Fix netcat DNS lookup buffer overflows

apsun / loliOS

Lightweight & operational Linux-inspired OS.

33 stars 1 forks source link

Fix netcat DNS lookup buffer overflows #16

Closed apsun closed 2 years ago

apsun commented 5 years ago

Our DNS response parser is trash. We should fix it to limit reads into the response body range only. Currently this is vulnerable to RCE (though I suppose since we only support QEMU, this probably isn't that big of an issue).

apsun commented 2 years ago

(Hopefully) fixed in ba5ab4a292ec46616ef8cffbb74dedf2085751c5