summaryrefslogtreecommitdiffstats
path: root/debian/patches/CVE-2023-38408-1.patch
diff options
context:
space:
mode:
authorDaniel Baumann <daniel.baumann@progress-linux.org>2024-05-07 05:37:55 +0000
committerDaniel Baumann <daniel.baumann@progress-linux.org>2024-05-07 05:37:55 +0000
commit085377d0cee4cd384fd4bbb67ec162bf8e4367cb (patch)
tree371f72295843f8b4cfb6740441673e202bb29b2a /debian/patches/CVE-2023-38408-1.patch
parentReleasing progress-linux version 1:7.9p1-10+deb10u2progress5u1. (diff)
downloadopenssh-085377d0cee4cd384fd4bbb67ec162bf8e4367cb.tar.xz
openssh-085377d0cee4cd384fd4bbb67ec162bf8e4367cb.zip
Merging debian version 1:7.9p1-10+deb10u3.
Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
Diffstat (limited to 'debian/patches/CVE-2023-38408-1.patch')
-rw-r--r--debian/patches/CVE-2023-38408-1.patch28
1 files changed, 28 insertions, 0 deletions
diff --git a/debian/patches/CVE-2023-38408-1.patch b/debian/patches/CVE-2023-38408-1.patch
new file mode 100644
index 0000000..277979f
--- /dev/null
+++ b/debian/patches/CVE-2023-38408-1.patch
@@ -0,0 +1,28 @@
+From 892506b13654301f69f9545f48213fc210e5c5cc Mon Sep 17 00:00:00 2001
+From: "djm@openbsd.org" <djm@openbsd.org>
+Date: Wed, 19 Jul 2023 13:55:53 +0000
+Subject: [PATCH] upstream: terminate process if requested to load a PKCS#11
+ provider
+
+that isn't a PKCS#11 provider; from / ok markus@
+
+OpenBSD-Commit-ID: 39532cf18b115881bb4cfaee32084497aadfa05c
+---
+ ssh-pkcs11.c | 8 +++-----
+ 1 file changed, 3 insertions(+), 5 deletions(-)
+
+--- a/ssh-pkcs11.c
++++ b/ssh-pkcs11.c
+@@ -612,10 +612,8 @@
+ error("dlopen %s failed: %s", provider_id, dlerror());
+ goto fail;
+ }
+- if ((getfunctionlist = dlsym(handle, "C_GetFunctionList")) == NULL) {
+- error("dlsym(C_GetFunctionList) failed: %s", dlerror());
+- goto fail;
+- }
++ if ((getfunctionlist = dlsym(handle, "C_GetFunctionList")) == NULL)
++ fatal("dlsym(C_GetFunctionList) failed: %s", dlerror());
+ p = xcalloc(1, sizeof(*p));
+ p->name = xstrdup(provider_id);
+ p->handle = handle;