1 files changed, 36 insertions, 0 deletions
diff --git a/recipes-core/libxml/libxml2/CVE-2017-7376-Increase-buffer-space-for-port-in-HTTP-redirect-supp.patch b/recipes-core/libxml/libxml2/CVE-2017-7376-Increase-buffer-space-for-port-in-HTTP-redirect-supp.patch
new file mode 100644
index 0000000..aae956d
--- /dev/null
+++ b/recipes-core/libxml/libxml2/CVE-2017-7376-Increase-buffer-space-for-port-in-HTTP-redirect-supp.patch
@@ -0,0 +1,36 @@
+From 5dca9eea1bd4263bfa4d037ab2443de1cd730f7e Mon Sep 17 00:00:00 2001
+From: Daniel Veillard <veillard@redhat.com>
+Date: Fri, 7 Apr 2017 17:13:28 +0200
+Subject: [PATCH] Increase buffer space for port in HTTP redirect support
+For https://bugzilla.gnome.org/show_bug.cgi?id=780690
+nanohttp.c: the code wrongly assumed a short int port value.
+CVE: CVE-2017-7376
+Upstream-Status: Backport [https://gitlab.gnome.org/GNOME/libxml2/commit/5dca9eea1bd4263bfa4d037ab2443de1cd730f7e]
+Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
+---
+ nanohttp.c | 4 ++--
+ 1 file changed, 2 insertions(+), 2 deletions(-)
+diff --git a/nanohttp.c b/nanohttp.c
+index e109ad7..373425d 100644
+--- a/nanohttp.c
+++ b/nanohttp.c
+@@ -1423,9 +1423,9 @@ retry:
+     if (ctxt->port != 80) {
+        /* reserve space for ':xxxxx', incl. potential proxy */
+        if (proxy)
+-           blen += 12;
+           blen += 17;
+        else
+-           blen += 6;
+           blen += 11;
+     }
+     bp = (char*)xmlMallocAtomic(blen);
+     if ( bp == NULL ) {
+-- 
+2.7.4

diff --git a/recipes-core/libxml/libxml2/CVE-2017-7376-Increase-buffer-space-for-port-in-HTTP-redirect-supp.patch b/recipes-core/libxml/libxml2/CVE-2017-7376-Increase-buffer-space-for-port-in-HTTP-redirect-supp.patch new file mode 100644 index 0000000..aae956d --- /dev/null +++ b/recipes-core/libxml/libxml2/CVE-2017-7376-Increase-buffer-space-for-port-in-HTTP-redirect-supp.patch
@@ -0,0 +1,36 @@
	1	From 5dca9eea1bd4263bfa4d037ab2443de1cd730f7e Mon Sep 17 00:00:00 2001
	2	From: Daniel Veillard <veillard@redhat.com>
	3	Date: Fri, 7 Apr 2017 17:13:28 +0200
	4	Subject: [PATCH] Increase buffer space for port in HTTP redirect support
	5
	6	For https://bugzilla.gnome.org/show_bug.cgi?id=780690
	7
	8	nanohttp.c: the code wrongly assumed a short int port value.
	9
	10	CVE: CVE-2017-7376
	11	Upstream-Status: Backport [https://gitlab.gnome.org/GNOME/libxml2/commit/5dca9eea1bd4263bfa4d037ab2443de1cd730f7e]
	12
	13	Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
	14	---
	15	nanohttp.c \| 4 ++--
	16	1 file changed, 2 insertions(+), 2 deletions(-)
	17
	18	diff --git a/nanohttp.c b/nanohttp.c
	19	index e109ad7..373425d 100644
	20	--- a/nanohttp.c
	21	+++ b/nanohttp.c
	22	@@ -1423,9 +1423,9 @@ retry:
	23	if (ctxt->port != 80) {
	24	/* reserve space for ':xxxxx', incl. potential proxy */
	25	if (proxy)
	26	- blen += 12;
	27	+ blen += 17;
	28	else
	29	- blen += 6;
	30	+ blen += 11;
	31	}
	32	bp = (char*)xmlMallocAtomic(blen);
	33	if ( bp == NULL ) {
	34	--
	35	2.7.4
	36