1 files changed, 113 insertions, 0 deletions
diff --git a/meta/recipes-devtools/go/go-1.14/CVE-2022-32189.patch b/meta/recipes-devtools/go/go-1.14/CVE-2022-32189.patch
new file mode 100644
index 0000000000..15fda7de1b
--- /dev/null
+++ b/meta/recipes-devtools/go/go-1.14/CVE-2022-32189.patch
@@ -0,0 +1,113 @@
+From 027e7e1578d3d7614f7586eff3894b83d9709e14 Mon Sep 17 00:00:00 2001
+From: Hitendra Prajapati <hprajapati@mvista.com>
+Date: Mon, 29 Aug 2022 10:08:34 +0530
+Subject: [PATCH] CVE-2022-32189
+Upstream-Status: Backport [https://github.com/golang/go/commit/703c8ab7e5ba75c95553d4e249309297abad7102]
+CVE: CVE-2022-32189
+Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com>
+---
+ src/math/big/floatmarsh.go      |  7 +++++++
+ src/math/big/floatmarsh_test.go | 12 ++++++++++++
+ src/math/big/ratmarsh.go        |  6 ++++++
+ src/math/big/ratmarsh_test.go   | 12 ++++++++++++
+ 4 files changed, 37 insertions(+)
+diff --git a/src/math/big/floatmarsh.go b/src/math/big/floatmarsh.go
+index d1c1dab..990e085 100644
+--- a/src/math/big/floatmarsh.go
+++ b/src/math/big/floatmarsh.go
+@@ -8,6 +8,7 @@ package big
+ 
+ import (
+        "encoding/binary"
+       "errors"
+        "fmt"
+ )
+ 
+@@ -67,6 +68,9 @@ func (z *Float) GobDecode(buf []byte) error {
+                *z = Float{}
+                return nil
+        }
+       if len(buf) < 6 {
+               return errors.New("Float.GobDecode: buffer too small")
+       }
+ 
+        if buf[0] != floatGobVersion {
+                return fmt.Errorf("Float.GobDecode: encoding version %d not supported", buf[0])
+@@ -83,6 +87,9 @@ func (z *Float) GobDecode(buf []byte) error {
+        z.prec = binary.BigEndian.Uint32(buf[2:])
+ 
+        if z.form == finite {
+               if len(buf) < 10 {
+                       return errors.New("Float.GobDecode: buffer too small for finite form float")
+               }
+                z.exp = int32(binary.BigEndian.Uint32(buf[6:]))
+                z.mant = z.mant.setBytes(buf[10:])
+        }
+diff --git a/src/math/big/floatmarsh_test.go b/src/math/big/floatmarsh_test.go
+index c056d78..401f45a 100644
+--- a/src/math/big/floatmarsh_test.go
+++ b/src/math/big/floatmarsh_test.go
+@@ -137,3 +137,15 @@ func TestFloatJSONEncoding(t *testing.T) {
+                }
+        }
+ }
+
+func TestFloatGobDecodeShortBuffer(t *testing.T) {
+       for _, tc := range [][]byte{
+               []byte{0x1, 0x0, 0x0, 0x0},
+               []byte{0x1, 0xfa, 0x0, 0x0, 0x0, 0x0},
+       } {
+               err := NewFloat(0).GobDecode(tc)
+               if err == nil {
+                       t.Error("expected GobDecode to return error for malformed input")
+               }
+       }
+}
+diff --git a/src/math/big/ratmarsh.go b/src/math/big/ratmarsh.go
+index fbc7b60..56102e8 100644
+--- a/src/math/big/ratmarsh.go
+++ b/src/math/big/ratmarsh.go
+@@ -45,12 +45,18 @@ func (z *Rat) GobDecode(buf []byte) error {
+                *z = Rat{}
+                return nil
+        }
+       if len(buf) < 5 {
+               return errors.New("Rat.GobDecode: buffer too small")
+       }
+        b := buf[0]
+        if b>>1 != ratGobVersion {
+                return fmt.Errorf("Rat.GobDecode: encoding version %d not supported", b>>1)
+        }
+        const j = 1 + 4
+        i := j + binary.BigEndian.Uint32(buf[j-4:j])
+       if len(buf) < int(i) {
+               return errors.New("Rat.GobDecode: buffer too small")
+       }
+        z.a.neg = b&1 != 0
+        z.a.abs = z.a.abs.setBytes(buf[j:i])
+        z.b.abs = z.b.abs.setBytes(buf[i:])
+diff --git a/src/math/big/ratmarsh_test.go b/src/math/big/ratmarsh_test.go
+index 351d109..55a9878 100644
+--- a/src/math/big/ratmarsh_test.go
+++ b/src/math/big/ratmarsh_test.go
+@@ -123,3 +123,15 @@ func TestRatXMLEncoding(t *testing.T) {
+                }
+        }
+ }
+
+func TestRatGobDecodeShortBuffer(t *testing.T) {
+       for _, tc := range [][]byte{
+               []byte{0x2},
+               []byte{0x2, 0x0, 0x0, 0x0, 0xff},
+       } {
+               err := NewRat(1, 2).GobDecode(tc)
+               if err == nil {
+                       t.Error("expected GobDecode to return error for malformed input")
+               }
+       }
+}
+-- 
+2.25.1

diff --git a/meta/recipes-devtools/go/go-1.14/CVE-2022-32189.patch b/meta/recipes-devtools/go/go-1.14/CVE-2022-32189.patch new file mode 100644 index 0000000000..15fda7de1b --- /dev/null +++ b/meta/recipes-devtools/go/go-1.14/CVE-2022-32189.patch
@@ -0,0 +1,113 @@
	1	From 027e7e1578d3d7614f7586eff3894b83d9709e14 Mon Sep 17 00:00:00 2001
	2	From: Hitendra Prajapati <hprajapati@mvista.com>
	3	Date: Mon, 29 Aug 2022 10:08:34 +0530
	4	Subject: [PATCH] CVE-2022-32189
	5
	6	Upstream-Status: Backport [https://github.com/golang/go/commit/703c8ab7e5ba75c95553d4e249309297abad7102]
	7	CVE: CVE-2022-32189
	8	Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com>
	9	---
	10	src/math/big/floatmarsh.go \| 7 +++++++
	11	src/math/big/floatmarsh_test.go \| 12 ++++++++++++
	12	src/math/big/ratmarsh.go \| 6 ++++++
	13	src/math/big/ratmarsh_test.go \| 12 ++++++++++++
	14	4 files changed, 37 insertions(+)
	15
	16	diff --git a/src/math/big/floatmarsh.go b/src/math/big/floatmarsh.go
	17	index d1c1dab..990e085 100644
	18	--- a/src/math/big/floatmarsh.go
	19	+++ b/src/math/big/floatmarsh.go
	20	@@ -8,6 +8,7 @@ package big
	21
	22	import (
	23	"encoding/binary"
	24	+ "errors"
	25	"fmt"
	26	)
	27
	28	@@ -67,6 +68,9 @@ func (z *Float) GobDecode(buf []byte) error {
	29	*z = Float{}
	30	return nil
	31	}
	32	+ if len(buf) < 6 {
	33	+ return errors.New("Float.GobDecode: buffer too small")
	34	+ }
	35
	36	if buf[0] != floatGobVersion {
	37	return fmt.Errorf("Float.GobDecode: encoding version %d not supported", buf[0])
	38	@@ -83,6 +87,9 @@ func (z *Float) GobDecode(buf []byte) error {
	39	z.prec = binary.BigEndian.Uint32(buf[2:])
	40
	41	if z.form == finite {
	42	+ if len(buf) < 10 {
	43	+ return errors.New("Float.GobDecode: buffer too small for finite form float")
	44	+ }
	45	z.exp = int32(binary.BigEndian.Uint32(buf[6:]))
	46	z.mant = z.mant.setBytes(buf[10:])
	47	}
	48	diff --git a/src/math/big/floatmarsh_test.go b/src/math/big/floatmarsh_test.go
	49	index c056d78..401f45a 100644
	50	--- a/src/math/big/floatmarsh_test.go
	51	+++ b/src/math/big/floatmarsh_test.go
	52	@@ -137,3 +137,15 @@ func TestFloatJSONEncoding(t *testing.T) {
	53	}
	54	}
	55	}
	56	+
	57	+func TestFloatGobDecodeShortBuffer(t *testing.T) {
	58	+ for _, tc := range [][]byte{
	59	+ []byte{0x1, 0x0, 0x0, 0x0},
	60	+ []byte{0x1, 0xfa, 0x0, 0x0, 0x0, 0x0},
	61	+ } {
	62	+ err := NewFloat(0).GobDecode(tc)
	63	+ if err == nil {
	64	+ t.Error("expected GobDecode to return error for malformed input")
	65	+ }
	66	+ }
	67	+}
	68	diff --git a/src/math/big/ratmarsh.go b/src/math/big/ratmarsh.go
	69	index fbc7b60..56102e8 100644
	70	--- a/src/math/big/ratmarsh.go
	71	+++ b/src/math/big/ratmarsh.go
	72	@@ -45,12 +45,18 @@ func (z *Rat) GobDecode(buf []byte) error {
	73	*z = Rat{}
	74	return nil
	75	}
	76	+ if len(buf) < 5 {
	77	+ return errors.New("Rat.GobDecode: buffer too small")
	78	+ }
	79	b := buf[0]
	80	if b>>1 != ratGobVersion {
	81	return fmt.Errorf("Rat.GobDecode: encoding version %d not supported", b>>1)
	82	}
	83	const j = 1 + 4
	84	i := j + binary.BigEndian.Uint32(buf[j-4:j])
	85	+ if len(buf) < int(i) {
	86	+ return errors.New("Rat.GobDecode: buffer too small")
	87	+ }
	88	z.a.neg = b&1 != 0
	89	z.a.abs = z.a.abs.setBytes(buf[j:i])
	90	z.b.abs = z.b.abs.setBytes(buf[i:])
	91	diff --git a/src/math/big/ratmarsh_test.go b/src/math/big/ratmarsh_test.go
	92	index 351d109..55a9878 100644
	93	--- a/src/math/big/ratmarsh_test.go
	94	+++ b/src/math/big/ratmarsh_test.go
	95	@@ -123,3 +123,15 @@ func TestRatXMLEncoding(t *testing.T) {
	96	}
	97	}
	98	}
	99	+
	100	+func TestRatGobDecodeShortBuffer(t *testing.T) {
	101	+ for _, tc := range [][]byte{
	102	+ []byte{0x2},
	103	+ []byte{0x2, 0x0, 0x0, 0x0, 0xff},
	104	+ } {
	105	+ err := NewRat(1, 2).GobDecode(tc)
	106	+ if err == nil {
	107	+ t.Error("expected GobDecode to return error for malformed input")
	108	+ }
	109	+ }
	110	+}
	111	--
	112	2.25.1
	113