rpms/mono/devel mono-big-integer-CVE-2007-5197.patch, NONE, 1.1 mono.spec, 1.55, 1.56
Alexander Larsson (alexl)
fedora-extras-commits at redhat.com
Wed Nov 7 14:16:38 UTC 2007
- Previous message: rpms/festival/devel festival-1.96-nitech-proclaimvoice.patch, 1.1, 1.2 festival.spec, 1.27, 1.28
- Next message: rpms/apmd/devel laptopmode, NONE, 1.1 apmd.conf, 1.4, 1.5 apmd.init, 1.3, 1.4 apmd.spec, 1.26, 1.27 apmscript, 1.7, 1.8
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: alexl
Update of /cvs/pkgs/rpms/mono/devel
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv11546
Modified Files:
mono.spec
Added Files:
mono-big-integer-CVE-2007-5197.patch
Log Message:
* Wed Nov 7 2007 Alexander Larsson <alexl at redhat.com> - 1.2.5.1-3
- Fix overflow in Mono.Math.BigInteger class (#367551)
CVE-2007-5197
mono-big-integer-CVE-2007-5197.patch:
--- NEW FILE mono-big-integer-CVE-2007-5197.patch ---
--- mcs/class/corlib/Mono.Math/BigInteger.cs 2007-09-19 19:06:06.000000000 +0200
+++ mcs/class/corlib/Mono.Math/BigInteger.cs 2007-10-25 23:46:55.000000000 +0200
@@ -1607,7 +1607,7 @@
uint j = 1;
// Multiply and add
- for (; j < m.length; j++) {
+ for (; j < m.length && j < A.length; j++) {
c += (ulong)u_i * (ulong)*(mP++) + *(aSP++);
*(aDP++) = (uint)c;
c >>= 32;
--- mcs/class/Mono.Security/Mono.Math/BigInteger.cs 2007-07-24 23:48:50.000000000 +0200
+++ mcs/class/Mono.Security/Mono.Math/BigInteger.cs 2007-10-25 23:45:01.000000000 +0200
@@ -1601,7 +1601,7 @@
uint j = 1;
// Multiply and add
- for (; j < m.length; j++) {
+ for (; j < m.length && j < A.length; j++) {
c += (ulong)u_i * (ulong)*(mP++) + *(aSP++);
*(aDP++) = (uint)c;
c >>= 32;
Index: mono.spec
===================================================================
RCS file: /cvs/pkgs/rpms/mono/devel/mono.spec,v
retrieving revision 1.55
retrieving revision 1.56
diff -u -r1.55 -r1.56
--- mono.spec 5 Oct 2007 15:20:28 -0000 1.55
+++ mono.spec 7 Nov 2007 14:16:03 -0000 1.56
@@ -1,6 +1,6 @@
Name: mono
Version: 1.2.5.1
-Release: 1%{?dist}
+Release: 3%{?dist}
Summary: a .NET runtime environment
Group: Development/Languages
@@ -34,6 +34,8 @@
Patch5: mono-1.2.4-metadata.patch
Patch6: mono-1251-metadata.patch
+Patch7: mono-big-integer-CVE-2007-5197.patch
+
%description
The Mono runtime implements a JIT engine for the ECMA CLI
virtual machine (as well as a byte code interpreter, the
@@ -257,6 +259,8 @@
%patch3 -p1 -b .libdir
%patch4 -p1 -b .use-monodir
+%patch7 -p0 -b .big-integer
+
%build
%ifarch ia64 s390
export CFLAGS="-O2 -fno-strict-aliasing"
@@ -571,6 +575,10 @@
%gac_dll IBM.Data.DB2
%changelog
+* Wed Nov 7 2007 Alexander Larsson <alexl at redhat.com> - 1.2.5.1-3
+- Fix overflow in Mono.Math.BigInteger class (#367551)
+ CVE-2007-5197
+
* Fri Oct 05 2007 Paul F. Johnson <paul at all-the-johnsons.co.uk> - 1.2.5.1-1
- bump
- added new parts (mono-linker, resgen and mono-cecil)
- Previous message: rpms/festival/devel festival-1.96-nitech-proclaimvoice.patch, 1.1, 1.2 festival.spec, 1.27, 1.28
- Next message: rpms/apmd/devel laptopmode, NONE, 1.1 apmd.conf, 1.4, 1.5 apmd.init, 1.3, 1.4 apmd.spec, 1.26, 1.27 apmscript, 1.7, 1.8
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the scm-commits
mailing list