* [oe][PATCH] libproxy: Fix for CVE-2012-4504
[not found] <3487>
@ 2012-11-28 10:13 ` yanjun.zhu
2012-11-29 17:45 ` Saul Wold
2012-11-30 5:42 ` [PATCH 1/1] " yanjun.zhu
` (2 subsequent siblings)
3 siblings, 1 reply; 6+ messages in thread
From: yanjun.zhu @ 2012-11-28 10:13 UTC (permalink / raw)
To: openembedded-core
From: "yanjun.zhu" <yanjun.zhu@windriver.com>
Reference:https://code.google.com/p/libproxy/source/detail?r=853
Stack-based buffer overflow in the url::get_pac function in url.cpp
in libproxy 0.4.x before 0.4.9 allows remote servers to have an
unspecified impact via a large proxy.pac file.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-4504
Signed-off-by: yanjun.zhu <yanjun.zhu@windriver.com>
---
.../libproxy/libproxy/libproxy-0.4.7-CVE-2012-4504.patch | 15 +++++++++++++++
meta/recipes-support/libproxy/libproxy_0.4.7.bb | 1 +
2 files changed, 16 insertions(+)
create mode 100644 meta/recipes-support/libproxy/libproxy/libproxy-0.4.7-CVE-2012-4504.patch
diff --git a/meta/recipes-support/libproxy/libproxy/libproxy-0.4.7-CVE-2012-4504.patch b/meta/recipes-support/libproxy/libproxy/libproxy-0.4.7-CVE-2012-4504.patch
new file mode 100644
index 0000000..323a571
--- /dev/null
+++ b/meta/recipes-support/libproxy/libproxy/libproxy-0.4.7-CVE-2012-4504.patch
@@ -0,0 +1,15 @@
+diff -urpN a/libproxy/url.cpp b/libproxy/url.cpp
+--- a/libproxy/url.cpp 2012-11-26 10:08:47.000000000 +0800
++++ b/libproxy/url.cpp 2012-11-26 10:05:54.000000000 +0800
+@@ -472,9 +472,10 @@ char* url::get_pac() {
+ // Add this chunk to our content length,
+ // ensuring that we aren't over our max size
+ content_length += chunk_length;
+- if (content_length >= PAC_MAX_SIZE) break;
+ }
+
++ if (content_length >= PAC_MAX_SIZE) break;
++
+ while (recvd != content_length) {
+ int r = recv(sock, buffer + recvd, content_length - recvd, 0);
+ if (r < 0) break;
diff --git a/meta/recipes-support/libproxy/libproxy_0.4.7.bb b/meta/recipes-support/libproxy/libproxy_0.4.7.bb
index e3721a8..fc32f57 100644
--- a/meta/recipes-support/libproxy/libproxy_0.4.7.bb
+++ b/meta/recipes-support/libproxy/libproxy_0.4.7.bb
@@ -13,6 +13,7 @@ PR = "r4"
SRC_URI = "http://libproxy.googlecode.com/files/libproxy-${PV}.tar.gz \
file://g++-namepace.patch \
file://libproxy_fix_for_gcc4.7.patch \
+ file://libproxy-0.4.7-CVE-2012-4504.patch \
"
SRC_URI[md5sum] = "509e03a488a61cd62bfbaf3ab6a2a7a5"
--
1.7.11
^ permalink raw reply related [flat|nested] 6+ messages in thread
* Re: [oe][PATCH] libproxy: Fix for CVE-2012-4504
2012-11-28 10:13 ` [oe][PATCH] libproxy: Fix for CVE-2012-4504 yanjun.zhu
@ 2012-11-29 17:45 ` Saul Wold
0 siblings, 0 replies; 6+ messages in thread
From: Saul Wold @ 2012-11-29 17:45 UTC (permalink / raw)
To: yanjun.zhu; +Cc: openembedded-core
On 11/28/2012 02:13 AM, yanjun.zhu wrote:
> From: "yanjun.zhu" <yanjun.zhu@windriver.com>
>
> Reference:https://code.google.com/p/libproxy/source/detail?r=853
>
> Stack-based buffer overflow in the url::get_pac function in url.cpp
> in libproxy 0.4.x before 0.4.9 allows remote servers to have an
> unspecified impact via a large proxy.pac file.
>
> http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-4504
>
> Signed-off-by: yanjun.zhu <yanjun.zhu@windriver.com>
> ---
> .../libproxy/libproxy/libproxy-0.4.7-CVE-2012-4504.patch | 15 +++++++++++++++
> meta/recipes-support/libproxy/libproxy_0.4.7.bb | 1 +
> 2 files changed, 16 insertions(+)
> create mode 100644 meta/recipes-support/libproxy/libproxy/libproxy-0.4.7-CVE-2012-4504.patch
>
> diff --git a/meta/recipes-support/libproxy/libproxy/libproxy-0.4.7-CVE-2012-4504.patch b/meta/recipes-support/libproxy/libproxy/libproxy-0.4.7-CVE-2012-4504.patch
> new file mode 100644
> index 0000000..323a571
> --- /dev/null
> +++ b/meta/recipes-support/libproxy/libproxy/libproxy-0.4.7-CVE-2012-4504.patch
This is missing a patch header with Signed-off-by and Upstream-Status,
please add them.
Thanks
Sau!
> @@ -0,0 +1,15 @@
> +diff -urpN a/libproxy/url.cpp b/libproxy/url.cpp
> +--- a/libproxy/url.cpp 2012-11-26 10:08:47.000000000 +0800
> ++++ b/libproxy/url.cpp 2012-11-26 10:05:54.000000000 +0800
> +@@ -472,9 +472,10 @@ char* url::get_pac() {
> + // Add this chunk to our content length,
> + // ensuring that we aren't over our max size
> + content_length += chunk_length;
> +- if (content_length >= PAC_MAX_SIZE) break;
> + }
> +
> ++ if (content_length >= PAC_MAX_SIZE) break;
> ++
> + while (recvd != content_length) {
> + int r = recv(sock, buffer + recvd, content_length - recvd, 0);
> + if (r < 0) break;
> diff --git a/meta/recipes-support/libproxy/libproxy_0.4.7.bb b/meta/recipes-support/libproxy/libproxy_0.4.7.bb
> index e3721a8..fc32f57 100644
> --- a/meta/recipes-support/libproxy/libproxy_0.4.7.bb
> +++ b/meta/recipes-support/libproxy/libproxy_0.4.7.bb
> @@ -13,6 +13,7 @@ PR = "r4"
> SRC_URI = "http://libproxy.googlecode.com/files/libproxy-${PV}.tar.gz \
> file://g++-namepace.patch \
> file://libproxy_fix_for_gcc4.7.patch \
> + file://libproxy-0.4.7-CVE-2012-4504.patch \
> "
>
> SRC_URI[md5sum] = "509e03a488a61cd62bfbaf3ab6a2a7a5"
>
^ permalink raw reply [flat|nested] 6+ messages in thread
* [PATCH 1/1] libproxy: Fix for CVE-2012-4504
[not found] <3487>
2012-11-28 10:13 ` [oe][PATCH] libproxy: Fix for CVE-2012-4504 yanjun.zhu
@ 2012-11-30 5:42 ` yanjun.zhu
2012-11-30 5:44 ` yzhu1
2012-11-30 6:04 ` yanjun.zhu
2012-11-30 11:08 ` yanjun.zhu
3 siblings, 1 reply; 6+ messages in thread
From: yanjun.zhu @ 2012-11-30 5:42 UTC (permalink / raw)
To: openembedded-core
From: "yanjun.zhu" <yanjun.zhu@windriver.com>
Reference:https://code.google.com/p/libproxy/source/detail?r=853
Stack-based buffer overflow in the url::get_pac function in url.cpp
in libproxy 0.4.x before 0.4.9 allows remote servers to have an
unspecified impact via a large proxy.pac file.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-4504
[YOCTO #3487]
Signed-off-by: yanjun.zhu <yanjun.zhu@windriver.com>
---
.../libproxy/libproxy/libproxy-0.4.7-CVE-2012-4504.patch | 10 ++++++++++
1 file changed, 10 insertions(+)
diff --git a/meta/recipes-support/libproxy/libproxy/libproxy-0.4.7-CVE-2012-4504.patch b/meta/recipes-support/libproxy/libproxy/libproxy-0.4.7-CVE-2012-4504.patch
index 323a571..cc1d508 100644
--- a/meta/recipes-support/libproxy/libproxy/libproxy-0.4.7-CVE-2012-4504.patch
+++ b/meta/recipes-support/libproxy/libproxy/libproxy-0.4.7-CVE-2012-4504.patch
@@ -1,3 +1,13 @@
+Reference:https://code.google.com/p/libproxy/source/detail?r=853
+
+Stack-based buffer overflow in the url::get_pac function in url.cpp
+in libproxy 0.4.x before 0.4.9 allows remote servers to have an
+unspecified impact via a large proxy.pac file.
+
+http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-4504
+
+Signed-off-by: yanjun.zhu <yanjun.zhu@windriver.com>
+
diff -urpN a/libproxy/url.cpp b/libproxy/url.cpp
--- a/libproxy/url.cpp 2012-11-26 10:08:47.000000000 +0800
+++ b/libproxy/url.cpp 2012-11-26 10:05:54.000000000 +0800
--
1.7.11
^ permalink raw reply related [flat|nested] 6+ messages in thread
* Re: [PATCH 1/1] libproxy: Fix for CVE-2012-4504
2012-11-30 5:42 ` [PATCH 1/1] " yanjun.zhu
@ 2012-11-30 5:44 ` yzhu1
0 siblings, 0 replies; 6+ messages in thread
From: yzhu1 @ 2012-11-30 5:44 UTC (permalink / raw)
To: yanjun.zhu; +Cc: openembedded-core
Sorry. Please ignore this mail.
Thanks a lot.
Zhu Yanjun
On 11/30/2012 01:42 PM, yanjun.zhu wrote:
> From: "yanjun.zhu" <yanjun.zhu@windriver.com>
>
> Reference:https://code.google.com/p/libproxy/source/detail?r=853
>
> Stack-based buffer overflow in the url::get_pac function in url.cpp
> in libproxy 0.4.x before 0.4.9 allows remote servers to have an
> unspecified impact via a large proxy.pac file.
>
> http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-4504
>
> [YOCTO #3487]
> Signed-off-by: yanjun.zhu <yanjun.zhu@windriver.com>
> ---
> .../libproxy/libproxy/libproxy-0.4.7-CVE-2012-4504.patch | 10 ++++++++++
> 1 file changed, 10 insertions(+)
>
> diff --git a/meta/recipes-support/libproxy/libproxy/libproxy-0.4.7-CVE-2012-4504.patch b/meta/recipes-support/libproxy/libproxy/libproxy-0.4.7-CVE-2012-4504.patch
> index 323a571..cc1d508 100644
> --- a/meta/recipes-support/libproxy/libproxy/libproxy-0.4.7-CVE-2012-4504.patch
> +++ b/meta/recipes-support/libproxy/libproxy/libproxy-0.4.7-CVE-2012-4504.patch
> @@ -1,3 +1,13 @@
> +Reference:https://code.google.com/p/libproxy/source/detail?r=853
> +
> +Stack-based buffer overflow in the url::get_pac function in url.cpp
> +in libproxy 0.4.x before 0.4.9 allows remote servers to have an
> +unspecified impact via a large proxy.pac file.
> +
> +http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-4504
> +
> +Signed-off-by: yanjun.zhu <yanjun.zhu@windriver.com>
> +
> diff -urpN a/libproxy/url.cpp b/libproxy/url.cpp
> --- a/libproxy/url.cpp 2012-11-26 10:08:47.000000000 +0800
> +++ b/libproxy/url.cpp 2012-11-26 10:05:54.000000000 +0800
^ permalink raw reply [flat|nested] 6+ messages in thread
* [PATCH 1/1] libproxy: Fix for CVE-2012-4504
[not found] <3487>
2012-11-28 10:13 ` [oe][PATCH] libproxy: Fix for CVE-2012-4504 yanjun.zhu
2012-11-30 5:42 ` [PATCH 1/1] " yanjun.zhu
@ 2012-11-30 6:04 ` yanjun.zhu
2012-11-30 11:08 ` yanjun.zhu
3 siblings, 0 replies; 6+ messages in thread
From: yanjun.zhu @ 2012-11-30 6:04 UTC (permalink / raw)
To: openembedded-core
From: "yanjun.zhu" <yanjun.zhu@windriver.com>
Reference:https://code.google.com/p/libproxy/source/detail?r=853
Stack-based buffer overflow in the url::get_pac function in url.cpp
in libproxy 0.4.x before 0.4.9 allows remote servers to have an
unspecified impact via a large proxy.pac file.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-4504
[YOCTO #3487]
Signed-off-by: yanjun.zhu <yanjun.zhu@windriver.com>
---
.../libproxy/libproxy-0.4.7-CVE-2012-4504.patch | 27 ++++++++++++++++++++++
meta/recipes-support/libproxy/libproxy_0.4.7.bb | 1 +
2 files changed, 28 insertions(+)
create mode 100644 meta/recipes-support/libproxy/libproxy/libproxy-0.4.7-CVE-2012-4504.patch
diff --git a/meta/recipes-support/libproxy/libproxy/libproxy-0.4.7-CVE-2012-4504.patch b/meta/recipes-support/libproxy/libproxy/libproxy-0.4.7-CVE-2012-4504.patch
new file mode 100644
index 0000000..b4def86
--- /dev/null
+++ b/meta/recipes-support/libproxy/libproxy/libproxy-0.4.7-CVE-2012-4504.patch
@@ -0,0 +1,27 @@
+libproxy - CVE-2012-4504:
+
+Reference:https://code.google.com/p/libproxy/source/detail?r=853
+
+Stack-based buffer overflow in the url::get_pac function in url.cpp
+in libproxy 0.4.x before 0.4.9 allows remote servers to have an
+unspecified impact via a large proxy.pac file.
+
+http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-4504
+
+Signed-off-by: yanjun.zhu <yanjun.zhu@windriver.com>
+
+diff -urpN a/libproxy/url.cpp b/libproxy/url.cpp
+--- a/libproxy/url.cpp 2012-11-26 10:08:47.000000000 +0800
++++ b/libproxy/url.cpp 2012-11-26 10:05:54.000000000 +0800
+@@ -472,9 +472,10 @@ char* url::get_pac() {
+ // Add this chunk to our content length,
+ // ensuring that we aren't over our max size
+ content_length += chunk_length;
+- if (content_length >= PAC_MAX_SIZE) break;
+ }
+
++ if (content_length >= PAC_MAX_SIZE) break;
++
+ while (recvd != content_length) {
+ int r = recv(sock, buffer + recvd, content_length - recvd, 0);
+ if (r < 0) break;
diff --git a/meta/recipes-support/libproxy/libproxy_0.4.7.bb b/meta/recipes-support/libproxy/libproxy_0.4.7.bb
index e3721a8..fc32f57 100644
--- a/meta/recipes-support/libproxy/libproxy_0.4.7.bb
+++ b/meta/recipes-support/libproxy/libproxy_0.4.7.bb
@@ -13,6 +13,7 @@ PR = "r4"
SRC_URI = "http://libproxy.googlecode.com/files/libproxy-${PV}.tar.gz \
file://g++-namepace.patch \
file://libproxy_fix_for_gcc4.7.patch \
+ file://libproxy-0.4.7-CVE-2012-4504.patch \
"
SRC_URI[md5sum] = "509e03a488a61cd62bfbaf3ab6a2a7a5"
--
1.7.11
^ permalink raw reply related [flat|nested] 6+ messages in thread
* [PATCH 1/1] libproxy: Fix for CVE-2012-4504
[not found] <3487>
` (2 preceding siblings ...)
2012-11-30 6:04 ` yanjun.zhu
@ 2012-11-30 11:08 ` yanjun.zhu
3 siblings, 0 replies; 6+ messages in thread
From: yanjun.zhu @ 2012-11-30 11:08 UTC (permalink / raw)
To: openembedded-core
From: "yanjun.zhu" <yanjun.zhu@windriver.com>
Reference:https://code.google.com/p/libproxy/source/detail?r=853
Stack-based buffer overflow in the url::get_pac function in url.cpp
in libproxy 0.4.x before 0.4.9 allows remote servers to have an
unspecified impact via a large proxy.pac file.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-4504
[YOCTO #3487]
Signed-off-by: yanjun.zhu <yanjun.zhu@windriver.com>
---
.../libproxy/libproxy-0.4.7-CVE-2012-4504.patch | 29 ++++++++++++++++++++++
meta/recipes-support/libproxy/libproxy_0.4.7.bb | 1 +
2 files changed, 30 insertions(+)
create mode 100644 meta/recipes-support/libproxy/libproxy/libproxy-0.4.7-CVE-2012-4504.patch
diff --git a/meta/recipes-support/libproxy/libproxy/libproxy-0.4.7-CVE-2012-4504.patch b/meta/recipes-support/libproxy/libproxy/libproxy-0.4.7-CVE-2012-4504.patch
new file mode 100644
index 0000000..7f2d93a
--- /dev/null
+++ b/meta/recipes-support/libproxy/libproxy/libproxy-0.4.7-CVE-2012-4504.patch
@@ -0,0 +1,29 @@
+Upstream-Status: Backport
+
+libproxy - CVE-2012-4504:
+
+Reference:https://code.google.com/p/libproxy/source/detail?r=853
+
+Stack-based buffer overflow in the url::get_pac function in url.cpp
+in libproxy 0.4.x before 0.4.9 allows remote servers to have an
+unspecified impact via a large proxy.pac file.
+
+http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-4504
+
+Signed-off-by: yanjun.zhu <yanjun.zhu@windriver.com>
+
+diff -urpN a/libproxy/url.cpp b/libproxy/url.cpp
+--- a/libproxy/url.cpp 2012-11-26 10:08:47.000000000 +0800
++++ b/libproxy/url.cpp 2012-11-26 10:05:54.000000000 +0800
+@@ -472,9 +472,10 @@ char* url::get_pac() {
+ // Add this chunk to our content length,
+ // ensuring that we aren't over our max size
+ content_length += chunk_length;
+- if (content_length >= PAC_MAX_SIZE) break;
+ }
+
++ if (content_length >= PAC_MAX_SIZE) break;
++
+ while (recvd != content_length) {
+ int r = recv(sock, buffer + recvd, content_length - recvd, 0);
+ if (r < 0) break;
diff --git a/meta/recipes-support/libproxy/libproxy_0.4.7.bb b/meta/recipes-support/libproxy/libproxy_0.4.7.bb
index e3721a8..fc32f57 100644
--- a/meta/recipes-support/libproxy/libproxy_0.4.7.bb
+++ b/meta/recipes-support/libproxy/libproxy_0.4.7.bb
@@ -13,6 +13,7 @@ PR = "r4"
SRC_URI = "http://libproxy.googlecode.com/files/libproxy-${PV}.tar.gz \
file://g++-namepace.patch \
file://libproxy_fix_for_gcc4.7.patch \
+ file://libproxy-0.4.7-CVE-2012-4504.patch \
"
SRC_URI[md5sum] = "509e03a488a61cd62bfbaf3ab6a2a7a5"
--
1.7.11
^ permalink raw reply related [flat|nested] 6+ messages in thread
end of thread, other threads:[~2012-11-30 11:23 UTC | newest]
Thread overview: 6+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
[not found] <3487>
2012-11-28 10:13 ` [oe][PATCH] libproxy: Fix for CVE-2012-4504 yanjun.zhu
2012-11-29 17:45 ` Saul Wold
2012-11-30 5:42 ` [PATCH 1/1] " yanjun.zhu
2012-11-30 5:44 ` yzhu1
2012-11-30 6:04 ` yanjun.zhu
2012-11-30 11:08 ` yanjun.zhu
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox