aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorzi <zi@FreeBSD.org>2012-09-11 19:33:50 +0800
committerzi <zi@FreeBSD.org>2012-09-11 19:33:50 +0800
commit2f2434887ffa7d90a08ee7793fe37e75853f73b1 (patch)
tree72a8fca74cae48edf597fd225d029d602d706dd1
parente36e64d7f1f78fe6abfc4629d7e6fffcfe83e9ce (diff)
downloadfreebsd-ports-gnome-2f2434887ffa7d90a08ee7793fe37e75853f73b1.tar.gz
freebsd-ports-gnome-2f2434887ffa7d90a08ee7793fe37e75853f73b1.tar.zst
freebsd-ports-gnome-2f2434887ffa7d90a08ee7793fe37e75853f73b1.zip
- Add patch for CVE-2012-3547
- Bump PORTREVISION Submitted by: rea@ Obtained from: Upstream git repo Security: 3bbbe3aa-fbeb-11e1-8bd8-0022156e8794
-rw-r--r--net/freeradius2/Makefile2
-rw-r--r--net/freeradius2/files/patch-CVE-2012-354711
2 files changed, 12 insertions, 1 deletions
diff --git a/net/freeradius2/Makefile b/net/freeradius2/Makefile
index f8433b58bf1a..e216ef87f216 100644
--- a/net/freeradius2/Makefile
+++ b/net/freeradius2/Makefile
@@ -9,7 +9,7 @@
PORTNAME= freeradius
DISTVERSION= 2.1.12
-PORTREVISION= 1
+PORTREVISION= 2
CATEGORIES= net
MASTER_SITES= ftp://ftp.freeradius.org/pub/freeradius/%SUBDIR%/ \
ftp://ftp.ntua.gr/pub/net/radius/freeradius/%SUBDIR%/ \
diff --git a/net/freeradius2/files/patch-CVE-2012-3547 b/net/freeradius2/files/patch-CVE-2012-3547
new file mode 100644
index 000000000000..59e80ad90be6
--- /dev/null
+++ b/net/freeradius2/files/patch-CVE-2012-3547
@@ -0,0 +1,11 @@
+--- ./src/modules/rlm_eap/types/rlm_eap_tls/rlm_eap_tls.c.orig 2011-09-30 10:12:07.000000000 -0400
++++ ./src/modules/rlm_eap/types/rlm_eap_tls/rlm_eap_tls.c 2012-09-11 07:28:34.000000000 -0400
+@@ -531,7 +531,7 @@
+ */
+ buf[0] = '\0';
+ asn_time = X509_get_notAfter(client_cert);
+- if ((lookup <= 1) && asn_time && (asn_time->length < MAX_STRING_LEN)) {
++ if ((lookup <= 1) && asn_time && (asn_time->length < sizeof(buf))) {
+ memcpy(buf, (char*) asn_time->data, asn_time->length);
+ buf[asn_time->length] = '\0';
+ pairadd(&handler->certs,