From mboxrd@z Thu Jan  1 00:00:00 1970
From: Peter =?utf-8?q?M=C3=BCller?= <peter.mueller@ipfire.org>
To: development@lists.ipfire.org
Subject: Including patch for CVE-2020-25705 into upcoming Core Update 153?
Date: Mon, 16 Nov 2020 17:10:16 +0100
Message-ID: <5e4a0b61-8aa6-0052-e468-5722d7a915c8@ipfire.org>
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============4512052494119961860=="
List-Id: <development.lists.ipfire.org>

--===============4512052494119961860==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable

Hello *,

since Core Update 153 is already scheduled to come with a new kernel, includi=
ng this
patch against CVE-2020-25705 (dubbed "SADDNS" at the time of writing) into it=
 makes
sense IMHO:

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=
=3Db38e7819cae946e2edf869e604af1e65a5d241c5

Further reading is available at, for example, ZDNet:
https://www.zdnet.com/article/dns-cache-poisoning-poised-for-a-comeback-sad-d=
ns/

Thanks, and best regards,
Peter M=C3=BCller

--===============4512052494119961860==--