mirror of
https://git.yoctoproject.org/poky
synced 2026-02-06 00:38:45 +01:00
31714674e4
* CVE detail: https://nvd.nist.gov/vuln/detail/CVE-2018-6951 * upstream tracking: http://savannah.gnu.org/bugs/?53132 * Fix segfault with mangled rename patch - src/pch.c (intuit_diff_type): Ensure that two filenames are specified for renames and copies (fix the existing check). (From OE-Core rev: cdf74e1c67698b2d44a7460ff7d365d6da7b7b96) Signed-off-by: Jackie Huang <jackie.huang@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
36 lines
1.2 KiB
Diff
36 lines
1.2 KiB
Diff
From f290f48a621867084884bfff87f8093c15195e6a Mon Sep 17 00:00:00 2001
|
|
From: Andreas Gruenbacher <agruen@gnu.org>
|
|
Date: Mon, 12 Feb 2018 16:48:24 +0100
|
|
Subject: [PATCH] Fix segfault with mangled rename patch
|
|
|
|
http://savannah.gnu.org/bugs/?53132
|
|
* src/pch.c (intuit_diff_type): Ensure that two filenames are specified
|
|
for renames and copies (fix the existing check).
|
|
|
|
Upstream-Status: Backport [http://git.savannah.gnu.org/cgit/patch.git/commit/?id=f290f48a621867084884bfff87f8093c15195e6a]
|
|
CVE: CVE-2018-6951
|
|
|
|
Signed-off-by: Jackie Huang <jackie.huang@windriver.com>
|
|
|
|
---
|
|
src/pch.c | 3 ++-
|
|
1 file changed, 2 insertions(+), 1 deletion(-)
|
|
|
|
diff --git a/src/pch.c b/src/pch.c
|
|
index ff9ed2c..bc6278c 100644
|
|
--- a/src/pch.c
|
|
+++ b/src/pch.c
|
|
@@ -974,7 +974,8 @@ intuit_diff_type (bool need_header, mode_t *p_file_type)
|
|
if ((pch_rename () || pch_copy ())
|
|
&& ! inname
|
|
&& ! ((i == OLD || i == NEW) &&
|
|
- p_name[! reverse] &&
|
|
+ p_name[reverse] && p_name[! reverse] &&
|
|
+ name_is_valid (p_name[reverse]) &&
|
|
name_is_valid (p_name[! reverse])))
|
|
{
|
|
say ("Cannot %s file without two valid file names\n", pch_rename () ? "rename" : "copy");
|
|
--
|
|
2.7.4
|
|
|