mr/openwrt
2
0
Fork 1
Code Issues 7 Pull Requests Releases Wiki Activity
37,960 Commits 3 Branches 0 Tags 517 MiB
C 90.8%
Makefile 4.4%
Shell 1.6%
Roff 1.5%
Perl 0.6%
Other 1%
a006b48c04
Go to file
Kevin Darbyshire-Bryant a006b48c04 dnsmasq: forward.c: fix CVE-2017-13704 
Fix SIGSEGV in rfc1035.c answer_request() line 1228 where memset()
is called with header & limit pointing at the same address and thus
tries to clear memory from before the buffer begins.

answer_request() is called with an invalid edns packet size provided by
the client.  Ensure the udp_size provided by the client is bounded by
512 and configured maximum as per RFC 6891 6.2.3 "Values lower than 512
MUST be treated as equal to 512"

The client that exposed the problem provided a payload udp size of 0.

Signed-off-by: Kevin Darbyshire-Bryant <kevin@darbyshire-bryant.me.uk>
Acked-by: Hans Dedecker <dedeckeh@gmail.com>
2017-08-30 21:12:49 +02:00
.github Add Issue submission template (redirect to bugs.lede-project.org) 2016-09-01 09:01:04 -04:00
config x86: Set default baud rate on Geode images to 115200 2017-02-17 10:30:30 +01:00
include kernel: update 4.4 to 4.4.83 2017-08-17 19:47:27 +02:00
package dnsmasq: forward.c: fix CVE-2017-13704 2017-08-30 21:12:49 +02:00
scripts feeds: add option to force feed update despite modified files 2017-04-28 17:02:48 +02:00
target kernel: backport usbport LED trigger driver support for DT 2017-08-21 16:46:18 +02:00
toolchain toolchain/gdb: update to version 7.12.1 2017-05-30 01:32:21 +02:00
tools firmware-utils: fix dgn3500sum compiler warnings 2017-06-26 20:11:16 +02:00
.gitattributes add .gitattributes to prevent the git autocrlf option from messing with CRLF/LF in files 2012-05-08 13:30:49 +00:00
.gitignore gitignore: add /overlay 2017-01-15 18:16:29 +01:00
BSDmakefile add missing copyright header 2007-02-26 01:05:09 +00:00
Config.in branding: add LEDE branding 2016-03-24 22:40:13 +01:00
feeds.conf.default LEDE v17.01.2: revert to branch defaults 2017-06-10 13:08:07 +02:00
LICENSE finally move buildroot-ng to trunk 2016-03-20 17:29:15 +01:00
Makefile Makefile: ensure that BIN_DIR exists for diffconfig 2017-01-08 18:50:00 +01:00
README README: Update project README 2016-05-12 03:29:36 +02:00
rules.mk build: use mkhash to replace various quirky md5sum/openssl calls 2017-01-05 11:09:12 +01:00

README 

This is the buildsystem for the LEDE Linux distribution.

Please use "make menuconfig" to choose your preferred
configuration for the toolchain and firmware.

You need to have installed gcc, binutils, bzip2, flex, python, perl, make,
find, grep, diff, unzip, gawk, getopt, subversion, libz-dev and libc headers.

Run "./scripts/feeds update -a" to get all the latest package definitions
defined in feeds.conf / feeds.conf.default respectively
and "./scripts/feeds install -a" to install symlinks of all of them into
package/feeds/.

Use "make menuconfig" to configure your image.

Simply running "make" will build your firmware.
It will download all sources, build the cross-compile toolchain, 
the kernel and all choosen applications.

To build your own firmware you need to have access to a Linux, BSD or MacOSX system
(case-sensitive filesystem required). Cygwin will not be supported because of
the lack of case sensitiveness in the file system.


Sunshine!
	Your LEDE Community
	http://www.lede-project.org