[Git][debian-proftpd-team/proftpd][bookworm] Add patch from upstream to address issue 1694.

Hilmar Preuße (@hilmar-guest) gitlab at salsa.debian.org
Tue Nov 7 22:51:26 GMT 2023



Hilmar Preuße pushed to branch bookworm at Debian ProFTPD Team / proftpd


Commits:
678a6313 by Hilmar Preuße at 2023-11-07T23:50:48+01:00
Add patch from upstream to address issue 1694.

- - - - -


3 changed files:

- debian/changelog
- debian/patches/series
- + debian/patches/upstream_1707.diff


Changes:

=====================================
debian/changelog
=====================================
@@ -1,3 +1,9 @@
+proftpd-dfsg (1.3.8+dfsg-4+deb12u2) UNRELEASED; urgency=medium
+
+  * Add patch from upstream to address issue 1694 (Closes: #1051236).
+
+ -- Hilmar Preusse <hille42 at web.de>  Tue, 07 Nov 2023 23:14:26 +0100
+
 proftpd-dfsg (1.3.8+dfsg-4+deb12u1) bookworm; urgency=medium
 
   * Now do not enable proftpd.socket to avoid conflicts at boot time.


=====================================
debian/patches/series
=====================================
@@ -17,3 +17,4 @@ upstream_bug_1597.diff
 01_disable_inet_connect_ipv4_test.diff
 02_disable_redis_sentinel_conn_new_test.diff
 03_disable_all_non_api_tests.diff
+upstream_1707.diff


=====================================
debian/patches/upstream_1707.diff
=====================================
@@ -0,0 +1,69 @@
+--- proftpd.orig/contrib/mod_sftp/kex.c
++++ proftpd/contrib/mod_sftp/kex.c
+@@ -52,6 +52,12 @@
+  */
+ #define SFTP_DH_PREF_MIN_LEN	2048
+ 
++/* Define the size of the buffer we use to compute H.  Note that this buffer
++ * needs to be large enough to contain the KEXINIT messages from both client
++ * and server; see Issue#1694.
++ */
++#define SFTP_KEX_H_BUFLEN	8192
++
+ extern pr_response_t *resp_list, *resp_err_list;
+ extern module sftp_module;
+ 
+@@ -312,7 +318,7 @@
+   unsigned char *buf, *ptr;
+   uint32_t buflen, bufsz;
+ 
+-  bufsz = buflen = 8192;
++  bufsz = buflen = SFTP_KEX_H_BUFLEN;
+ 
+   /* XXX Is this buffer large enough? Too large? */
+   ptr = buf = sftp_msg_getbuf(kex_pool, bufsz);
+@@ -441,7 +447,7 @@
+   unsigned char *buf, *ptr;
+   uint32_t buflen, bufsz;
+ 
+-  bufsz = buflen = 8192;
++  bufsz = buflen = SFTP_KEX_H_BUFLEN;
+ 
+   /* XXX Is this buffer large enough? Too large? */
+   ptr = buf = sftp_msg_getbuf(kex_pool, bufsz);
+@@ -590,7 +596,7 @@
+   unsigned char *buf, *ptr;
+   uint32_t buflen, bufsz;
+ 
+-  bufsz = buflen = 4096;
++  bufsz = buflen = SFTP_KEX_H_BUFLEN;
+ 
+   /* XXX Is this buffer large enough? Too large? */
+   ptr = buf = sftp_msg_getbuf(kex_pool, bufsz);
+@@ -704,7 +710,7 @@
+   unsigned char *buf, *ptr;
+   uint32_t buflen, bufsz;
+ 
+-  bufsz = buflen = 4096;
++  bufsz = buflen = SFTP_KEX_H_BUFLEN;
+ 
+   /* XXX Is this buffer large enough? Too large? */
+   ptr = buf = sftp_msg_getbuf(kex_pool, bufsz);
+@@ -4142,7 +4148,7 @@
+   unsigned char *buf, *ptr;
+   uint32_t buflen, bufsz;
+ 
+-  bufsz = buflen = 4096;
++  bufsz = buflen = SFTP_KEX_H_BUFLEN;
+ 
+   /* XXX Is this buffer large enough? Too large? */
+   ptr = buf = sftp_msg_getbuf(kex_pool, bufsz);
+@@ -4584,7 +4590,7 @@
+   unsigned char *buf, *ptr;
+   uint32_t buflen, bufsz;
+ 
+-  bufsz = buflen = 4096;
++  bufsz = buflen = SFTP_KEX_H_BUFLEN;
+ 
+   /* XXX Is this buffer large enough? Too large? */
+   ptr = buf = sftp_msg_getbuf(kex_pool, bufsz);



View it on GitLab: https://salsa.debian.org/debian-proftpd-team/proftpd/-/commit/678a63139ba05c64d92e47e63c57d7bee99a8d63

-- 
View it on GitLab: https://salsa.debian.org/debian-proftpd-team/proftpd/-/commit/678a63139ba05c64d92e47e63c57d7bee99a8d63
You're receiving this email because of your account on salsa.debian.org.




More information about the Pkg-proftpd-maintainers mailing list