[libyaml-libyaml-perl] 01/05: Add libyaml-string-overflow.patch patch

Salvatore Bonaccorso carnil at debian.org
Mon Feb 10 06:51:43 UTC 2014 

This is an automated email from the git hooks/post-receive script.

carnil pushed a commit to branch master
in repository libyaml-libyaml-perl.

commit 5960435971a7f8c06685dab5da119cf0ab7653cf
Author: Salvatore Bonaccorso <carnil at debian.org>
Date:   Sat Feb 8 23:45:15 2014 +0100

    Add libyaml-string-overflow.patch patch
    
    Addresses CVE-2013-6393 for the LibYAML embedded copy in YAML::LibYAML.
---
 debian/patches/libyaml-string-overflow.patch | 26 ++++++++++++++++++++++++++
 debian/patches/series                        |  1 +
 2 files changed, 27 insertions(+)

diff --git a/debian/patches/libyaml-string-overflow.patch b/debian/patches/libyaml-string-overflow.patch
new file mode 100644
index 0000000..d0d14ff
--- /dev/null
+++ b/debian/patches/libyaml-string-overflow.patch
@@ -0,0 +1,26 @@
+Description: CVE-2013-6393: yaml_parser_scan_tag_uri: fix int overflow leading to buffer overflow
+ This is a proposed patch from Florian Weimer <fweimer at redhat.com> for
+ the string overflow issue. It has been ack'd by upstream.
+Origin: https://bugzilla.redhat.com/show_bug.cgi?id=1033990
+Bug-RedHat: https://bugzilla.redhat.com/show_bug.cgi?id=1033990
+Last-Update: 2014-01-29
+---
+# HG changeset patch
+# User Florian Weimer <fweimer at redhat.com>
+# Date 1389273500 -3600
+#      Thu Jan 09 14:18:20 2014 +0100
+# Node ID a54d7af707f25dc298a7be60fd152001d2b3035b
+# Parent  3e6507fa0c26d20c09f8f468f2bd04aa2fd1b5b5
+yaml_parser_scan_tag_uri: fix int overflow leading to buffer overflow
+
+--- a/LibYAML/scanner.c
++++ b/LibYAML/scanner.c
+@@ -2574,7 +2574,7 @@
+ 
+     /* Resize the string to include the head. */
+ 
+-    while (string.end - string.start <= (int)length) {
++    while ((size_t)(string.end - string.start) <= length) {
+         if (!yaml_string_extend(&string.start, &string.pointer, &string.end)) {
+             parser->error = YAML_MEMORY_ERROR;
+             goto error;
diff --git a/debian/patches/series b/debian/patches/series
index 5816c31..74850df 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -1,2 +1,3 @@
 fix_ftbfs_hardening_flags.diff
 disable-update.sh.patch
+libyaml-string-overflow.patch

-- 
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-perl/packages/libyaml-libyaml-perl.git

More information about the Pkg-perl-cvs-commits mailing list