[Pkg-openldap-devel] [openldap] 07/09: cherry-pick fix for CVE-2013-4449 (#729367)
Ryan Tandy
rtandy-guest at moszumanska.debian.org
Tue Apr 14 00:19:35 UTC 2015
This is an automated email from the git hooks/post-receive script.
rtandy-guest pushed a commit to branch squeeze
in repository openldap.
commit 47c35fc7bcb61bf279f639a56666727b64261f70
Author: Ryan Tandy <ryan at nardis.ca>
Date: Mon Apr 7 19:39:56 2014 -0700
cherry-pick fix for CVE-2013-4449 (#729367)
Cherry-picked from b15cc88.
Conflicts:
debian/changelog
debian/patches/series
---
debian/changelog | 3 ++
.../patches/ITS7723-fix-reference-counting.patch | 46 ++++++++++++++++++++++
debian/patches/series | 1 +
3 files changed, 50 insertions(+)
diff --git a/debian/changelog b/debian/changelog
index 6481c77..7555258 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -8,6 +8,9 @@ openldap (2.4.23-7.3+deb6u1) UNRELEASED; urgency=high
* debian/slapd.README.debian: Add information about how to remove "to * by
self write" from existing ACLs.
* debian/po/*: Add translations of debconf warning.
+ * debian/patches/ITS7723-fix-reference-counting.patch: Import upstream patch
+ to fix a crash in the rwm overlay when a search is immediately followed by
+ an unbind. (ITS#7723) (CVE-2013-4449) (Closes: #729367)
-- Ryan Tandy <ryan at nardis.ca> Mon, 13 Apr 2015 08:53:26 -0700
diff --git a/debian/patches/ITS7723-fix-reference-counting.patch b/debian/patches/ITS7723-fix-reference-counting.patch
new file mode 100644
index 0000000..54a65ed
--- /dev/null
+++ b/debian/patches/ITS7723-fix-reference-counting.patch
@@ -0,0 +1,46 @@
+Description: fix remote DoS (CVE-2013-4449)
+ taken from RHEL (and Fedora)
+ for detail, see https://bugzilla.redhat.com/show_bug.cgi?id=1019490#c0
+
+ and upstream: http://www.openldap.org/its/index.cgi/Incoming?id=7723
+
+Author: Jan Synacek <jsynacek at redhat.com>
+Origin: vendor
+Bug-Debian: http://bugs.debian.org/729367
+Forwarded: not-need
+Last-Update: 2013-11-13
+
+
+
+From 742d3e4a6a1f62c3c3ae1e9341f3615b4705a701 Mon Sep 17 00:00:00 2001
+From: Jan Synacek <jsynacek at redhat.com>
+Date: Wed, 13 Nov 2013 09:06:54 +0100
+Subject: [PATCH] ITS#7723 fix reference counting
+
+---
+ libraries/librewrite/session.c | 2 ++
+ 1 file changed, 2 insertions(+)
+
+diff --git a/libraries/librewrite/session.c b/libraries/librewrite/session.c
+index 28f2551..7c59d14 100644
+--- a/libraries/librewrite/session.c
++++ b/libraries/librewrite/session.c
+@@ -161,6 +161,7 @@ rewrite_session_find(
+ #ifdef USE_REWRITE_LDAP_PVT_THREADS
+ if ( session ) {
+ ldap_pvt_thread_mutex_lock( &session->ls_mutex );
++ session->ls_count++;
+ }
+ ldap_pvt_thread_rdwr_runlock( &info->li_cookies_mutex );
+ #endif /* USE_REWRITE_LDAP_PVT_THREADS */
+@@ -178,6 +179,7 @@ rewrite_session_return(
+ )
+ {
+ assert( session != NULL );
++ session->ls_count--;
+ ldap_pvt_thread_mutex_unlock( &session->ls_mutex );
+ }
+
+--
+1.8.3.1
+
diff --git a/debian/patches/series b/debian/patches/series
index 34f1f95..7f7e9e3 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -18,3 +18,4 @@ service-operational-before-detach
CVE-2011-1024
CVE-2011-1025
CVE-2011-1081
+ITS7723-fix-reference-counting.patch
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-openldap/openldap.git
More information about the Pkg-openldap-devel
mailing list