summaryrefslogtreecommitdiffstats
path: root/debian/patches/0037-CVE-2022-38177.patch
diff options
context:
space:
mode:
authorDaniel Baumann <daniel.baumann@progress-linux.org>2024-05-07 04:57:07 +0000
committerDaniel Baumann <daniel.baumann@progress-linux.org>2024-05-07 04:57:07 +0000
commitac726c9e621aa041133310fc3d7990ed62b64a3e (patch)
treeb2c713e7692c009f91d41ef6f352c27dc5f4da03 /debian/patches/0037-CVE-2022-38177.patch
parentReleasing progress-linux version 1:9.11.5.P4+dfsg-5.1+deb10u7progress5u1. (diff)
downloadbind9-ac726c9e621aa041133310fc3d7990ed62b64a3e.tar.xz
bind9-ac726c9e621aa041133310fc3d7990ed62b64a3e.zip
Merging debian version 1:9.11.5.P4+dfsg-5.1+deb10u8.
Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
Diffstat (limited to 'debian/patches/0037-CVE-2022-38177.patch')
-rw-r--r--debian/patches/0037-CVE-2022-38177.patch25
1 files changed, 25 insertions, 0 deletions
diff --git a/debian/patches/0037-CVE-2022-38177.patch b/debian/patches/0037-CVE-2022-38177.patch
new file mode 100644
index 0000000..109a6b8
--- /dev/null
+++ b/debian/patches/0037-CVE-2022-38177.patch
@@ -0,0 +1,25 @@
+From 5b2282afff760b1ed3471f6666bdfe8e1d34e590 Mon Sep 17 00:00:00 2001
+From: Mark Andrews <marka@isc.org>
+Date: Thu, 11 Aug 2022 15:15:34 +1000
+Subject: [PATCH] Free eckey on siglen mismatch
+
+---
+ lib/dns/opensslecdsa_link.c | 2 +-
+ 1 file changed, 1 insertion(+), 1 deletion(-)
+
+diff --git a/lib/dns/opensslecdsa_link.c b/lib/dns/opensslecdsa_link.c
+index 1f16ca70738..5ee4342b387 100644
+--- a/lib/dns/opensslecdsa_link.c
++++ b/lib/dns/opensslecdsa_link.c
+@@ -230,7 +230,7 @@ opensslecdsa_verify(dst_context_t *dctx, const isc_region_t *sig) {
+ siglen = DNS_SIG_ECDSA384SIZE;
+
+ if (sig->length != siglen)
+- return (DST_R_VERIFYFAILURE);
++ DST_RET(DST_R_VERIFYFAILURE);
+
+ if (!EVP_DigestFinal_ex(evp_md_ctx, digest, &dgstlen))
+ DST_RET (dst__openssl_toresult3(dctx->category,
+--
+GitLab
+
generated by cgit v1.2.3 (git 2.39.1) at 2025-01-18 03:08:09 +0000