[Bug network/19825] resolv: send_vc can return uninitialized data in second response to getaddrinfo

["cvs-commit at gcc dot gnu.org" <sourceware-bugzilla at sourceware dot org>]

https://sourceware.org/bugzilla/show_bug.cgi?id=19825

--- Comment #1 from cvs-commit at gcc dot gnu.org <cvs-commit at gcc dot gnu.org> ---
This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "GNU C Library master sources".

The branch, master has been updated
       via  b9bdfa7c8fa22c944bb5f21a673dfd1f91b71c56 (commit)
      from  b06549a5e62d66ef16bdc2a2a6ec8e9dae2ea52b (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=b9bdfa7c8fa22c944bb5f21a673dfd1f91b71c56

commit b9bdfa7c8fa22c944bb5f21a673dfd1f91b71c56
Author: Florian Weimer <fweimer@redhat.com>
Date:   Wed Apr 27 14:26:47 2016 +0200

    resolv: Always set *resplen2 out parameter in send_vc [BZ #19825]

    In various error scenarios (for example, if the server closes the
    TCP connection before sending the full response), send_vc can return
    without resetting the *resplen2 value.  This can pass uninitialized
    or unexpected data to the caller.

-----------------------------------------------------------------------

Summary of changes:
 ChangeLog         |    7 +++++++
 resolv/res_send.c |   39 ++++++++++++++++++---------------------
 2 files changed, 25 insertions(+), 21 deletions(-)

-- 
You are receiving this mail because:
You are on the CC list for the bug.