diff options
| author | Li Wang <li.wang@windriver.com> | 2014-07-28 02:50:42 -0400 |
|---|---|---|
| committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2014-07-29 09:58:27 +0100 |
| commit | 21b1cd1c24166afbe3fb9bfc4936d917d366df10 (patch) | |
| tree | faa43325cdf4fd8e3550d085bbc7097221d2ca7f /meta/recipes-support/nss/files/nss-CVE-2013-5606.patch | |
| parent | 0685207d43b1bb7ad8be21e14c0f543070c9efcf (diff) | |
| download | poky-21b1cd1c24166afbe3fb9bfc4936d917d366df10.tar.gz | |
nss: CVE-2013-5606
the patch comes from:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-5606
https://bugzilla.mozilla.org/show_bug.cgi?id=910438
http://hg.mozilla.org/projects/nss/rev/d29898e0981c
The CERT_VerifyCert function in lib/certhigh/certvfy.c in
Mozilla Network Security Services (NSS) 3.15 before 3.15.3 provides
an unexpected return value for an incompatible key-usage certificate
when the CERTVerifyLog argument is valid, which might allow remote
attackers to bypass intended access restrictions via a crafted certificate.
(From OE-Core rev: 1e153b1b21276d56144add464d592cd7b96a4ede)
Signed-off-by: Li Wang <li.wang@windriver.com>
Signed-off-by: Jackie Huang <jackie.huang@windriver.com>
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-support/nss/files/nss-CVE-2013-5606.patch')
| -rw-r--r-- | meta/recipes-support/nss/files/nss-CVE-2013-5606.patch | 48 |
1 files changed, 48 insertions, 0 deletions
diff --git a/meta/recipes-support/nss/files/nss-CVE-2013-5606.patch b/meta/recipes-support/nss/files/nss-CVE-2013-5606.patch new file mode 100644 index 0000000000..f30475b16b --- /dev/null +++ b/meta/recipes-support/nss/files/nss-CVE-2013-5606.patch | |||
| @@ -0,0 +1,48 @@ | |||
| 1 | nss: CVE-2013-5606 | ||
| 2 | |||
| 3 | Upstream-Status: Backport | ||
| 4 | |||
| 5 | the patch comes from: | ||
| 6 | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-5606 | ||
| 7 | https://bugzilla.mozilla.org/show_bug.cgi?id=910438 | ||
| 8 | http://hg.mozilla.org/projects/nss/rev/d29898e0981c | ||
| 9 | |||
| 10 | The CERT_VerifyCert function in lib/certhigh/certvfy.c in | ||
| 11 | Mozilla Network Security Services (NSS) 3.15 before 3.15.3 provides | ||
| 12 | an unexpected return value for an incompatible key-usage certificate | ||
| 13 | when the CERTVerifyLog argument is valid, which might allow remote | ||
| 14 | attackers to bypass intended access restrictions via a crafted certificate. | ||
| 15 | |||
| 16 | Signed-off-by: Li Wang <li.wang@windriver.com> | ||
| 17 | --- | ||
| 18 | nss/lib/certhigh/certvfy.c | 7 +++++-- | ||
| 19 | 1 file changed, 5 insertions(+), 2 deletions(-) | ||
| 20 | |||
| 21 | diff --git a/nss/lib/certhigh/certvfy.c b/nss/lib/certhigh/certvfy.c | ||
| 22 | index f364ceb..f450205 100644 | ||
| 23 | --- a/nss/lib/certhigh/certvfy.c | ||
| 24 | +++ b/nss/lib/certhigh/certvfy.c | ||
| 25 | @@ -1312,7 +1312,7 @@ CERT_VerifyCert(CERTCertDBHandle *handle, CERTCertificate *cert, | ||
| 26 | PORT_SetError(SEC_ERROR_UNTRUSTED_CERT); | ||
| 27 | LOG_ERROR_OR_EXIT(log,cert,0,flags); | ||
| 28 | } else if (trusted) { | ||
| 29 | - goto winner; | ||
| 30 | + goto done; | ||
| 31 | } | ||
| 32 | |||
| 33 | |||
| 34 | @@ -1340,7 +1340,10 @@ CERT_VerifyCert(CERTCertDBHandle *handle, CERTCertificate *cert, | ||
| 35 | } | ||
| 36 | } | ||
| 37 | |||
| 38 | -winner: | ||
| 39 | +done: | ||
| 40 | + if (log && log->head) { | ||
| 41 | + return SECFailure; | ||
| 42 | + } | ||
| 43 | return(SECSuccess); | ||
| 44 | |||
| 45 | loser: | ||
| 46 | -- | ||
| 47 | 1.7.9.5 | ||
| 48 | |||