diff options
| author |   Lars Wendler <polynomial-c@gentoo.org> | 2017-06-03 13:48:46 +0200 |
|---|---|---|
| committer | Lars Wendler <polynomial-c@gentoo.org> | 2017-06-03 13:48:46 +0200 |
| commit | fd4e6acf26c5766cfe17b4d1be223afcd0bab1e0 (patch) | |
| tree | 0e19c7f5dd9baab9fa783be886266b4eb47cd8a8 /app-arch/bzip2/files | |
| parent | app-admin/sudo: Removed old. (diff) | |
| download | gentoo-fd4e6acf26c5766cfe17b4d1be223afcd0bab1e0.tar.gz gentoo-fd4e6acf26c5766cfe17b4d1be223afcd0bab1e0.tar.bz2 gentoo-fd4e6acf26c5766cfe17b4d1be223afcd0bab1e0.zip | |
app-arch/bzip2: Security revbump to fix CVE-2016-3189 (bug #620466).
Package-Manager: Portage-2.3.6, Repoman-2.3.2
Diffstat (limited to 'app-arch/bzip2/files')
| -rw-r--r-- | app-arch/bzip2/files/bzip2-1.0.6-CVE-2016-3189.patch | 18 |
1 files changed, 18 insertions, 0 deletions
diff --git a/app-arch/bzip2/files/bzip2-1.0.6-CVE-2016-3189.patch b/app-arch/bzip2/files/bzip2-1.0.6-CVE-2016-3189.patch new file mode 100644 index 000000000000..1d0c3a6dd34f --- /dev/null +++ b/app-arch/bzip2/files/bzip2-1.0.6-CVE-2016-3189.patch @@ -0,0 +1,18 @@ +Upstream-Status: Backport +https://bugzilla.suse.com/attachment.cgi?id=681334 + +CVE: CVE-2016-3189 +Signed-off-by: Armin Kuster <akuster@mvista.com> + +Index: bzip2-1.0.6/bzip2recover.c +=================================================================== +--- bzip2-1.0.6.orig/bzip2recover.c ++++ bzip2-1.0.6/bzip2recover.c +@@ -457,6 +457,7 @@ Int32 main ( Int32 argc, Char** argv ) + bsPutUChar ( bsWr, 0x50 ); bsPutUChar ( bsWr, 0x90 ); + bsPutUInt32 ( bsWr, blockCRC ); + bsClose ( bsWr ); ++ outFile = NULL; + } + if (wrBlock >= rbCtr) break; + wrBlock++; |