Closed apsun closed 2 years ago
Our DNS response parser is trash. We should fix it to limit reads into the response body range only. Currently this is vulnerable to RCE (though I suppose since we only support QEMU, this probably isn't that big of an issue).
(Hopefully) fixed in ba5ab4a292ec46616ef8cffbb74dedf2085751c5
Our DNS response parser is trash. We should fix it to limit reads into the response body range only. Currently this is vulnerable to RCE (though I suppose since we only support QEMU, this probably isn't that big of an issue).