git Service of IN-Ulm e.V. Explore Help
Sign In
cbiedl
/
file
1
0
Fork 0
Files Pull Requests 0 Wiki
Browse Source

Fix note bounds reading, Francisco Alonso / Red Hat (CVE 2014-3710). Closes: #768806

Christoph Biedl 9 years ago
parent
7e94b0d7a1
commit
c468ef897c
2 changed files with 25 additions and 0 deletions
Split View Show Diff Stats
  1. 24 0
      debian/patches/CVE-2014-3710.patch
  2. 1 0
      debian/patches/series

+ 24 - 0
debian/patches/CVE-2014-3710.patch
View File 

@@ -0,0 +1,24 @@
 
+Subject: Fix note bounds reading, Francisco Alonso / Red Hat
 
+ID: CVE-2014-3710
 
+Author: Christos Zoulas <christos@zoulas.com>
 
+Date: Fri Oct 17 15:49:00 2014 +0000
 
+Origin:
 
+    commit 39c7ac1106be844a5296d3eb5971946cc09ffda0
 
+Last-Update: 2014-11-09
 
+
 
+--- a/src/readelf.c
 
++++ b/src/readelf.c
 
+@@ -477,6 +477,13 @@
 
+ 	uint32_t namesz, descsz;
 
+ 	unsigned char *nbuf = CAST(unsigned char *, vbuf);
 
+ 
++	if (xnh_sizeof + offset > size) {
 
++		/*
 
++		 * We're out of note headers.
 
++		 */
 
++		return xnh_sizeof + offset;
 
++	}
 
++
 
+ 	(void)memcpy(xnh_addr, &nbuf[offset], xnh_sizeof);
 
+ 	offset += xnh_sizeof;
 
+

+ 1 - 0
debian/patches/series
View File 

@@ -9,3 +9,4 @@
 
 0010-mdadm.patch
 
 0011-btrfs.patch
 
 0012-lxt.patch
 
+CVE-2014-3710.patch