Gentoo Archives: gentoo-commits

From:	"Fabian Groffen (grobian)" <grobian@g.o>
To:	gentoo-commits@l.g.o
Subject:	[gentoo-commits] gentoo-x86 commit in mail-client/mutt/files: mutt-1.5.20-ssl-CVE-2009-3765-dc09812e63a3.patch
Date:	Tue, 27 Oct 2009 09:20:27
Message-Id:	`E1N2iE5-0005FI-Ob@stork.gentoo.org`

1	grobian 09/10/27 09:20:25
2
3	Added: mutt-1.5.20-ssl-CVE-2009-3765-dc09812e63a3.patch
4	Log:
5	Add patch to fix ssl security issue CVE-2009-3765, bug #290660
6	(Portage version: 2.2.00.14724-prefix/cvs/SunOS i386)
7
8	Revision Changes Path
9	1.1 mail-client/mutt/files/mutt-1.5.20-ssl-CVE-2009-3765-dc09812e63a3.patch
10
11	file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/mail-client/mutt/files/mutt-1.5.20-ssl-CVE-2009-3765-dc09812e63a3.patch?rev=1.1&view=markup
12	plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/mail-client/mutt/files/mutt-1.5.20-ssl-CVE-2009-3765-dc09812e63a3.patch?rev=1.1&content-type=text/plain
13
14	Index: mutt-1.5.20-ssl-CVE-2009-3765-dc09812e63a3.patch
15	===================================================================
16	http://bugs.gentoo.org/show_bug.cgi?id=290660
17	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3765
18	http://dev.mutt.org/trac/changeset/6016:dc09812e63a3/mutt_ssl.c
19
20	Index: mutt_ssl.c
21	===================================================================
22	--- mutt_ssl.c (revision 5870:dc9ec900c657)
23	+++ mutt_ssl.c (revision 6016:dc09812e63a3)
24	@@ -682,5 +682,6 @@
25	if (subj_alt_name->type == GEN_DNS)
26	{
27	- if ((match_found = hostname_match(hostname_ascii,
28	+ if (mutt_strlen(subj_alt_name) == subj_alt_name->d.ia5->length &&
29	+ (match_found = hostname_match(hostname_ascii,
30	(char *)(subj_alt_name->d.ia5->data))))
31	{
32	@@ -712,5 +713,7 @@
33	goto out;
34	}
35	- match_found = hostname_match(hostname_ascii, buf);
36	+ if (mutt_strlen(buf) == bufsize - 1) {
37	+ match_found = hostname_match(hostname_ascii, buf);
38	+ }
39	}

Report Message

Find on MARC Find on Google Groups