- Fix for integer overflow when printing RDF_TYPE_TIME.

2026-01-31 10:49:27 -05:00 · 2020-05-21 22:48:57 +02:00 · 2020-05-21 22:48:57 +02:00 · 8af3d73b9b
commit 8af3d73b9b
parent f37242566b
2 changed files with 4 additions and 1 deletions
--- a/doc/Changelog
+++ b/doc/Changelog
@ -1,3 +1,6 @@
+21 May 2020: George
+	- Fix for integer overflow when printing RDF_TYPE_TIME.
+
 19 May 2020: Wouter
 	- CVE-2020-12662 Unbound can be tricked into amplifying an incoming
 	  query into a large number of queries directed to a target.
--- a/sldns/parseutil.c
+++ b/sldns/parseutil.c
@ -167,7 +167,7 @@ sldns_gmtime64_r(int64_t clock, struct tm *result)
 static int64_t
 sldns_serial_arithmetics_time(int32_t time, time_t now)
 {
-	int32_t offset = time - (int32_t) now;
+	int32_t offset = (int32_t)((uint32_t) time - (uint32_t) now);
 	return (int64_t) now + offset;
 }