diff options
| author |   Hans de Graaff <graaff@gentoo.org> | 2022-08-20 10:22:07 +0200 |
|---|---|---|
| committer | Hans de Graaff <graaff@gentoo.org> | 2022-08-20 10:23:11 +0200 |
| commit | f00c644c3393ceb36ae94a52cad5f56ae4d6f60c (patch) | |
| tree | 2fcf6d2c258074067b8573a5fe3da10728ab75f7 /dev-libs/apr/files | |
| parent | www-client/chromium: filter out -mno-sse4a (diff) | |
| download | gentoo-f00c644c3393ceb36ae94a52cad5f56ae4d6f60c.tar.gz gentoo-f00c644c3393ceb36ae94a52cad5f56ae4d6f60c.tar.bz2 gentoo-f00c644c3393ceb36ae94a52cad5f56ae4d6f60c.zip | |
dev-libs/apr: apply fix for CVE-2021-35940
Bug: https://bugs.gentoo.org/828545
Signed-off-by: Hans de Graaff <graaff@gentoo.org>
Diffstat (limited to 'dev-libs/apr/files')
| -rw-r--r-- | dev-libs/apr/files/apr-1.7.0-CVE-2021-35940.patch | 53 |
1 files changed, 53 insertions, 0 deletions
diff --git a/dev-libs/apr/files/apr-1.7.0-CVE-2021-35940.patch b/dev-libs/apr/files/apr-1.7.0-CVE-2021-35940.patch new file mode 100644 index 000000000000..f23d729f523e --- /dev/null +++ b/dev-libs/apr/files/apr-1.7.0-CVE-2021-35940.patch @@ -0,0 +1,53 @@ + +SECURITY: CVE-2021-35940 (cve.mitre.org) + +Restore fix for CVE-2017-12613 which was missing in 1.7.x branch, though +was addressed in 1.6.x in 1.6.3 and later via r1807976. + +The fix was merged back to 1.7.x in r1891198. + +Since this was a regression in 1.7.0, a new CVE name has been assigned +to track this, CVE-2021-35940. + +Thanks to Iveta Cesalova <icesalov redhat.com> for reporting this issue. + +https://svn.apache.org/viewvc?view=revision&revision=1891198 + +Index: time/unix/time.c +=================================================================== +--- a/time/unix/time.c (revision 1891197) ++++ b/time/unix/time.c (revision 1891198) +@@ -142,6 +142,9 @@ + static const int dayoffset[12] = + {306, 337, 0, 31, 61, 92, 122, 153, 184, 214, 245, 275}; + ++ if (xt->tm_mon < 0 || xt->tm_mon >= 12) ++ return APR_EBADDATE; ++ + /* shift new year to 1st March in order to make leap year calc easy */ + + if (xt->tm_mon < 2) +Index: time/win32/time.c +=================================================================== +--- a/time/win32/time.c (revision 1891197) ++++ b/time/win32/time.c (revision 1891198) +@@ -54,6 +54,9 @@ + static const int dayoffset[12] = + {0, 31, 59, 90, 120, 151, 181, 212, 243, 273, 304, 334}; + ++ if (tm->wMonth < 1 || tm->wMonth > 12) ++ return APR_EBADDATE; ++ + /* Note; the caller is responsible for filling in detailed tm_usec, + * tm_gmtoff and tm_isdst data when applicable. + */ +@@ -228,6 +231,9 @@ + static const int dayoffset[12] = + {306, 337, 0, 31, 61, 92, 122, 153, 184, 214, 245, 275}; + ++ if (xt->tm_mon < 0 || xt->tm_mon >= 12) ++ return APR_EBADDATE; ++ + /* shift new year to 1st March in order to make leap year calc easy */ + + if (xt->tm_mon < 2) |