summaryrefslogtreecommitdiffstats
path: root/meta-oe
diff options
context:
space:
mode:
authorPeter Marko <peter.marko@siemens.com>2024-12-27 11:56:04 +0100
committerGyorgy Sarvari <skandigraun@gmail.com>2025-10-01 19:40:58 +0200
commit3de4b5bc92c92e151996f96db065ed57c020986f (patch)
tree10124383a01046cb29620e64f95c3dc779951296 /meta-oe
parent746ef0c9fbb2a0a807650d2315482f79089c045f (diff)
downloadmeta-openembedded-3de4b5bc92c92e151996f96db065ed57c020986f.tar.gz
procmail: patch CVE-2014-3618
Take patch from Debian. https://sources.debian.org/data/main/p/procmail/3.22-20%2Bdeb7u1/debian/patches/CVE-2014-3618.patch Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 8378820dab0b6955fb0e2b27f24a1626f9124e5b) Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Diffstat (limited to 'meta-oe')
-rw-r--r--meta-oe/recipes-support/procmail/procmail/CVE-2014-3618.patch29
-rw-r--r--meta-oe/recipes-support/procmail/procmail_3.22.bb4
2 files changed, 32 insertions, 1 deletions
diff --git a/meta-oe/recipes-support/procmail/procmail/CVE-2014-3618.patch b/meta-oe/recipes-support/procmail/procmail/CVE-2014-3618.patch
new file mode 100644
index 0000000000..b041924361
--- /dev/null
+++ b/meta-oe/recipes-support/procmail/procmail/CVE-2014-3618.patch
@@ -0,0 +1,29 @@
1Description: Fix heap-overflow in formail
2 CVE-2014-3618: Heap-overflow in formail when processing
3 specially-crafted email headers.
4Origin: http://www.openwall.com/lists/oss-security/2014/09/03/8
5Bug-Debian: https://bugs.debian.org/704675
6Bug-Debian: https://bugs.debian.org/760443
7Forwarded: not-needed
8Last-Update: 2014-09-04
9
10CVE: CVE-2014-3618
11Upstream-Status: Inactive-Upstream [lastrelease: 2001]
12Signed-off-by: Peter Marko <peter.marko@siemens.com>
13
14--- a/src/formisc.c
15+++ b/src/formisc.c
16@@ -84,12 +84,11 @@ normal: *target++= *start++;
17 case '"':*target++=delim='"';start++;
18 }
19 ;{ int i;
20- do
21+ while(*start)
22 if((i= *target++= *start++)==delim) /* corresponding delimiter? */
23 break;
24 else if(i=='\\'&&*start) /* skip quoted character */
25 *target++= *start++;
26- while(*start); /* anything? */
27 }
28 hitspc=2;
29 }
diff --git a/meta-oe/recipes-support/procmail/procmail_3.22.bb b/meta-oe/recipes-support/procmail/procmail_3.22.bb
index 2e2735d192..4cfac9b49e 100644
--- a/meta-oe/recipes-support/procmail/procmail_3.22.bb
+++ b/meta-oe/recipes-support/procmail/procmail_3.22.bb
@@ -12,7 +12,9 @@ SRC_URI = "http://www.ring.gr.jp/archives/net/mail/${BPN}/${BP}.tar.gz \
12 file://from-debian-to-fix-compile-errors.patch \ 12 file://from-debian-to-fix-compile-errors.patch \
13 file://from-debian-to-modify-parameters.patch \ 13 file://from-debian-to-modify-parameters.patch \
14 file://from-debian-to-fix-man-file.patch \ 14 file://from-debian-to-fix-man-file.patch \
15 file://man-file-mailstat.1-from-debian.patch" 15 file://man-file-mailstat.1-from-debian.patch \
16 file://CVE-2014-3618.patch \
17"
16SRC_URI[md5sum] = "1678ea99b973eb77eda4ecf6acae53f1" 18SRC_URI[md5sum] = "1678ea99b973eb77eda4ecf6acae53f1"
17SRC_URI[sha256sum] = "087c75b34dd33d8b9df5afe9e42801c9395f4bf373a784d9bc97153b0062e117" 19SRC_URI[sha256sum] = "087c75b34dd33d8b9df5afe9e42801c9395f4bf373a784d9bc97153b0062e117"
18 20