[Pkg-nagios-changes] [pkg-nagios] r892 - in nagios/branches/sarge/debian: . patches

Sean Finney seanius at costa.debian.org
Thu May 11 08:07:33 UTC 2006 

Author: seanius
Date: 2006-05-11 08:07:31 +0000 (Thu, 11 May 2006)
New Revision: 892

Added:
   nagios/branches/sarge/debian/patches/10100_CVE-2006-2162_content_length_header.dpatch
Modified:
   nagios/branches/sarge/debian/changelog
   nagios/branches/sarge/debian/patches/00list
Log:
sarge backport of CVE-2006-2162 fix


Modified: nagios/branches/sarge/debian/changelog
===================================================================
--- nagios/branches/sarge/debian/changelog	2006-05-11 07:57:32 UTC (rev 891)
+++ nagios/branches/sarge/debian/changelog	2006-05-11 08:07:31 UTC (rev 892)
@@ -1,3 +1,13 @@
+nagios (2:1.3-cvs.20050402-2.sarge.2) unstable; urgency=high
+
+  * Sean Finney:
+    - security update prepared for the security team.
+    - add fix for Content-Length header bounds/sanity checking.
+      thanks to Ethan Galstad for providing the patch.
+      References: CVE-2006-2162.
+
+ -- sean finney <seanius at debian.org>  Thu, 11 May 2006 10:06:58 +0200
+
 nagios (2:1.3-cvs.20050402-2.sarge.1) unstable; urgency=high
 
   * Sean Finney:

Modified: nagios/branches/sarge/debian/patches/00list
===================================================================
--- nagios/branches/sarge/debian/patches/00list	2006-05-11 07:57:32 UTC (rev 891)
+++ nagios/branches/sarge/debian/patches/00list	2006-05-11 08:07:31 UTC (rev 892)
@@ -10,3 +10,4 @@
 10_grouplist.cgi-pathfixes.dpatch
 9999_nsca_pathfix.dpatch
 10000_no-password-disclosure.dpatch
+10100_CVE-2006-2162_content_length_header.dpatch

Added: nagios/branches/sarge/debian/patches/10100_CVE-2006-2162_content_length_header.dpatch
===================================================================
--- nagios/branches/sarge/debian/patches/10100_CVE-2006-2162_content_length_header.dpatch	2006-05-11 07:57:32 UTC (rev 891)
+++ nagios/branches/sarge/debian/patches/10100_CVE-2006-2162_content_length_header.dpatch	2006-05-11 08:07:31 UTC (rev 892)
@@ -0,0 +1,18 @@
+#! /bin/sh /usr/share/dpatch/dpatch-run
+## 10100_CVE-2006-2162_content_length_header.dpatch by  <seanius at debian.org>
+##
+## DP: fix from the upstream author, ethan galstad (thanks!)
+
+ at DPATCH@
+diff -urNad nagios-1.3-cvs.20050402~/cgi/getcgi.c nagios-1.3-cvs.20050402/cgi/getcgi.c
+--- nagios-1.3-cvs.20050402~/cgi/getcgi.c	2002-09-25 01:04:02.000000000 +0200
++++ nagios-1.3-cvs.20050402/cgi/getcgi.c	2006-05-11 10:02:48.000000000 +0200
+@@ -166,6 +166,8 @@
+ 			printf("getcgivars(): No Content-Length was sent with the POST request.\n") ;
+ 			exit(1);
+ 		        }
++		if(content_length<0)
++			content_length=0;
+ 		if(!(cgiinput=(char *)malloc(content_length+1))){
+ 			printf("getcgivars(): Could not allocate memory for CGI input.\n");
+ 			exit(1);


Property changes on: nagios/branches/sarge/debian/patches/10100_CVE-2006-2162_content_length_header.dpatch
___________________________________________________________________
Name: svn:executable
   + *

More information about the Pkg-nagios-changes mailing list