An out-of-bounds write in systemd-resolved due to allocating buffer that is too small in dns_packet_new was found. Malicious DNS server can exploit this by responding with specially crafted TCP payload to write arbitrary data beyond the allocated buffer.
Name: Chris Coulson (Canonical)
Created attachment 1290017 [details]
This issue did not affect the versions of systemd as shipped with Red Hat Enterprise Linux 7.
Created systemd tracking bugs for this issue:
Affects: fedora-all [bug 1465728]