diff options
| author | nectar <nectar@FreeBSD.org> | 2002-08-03 02:22:45 +0800 |
|---|---|---|
| committer | nectar <nectar@FreeBSD.org> | 2002-08-03 02:22:45 +0800 |
| commit | 88bd97121501a81e9f458755e8aa83d7ad0e52f0 (patch) | |
| tree | b5d57bb276da8b9b2736b25b8e8f47c430c6b2cf /security/krb5-17 | |
| parent | ee794f49bddfa8174cc8470c4bee05f6826c7b3d (diff) | |
| download | freebsd-ports-gnome-88bd97121501a81e9f458755e8aa83d7ad0e52f0.tar.gz freebsd-ports-gnome-88bd97121501a81e9f458755e8aa83d7ad0e52f0.tar.zst freebsd-ports-gnome-88bd97121501a81e9f458755e8aa83d7ad0e52f0.zip | |
Correct Sun RPC buffer overflow.
<URL:http://online.securityfocus.com/archive/1/285308>
<URL:http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=20823>
Diffstat (limited to 'security/krb5-17')
| -rw-r--r-- | security/krb5-17/Makefile | 2 | ||||
| -rw-r--r-- | security/krb5-17/files/patch-lib::rpc::xdr_array.c | 20 |
2 files changed, 21 insertions, 1 deletions
diff --git a/security/krb5-17/Makefile b/security/krb5-17/Makefile index 2bb196574f7e..5406f50c601c 100644 --- a/security/krb5-17/Makefile +++ b/security/krb5-17/Makefile @@ -7,7 +7,7 @@ PORTNAME= krb5 PORTVERSION= 1.2.5 -PORTREVISION= 1 +PORTREVISION= 2 CATEGORIES= security .if defined(USA_RESIDENT) && ${USA_RESIDENT} == "NO" MASTER_SITES= http://www.crypto-publish.org/dist/mit-kerberos5/ diff --git a/security/krb5-17/files/patch-lib::rpc::xdr_array.c b/security/krb5-17/files/patch-lib::rpc::xdr_array.c new file mode 100644 index 000000000000..be9be37eada6 --- /dev/null +++ b/security/krb5-17/files/patch-lib::rpc::xdr_array.c @@ -0,0 +1,20 @@ +--- lib/rpc/xdr_array.c.orig Fri Feb 13 20:27:23 1998 ++++ lib/rpc/xdr_array.c Fri Aug 2 13:03:55 2002 +@@ -40,6 +40,7 @@ + * arrays. See xdr.h for more info on the interface to xdr. + */ + ++#include <limits.h> + #include <stdio.h> + + #include <gssrpc/types.h> +@@ -75,7 +76,8 @@ + return (FALSE); + } + c = *sizep; +- if ((c > maxsize) && (xdrs->x_op != XDR_FREE)) { ++ if ((c > maxsize || UINT_MAX/elsize < c) && ++ (xdrs->x_op != XDR_FREE)) { + return (FALSE); + } + nodesize = c * elsize; |