loop, Generate an error when configured with a CNAME loop,
rather than a crash. Thanks to George Metz for rather than a crash. Thanks to George Metz for