[arch-commits] Commit in polarssl/trunk (CVE-2015-1182.patch PKGBUILD)
Kyle Keen
kkeen at archlinux.org
Tue Jan 20 12:04:44 UTC 2015
Date: Tuesday, January 20, 2015 @ 13:04:44
Author: kkeen
Revision: 126298
upgpkg: polarssl 1.3.9-2 FS#43508
Added:
polarssl/trunk/CVE-2015-1182.patch
Modified:
polarssl/trunk/PKGBUILD
---------------------+
CVE-2015-1182.patch | 13 +++++++++++++
PKGBUILD | 13 ++++++++++---
2 files changed, 23 insertions(+), 3 deletions(-)
Added: CVE-2015-1182.patch
===================================================================
--- CVE-2015-1182.patch (rev 0)
+++ CVE-2015-1182.patch 2015-01-20 12:04:44 UTC (rev 126298)
@@ -0,0 +1,13 @@
+diff --git a/library/asn1parse.c b/library/asn1parse.c
+index a3a2b56..e2117bf 100644
+--- a/library/asn1parse.c
++++ b/library/asn1parse.c
+@@ -278,6 +278,8 @@ int asn1_get_sequence_of( unsigned char **p,
+ if( cur->next == NULL )
+ return( POLARSSL_ERR_ASN1_MALLOC_FAILED );
+
++ memset( cur->next, 0, sizeof( asn1_sequence ) );
++
+ cur = cur->next;
+ }
+ }
Modified: PKGBUILD
===================================================================
--- PKGBUILD 2015-01-20 10:24:50 UTC (rev 126297)
+++ PKGBUILD 2015-01-20 12:04:44 UTC (rev 126298)
@@ -5,15 +5,17 @@
pkgname=polarssl
pkgver=1.3.9
-pkgrel=1
+pkgrel=2
pkgdesc="Portable cryptographic and SSL/TLS library"
arch=('i686' 'x86_64')
url="https://www.polarssl.org/"
license=('GPL2')
source=("https://polarssl.org/download/polarssl-$pkgver-gpl.tgz"
- "programs.makefile.patch")
+ "programs.makefile.patch"
+ "CVE-2015-1182.patch")
sha1sums=('3462b4455e1443ac1a1007fbd69861ebfb5c5506'
- '1e9e7d3dcdd6932b02d6dcabdf45041a3726f1be')
+ '1e9e7d3dcdd6932b02d6dcabdf45041a3726f1be'
+ '94317c4757063d006fb4e666b522b581326ba708')
depends=('glibc')
options=('staticlibs')
@@ -21,6 +23,11 @@
# https://github.com/alucryd/aur-alucryd/blob/master/personal/polarssl/PKGBUILD
# https://aur.archlinux.org/packages/po/polarssl-git/PKGBUILD
+prepare() {
+ cd "$pkgname-$pkgver"
+ patch -p1 -i "$srcdir/CVE-2015-1182.patch"
+}
+
build() {
cd "$pkgname-$pkgver"
sed -i 's|//\(#define POLARSSL_THREADING_C\)|\1|' include/polarssl/config.h
More information about the arch-commits
mailing list