Hello community, here is the log from the commit of package ldns for openSUSE:Leap:15.2 checked in at 2020-03-31 07:21:31 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Leap:15.2/ldns (Old) and /work/SRC/openSUSE:Leap:15.2/.ldns.new.3160 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "ldns" Tue Mar 31 07:21:31 2020 rev:22 rq:789141 version:1.7.0 Changes: -------- --- /work/SRC/openSUSE:Leap:15.2/ldns/ldns.changes 2020-01-15 15:18:29.646344728 +0100 +++ /work/SRC/openSUSE:Leap:15.2/.ldns.new.3160/ldns.changes 2020-03-31 07:21:32.698376542 +0200 @@ -1,0 +2,8 @@ +Mon Mar 23 13:24:19 UTC 2020 - Adam Majer <[email protected]> + +- bsc_1068709.patch: Fixes a double-free vulnerability + (bsc#1068709, CVE-2017-1000232) +- bsc_1068711.patch: Fixes a buffer overflow during token parsing + (bsc#1068711, CVE-2017-1000231) + +------------------------------------------------------------------- New: ---- bsc_1068709.patch bsc_1068711.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ ldns.spec ++++++ --- /var/tmp/diff_new_pack.QEyadP/_old 2020-03-31 07:21:33.150376738 +0200 +++ /var/tmp/diff_new_pack.QEyadP/_new 2020-03-31 07:21:33.150376738 +0200 @@ -25,6 +25,8 @@ Group: Development/Libraries/C and C++ Url: http://www.nlnetlabs.nl/projects/ldns/ Source: http://www.nlnetlabs.nl/downloads/ldns/ldns-%{version}.tar.gz +Patch1: bsc_1068709.patch +Patch2: bsc_1068711.patch BuildRequires: doxygen BuildRequires: fdupes BuildRequires: libopenssl-devel @@ -82,7 +84,7 @@ Perl bindings for the ldns library. %prep -%setup -q +%autosetup %build export CFLAGS="%{optflags} -fno-strict-aliasing" ++++++ bsc_1068709.patch ++++++ commit 3bdeed02505c9bbacb3b64a97ddcb1de967153b7 Author: Willem Toorop <[email protected]> Date: Thu Apr 27 00:25:20 2017 +0200 bugfix #1257: Free after reallocing to 0 size Thanks Stephan Zeisberg diff --git a/str2host.c b/str2host.c index b274b17a..f2a317be 100644 --- a/str2host.c +++ b/str2host.c @@ -1525,8 +1525,10 @@ ldns_str2rdf_long_str(ldns_rdf **rd, const char *str) if (! str) { return LDNS_STATUS_SYNTAX_BAD_ESCAPE; } - length = (size_t)(dp - data); - + if (!(length = (size_t)(dp - data))) { + LDNS_FREE(data); + return LDNS_STATUS_SYNTAX_EMPTY; + } /* Lose the overmeasure */ data = LDNS_XREALLOC(dp = data, uint8_t, length); if (! data) { ++++++ bsc_1068711.patch ++++++ commit c8391790c96d4c8a2c10f9ab1460fda83b509fc2 Author: Willem Toorop <[email protected]> Date: Thu Apr 27 00:14:58 2017 +0200 Check parse limit before t increment Thanks Stephan Zeisberg diff --git a/parse.c b/parse.c index e68627c2..947dbb89 100644 --- a/parse.c +++ b/parse.c @@ -118,6 +118,10 @@ ldns_fget_token_l(FILE *f, char *token, const char *delim, size_t limit, int *li if (line_nr) { *line_nr = *line_nr + 1; } + if (limit > 0 && (i >= limit || (size_t)(t-token) >= limit)) { + *t = '\0'; + return -1; + } *t++ = ' '; prev_c = c; continue;
