Mercurial Mercurial > upstream > oracle > userland-gate / comparison
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
components/libevent/patches/CVE-2016-10195.patch
changeset 7638 b2986f4bf55a
equal deleted inserted replaced
7635:6571f4c52a4a 7638:b2986f4bf55a 
       
     1 Fix for CVE-2016-10195
 
       
     2 
       
     3 More details at:
 
       
     4 
       
     5   https://github.com/libevent/libevent/issues/317
 
       
     6 
       
     7 Based on commit at:
 
       
     8 
       
     9   https://github.com/libevent/libevent/commit/96f64a022014a208105ead6c8a7066018449d86d
 
       
    10 
       
    11 --- libevent-2.0.22/evdns.c.orig	2017-02-02 07:18:16.307620386 +0000
 
       
    12 +++ libevent-2.0.22/evdns.c	2017-02-02 07:23:36.432656559 +0000
 
       
    13 @@ -960,7 +960,6 @@
 
       
    14  
       
    15  	for (;;) {
 
       
    16  		u8 label_len;
 
       
    17 -		if (j >= length) return -1;
 
       
    18  		GET8(label_len);
 
       
    19  		if (!label_len) break;
 
       
    20  		if (label_len & 0xc0) {
 
       
    21 @@ -980,7 +979,7 @@
 
       
    22  			if (cp + 1 >= end) return -1;
 
       
    23  			*cp++ = '.';
 
       
    24  		}
 
       
    25 -		if (cp + label_len >= end) return -1;
 
       
    26 +		if (j + label_len > length) return -1;
 
       
    27  		memcpy(cp, packet + j, label_len);
 
       
    28  		cp += label_len;
 
       
    29  		j += label_len;
upstream/oracle/userland-gate