[Glibc-bsd-commits] r4365 - in trunk/kfreebsd-9/debian: . patches

Steven Chamberlain stevenc-guest at alioth.debian.org
Sun Sep 30 16:37:58 UTC 2012 

Author: stevenc-guest
Date: 2012-09-30 16:37:58 +0000 (Sun, 30 Sep 2012)
New Revision: 4365

Added:
   trunk/kfreebsd-9/debian/patches/svn239447_SCTP_DoS.patch
Modified:
   trunk/kfreebsd-9/debian/changelog
   trunk/kfreebsd-9/debian/patches/series
Log:
Pick SVN 239447 from FreeBSD 9-STABLE to fix a remote DoS
vulnerability of SCTP (CVE-2012-3549) (Closes: #686962)


Modified: trunk/kfreebsd-9/debian/changelog
===================================================================
--- trunk/kfreebsd-9/debian/changelog	2012-09-29 15:33:59 UTC (rev 4364)
+++ trunk/kfreebsd-9/debian/changelog	2012-09-30 16:37:58 UTC (rev 4365)
@@ -1,3 +1,10 @@
+kfreebsd-9 (9.0-7) unstable; urgency=medium
+
+  * Pick SVN 239447 from FreeBSD 9-STABLE to fix a remote DoS
+    vulnerability of SCTP (CVE-2012-3549) (Closes: #686962)
+
+ -- Steven Chamberlain <steven at pyro.eu.org>  Sun, 30 Sep 2012 17:06:07 +0100
+
 kfreebsd-9 (9.0-6) unstable; urgency=low
 
   * Team upload.

Modified: trunk/kfreebsd-9/debian/patches/series
===================================================================
--- trunk/kfreebsd-9/debian/patches/series	2012-09-29 15:33:59 UTC (rev 4364)
+++ trunk/kfreebsd-9/debian/patches/series	2012-09-30 16:37:58 UTC (rev 4365)
@@ -6,6 +6,7 @@
 EN-12_02.ipv6refcount.patch
 fix_VOP_VPTOCNP_bypass_for_nullfs.diff
 pf_counter_initialization_SVN236364.diff
+svn239447_SCTP_DoS.patch
 
 # Other patches that might or might not be mergeable
 001_misc.diff

Added: trunk/kfreebsd-9/debian/patches/svn239447_SCTP_DoS.patch
===================================================================
--- trunk/kfreebsd-9/debian/patches/svn239447_SCTP_DoS.patch	                        (rev 0)
+++ trunk/kfreebsd-9/debian/patches/svn239447_SCTP_DoS.patch	2012-09-30 16:37:58 UTC (rev 4365)
@@ -0,0 +1,22 @@
+Description:
+ Fix a bug reported by Simon L. B. Nielsen:
+ .
+ If an SCTP endpoint receives an ASCONF with a wildcard
+ lookup address and  incorrect verification tag, the system
+ crashes.
+ .
+ This bug was found by Shaun Colley.
+Origin: upstream, http://svnweb.freebsd.org/base?view=revision&revision=239447
+Bug-Debian: http://bugs.debian.org/686962
+
+--- kfreebsd-9-9.0.orig/sys/netinet/sctp_pcb.c	2011-11-24 17:58:14.000000000 +0000
++++ kfreebsd-9-9.0/sys/netinet/sctp_pcb.c	2012-09-30 17:13:51.837771919 +0100
+@@ -2073,8 +2073,6 @@
+ 	struct sctp_nets *net;
+ 	struct sctp_tcb *stcb;
+ 
+-	*netp = NULL;
+-	*inp_p = NULL;
+ 	SCTP_INP_INFO_RLOCK();
+ 	head = &SCTP_BASE_INFO(sctp_asochash)[SCTP_PCBHASH_ASOC(vtag,
+ 	    SCTP_BASE_INFO(hashasocmark))];

More information about the Glibc-bsd-commits mailing list