Hello community,

here is the log from the commit of package nss-pam-ldapd for openSUSE:Factory 
checked in at 2013-03-18 07:09:31
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/nss-pam-ldapd (Old)
 and      /work/SRC/openSUSE:Factory/.nss-pam-ldapd.new (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Package is "nss-pam-ldapd", Maintainer is ""

Changes:
--------
--- /work/SRC/openSUSE:Factory/nss-pam-ldapd/nss-pam-ldapd.changes      
2012-08-26 11:33:03.000000000 +0200
+++ /work/SRC/openSUSE:Factory/.nss-pam-ldapd.new/nss-pam-ldapd.changes 
2013-03-18 07:09:33.000000000 +0100
@@ -1,0 +2,6 @@
+Wed Mar 13 14:00:00 UTC 2013 - vark...@suse.com
+
+- bnc#804682 - VUL-0: CVE-2013-0288: nss-pam-ldapd: FD_SET array index
+ error, leading to stack-based buffer overflow 
+
+-------------------------------------------------------------------

New:
----
  bnc#804682.dif

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ nss-pam-ldapd.spec ++++++
--- /var/tmp/diff_new_pack.fzdrJI/_old  2013-03-18 07:09:34.000000000 +0100
+++ /var/tmp/diff_new_pack.fzdrJI/_new  2013-03-18 07:09:34.000000000 +0100
@@ -1,7 +1,7 @@
 #
 # spec file for package nss-pam-ldapd
 #
-# Copyright (c) 2012 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2013 SUSE LINUX Products GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -36,6 +36,7 @@
 Source2:        baselibs.conf
 Source100:      nss-pam-ldapd-0.8.10-rpmlintrc
 Patch0:         nslcd-user-conf.dif
+Patch1:         bnc#804682.dif
 BuildRoot:      %{_tmppath}/%{name}-%{version}-build
 
 %description
@@ -58,6 +59,7 @@
 %setup -q
 cp -v %{S:1} .
 %patch0 -p1
+%patch1 -p1
 
 %build
 %{?suse_update_config:%{suse_update_config -f}}

++++++ bnc#804682.dif ++++++
diff -ru nss-pam-ldapd-0.8.10/common/tio.c 
nss-pam-ldapd-0.8.10-fixed/common/tio.c
--- nss-pam-ldapd-0.8.10/common/tio.c   2012-04-26 21:50:43.000000000 +0200
+++ nss-pam-ldapd-0.8.10-fixed/common/tio.c     2013-03-13 14:57:13.000000000 
+0100
@@ -184,6 +184,11 @@
   while (1)
   {
     /* prepare our filedescriptorset */
+    if (fp->fd>=FD_SETSIZE)
+    {
+      errno=EBADFD;
+      return -1;
+    }
     FD_ZERO(&fdset);
     FD_SET(fp->fd,&fdset);
     /* figure out the time we need to wait */
@@ -343,6 +348,11 @@
   while (1)
   {
     /* prepare our file descriptor set */
+    if (fp->fd>=FD_SETSIZE)
+    {
+      errno=EBADFD;
+      return -1;
+    }
     FD_ZERO(&fdset);
     FD_SET(fp->fd,&fdset);
     /* prepare the time to wait */
@@ -446,6 +456,11 @@
   fd_set fdset;
   int rv;
   /* prepare our filedescriptorset */
+  if (fp->fd>=FD_SETSIZE)
+  {
+    errno=EBADFD;
+    return -1;
+  }
   FD_ZERO(&fdset);
   FD_SET(fp->fd,&fdset);
   /* set the timeout to 0 to poll */
-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org

Reply via email to