mirror of
https://github.com/openwrt/packages.git
synced 2025-12-24 06:18:21 +04:00
f9fbc75557
This includes the fix for CVE-2018-5738: When recursion is enabled but the allow-recursion and allow-query-cache ACLs are not specified, they should be limited to local networks, but they were inadvertently set to match the default allow-query, thus allowing remote queries. Signed-off-by: Noah Meyerhans <frodo@morgul.net>