Copied from
ubuntu focal in
Private PPA for Ubuntu Security Team
by Marc Deslauriers
Changelog
c-ares (1.15.0-1ubuntu0.1) focal-security; urgency=medium
* SECURITY UPDATE: Missing input validation on hostnames returned by DNS
servers
- debian/patches/CVE-2021-3672-1.patch: escape more characters in
ares_expand_name.c.
- debian/patches/CVE-2021-3672-2.patch: fix formatting and handling of
root name response in ares_expand_name.c.
- CVE-2021-3672
-- Marc Deslauriers <email address hidden> Mon, 02 Aug 2021 07:30:23 -0400