Hello community, here is the log from the commit of package nss-pam-ldapd for openSUSE:Factory checked in at 2013-03-18 07:09:31 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/nss-pam-ldapd (Old) and /work/SRC/openSUSE:Factory/.nss-pam-ldapd.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "nss-pam-ldapd", Maintainer is "" Changes: -------- --- /work/SRC/openSUSE:Factory/nss-pam-ldapd/nss-pam-ldapd.changes 2012-08-26 11:33:03.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.nss-pam-ldapd.new/nss-pam-ldapd.changes 2013-03-18 07:09:33.000000000 +0100 @@ -1,0 +2,6 @@ +Wed Mar 13 14:00:00 UTC 2013 - [email protected] + +- bnc#804682 - VUL-0: CVE-2013-0288: nss-pam-ldapd: FD_SET array index + error, leading to stack-based buffer overflow + +------------------------------------------------------------------- New: ---- bnc#804682.dif ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ nss-pam-ldapd.spec ++++++ --- /var/tmp/diff_new_pack.fzdrJI/_old 2013-03-18 07:09:34.000000000 +0100 +++ /var/tmp/diff_new_pack.fzdrJI/_new 2013-03-18 07:09:34.000000000 +0100 @@ -1,7 +1,7 @@ # # spec file for package nss-pam-ldapd # -# Copyright (c) 2012 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2013 SUSE LINUX Products GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -36,6 +36,7 @@ Source2: baselibs.conf Source100: nss-pam-ldapd-0.8.10-rpmlintrc Patch0: nslcd-user-conf.dif +Patch1: bnc#804682.dif BuildRoot: %{_tmppath}/%{name}-%{version}-build %description @@ -58,6 +59,7 @@ %setup -q cp -v %{S:1} . %patch0 -p1 +%patch1 -p1 %build %{?suse_update_config:%{suse_update_config -f}} ++++++ bnc#804682.dif ++++++ diff -ru nss-pam-ldapd-0.8.10/common/tio.c nss-pam-ldapd-0.8.10-fixed/common/tio.c --- nss-pam-ldapd-0.8.10/common/tio.c 2012-04-26 21:50:43.000000000 +0200 +++ nss-pam-ldapd-0.8.10-fixed/common/tio.c 2013-03-13 14:57:13.000000000 +0100 @@ -184,6 +184,11 @@ while (1) { /* prepare our filedescriptorset */ + if (fp->fd>=FD_SETSIZE) + { + errno=EBADFD; + return -1; + } FD_ZERO(&fdset); FD_SET(fp->fd,&fdset); /* figure out the time we need to wait */ @@ -343,6 +348,11 @@ while (1) { /* prepare our file descriptor set */ + if (fp->fd>=FD_SETSIZE) + { + errno=EBADFD; + return -1; + } FD_ZERO(&fdset); FD_SET(fp->fd,&fdset); /* prepare the time to wait */ @@ -446,6 +456,11 @@ fd_set fdset; int rv; /* prepare our filedescriptorset */ + if (fp->fd>=FD_SETSIZE) + { + errno=EBADFD; + return -1; + } FD_ZERO(&fdset); FD_SET(fp->fd,&fdset); /* set the timeout to 0 to poll */ -- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
