From: | "Fabian Groffen (grobian)" <grobian@g.o> |
---|---|
To: | gentoo-commits@l.g.o |
Subject: | [gentoo-commits] gentoo-x86 commit in mail-client/mutt/files: mutt-1.5.20-ssl-CVE-2009-3765-dc09812e63a3.patch |
Date: | Tue, 27 Oct 2009 09:20:27 |
Message-Id: | E1N2iE5-0005FI-Ob@stork.gentoo.org |
1 | grobian 09/10/27 09:20:25 |
2 | |
3 | Added: mutt-1.5.20-ssl-CVE-2009-3765-dc09812e63a3.patch |
4 | Log: |
5 | Add patch to fix ssl security issue CVE-2009-3765, bug #290660 |
6 | (Portage version: 2.2.00.14724-prefix/cvs/SunOS i386) |
7 | |
8 | Revision Changes Path |
9 | 1.1 mail-client/mutt/files/mutt-1.5.20-ssl-CVE-2009-3765-dc09812e63a3.patch |
10 | |
11 | file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/mail-client/mutt/files/mutt-1.5.20-ssl-CVE-2009-3765-dc09812e63a3.patch?rev=1.1&view=markup |
12 | plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/mail-client/mutt/files/mutt-1.5.20-ssl-CVE-2009-3765-dc09812e63a3.patch?rev=1.1&content-type=text/plain |
13 | |
14 | Index: mutt-1.5.20-ssl-CVE-2009-3765-dc09812e63a3.patch |
15 | =================================================================== |
16 | http://bugs.gentoo.org/show_bug.cgi?id=290660 |
17 | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3765 |
18 | http://dev.mutt.org/trac/changeset/6016:dc09812e63a3/mutt_ssl.c |
19 | |
20 | Index: mutt_ssl.c |
21 | =================================================================== |
22 | --- mutt_ssl.c (revision 5870:dc9ec900c657) |
23 | +++ mutt_ssl.c (revision 6016:dc09812e63a3) |
24 | @@ -682,5 +682,6 @@ |
25 | if (subj_alt_name->type == GEN_DNS) |
26 | { |
27 | - if ((match_found = hostname_match(hostname_ascii, |
28 | + if (mutt_strlen(subj_alt_name) == subj_alt_name->d.ia5->length && |
29 | + (match_found = hostname_match(hostname_ascii, |
30 | (char *)(subj_alt_name->d.ia5->data)))) |
31 | { |
32 | @@ -712,5 +713,7 @@ |
33 | goto out; |
34 | } |
35 | - match_found = hostname_match(hostname_ascii, buf); |
36 | + if (mutt_strlen(buf) == bufsize - 1) { |
37 | + match_found = hostname_match(hostname_ascii, buf); |
38 | + } |
39 | } |