rpms/python-crypto/F-10 python-crypto-fix_buffer_overflow.patch, NONE, 1.1 python-crypto.spec, 1.23, 1.24
Thorsten Leemhuis
thl at fedoraproject.org
Fri Feb 13 16:27:46 UTC 2009
- Previous message: rpms/beesu/devel .cvsignore, 1.2, 1.3 beesu.spec, 1.1, 1.2 sources, 1.2, 1.3
- Next message: rpms/cylindrix/devel cylindrix-1.0-object-fopen.patch, NONE, 1.1 cylindrix.spec, 1.4, 1.5
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: thl
Update of /cvs/pkgs/rpms/python-crypto/F-10
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv23919
Modified Files:
python-crypto.spec
Added Files:
python-crypto-fix_buffer_overflow.patch
Log Message:
* Fri Feb 13 2009 Thorsten Leemhuis <fedora[AT]leemhuis[DOT]info> - 2.0.1-14
- add patch to fix #485298 / CVE-2009-0544
python-crypto-fix_buffer_overflow.patch:
--- NEW FILE python-crypto-fix_buffer_overflow.patch ---
diff -Naur pycrypto-2.0.1.org/src/ARC2.c pycrypto-2.0.1/src/ARC2.c
--- pycrypto-2.0.1.org/src/ARC2.c 2009-02-13 17:08:30.000000000 +0100
+++ pycrypto-2.0.1/src/ARC2.c 2009-02-13 17:08:47.000000000 +0100
@@ -11,6 +11,7 @@
*/
#include <string.h>
+#include "Python.h"
#define MODULE_NAME ARC2
#define BLOCK_SIZE 8
@@ -146,6 +147,12 @@
We'll hardwire it to 1024. */
#define bits 1024
+ if ((U32)keylength > sizeof(self->xkey)) {
+ PyErr_SetString(PyExc_ValueError,
+ "ARC2 key length must be less than 128 bytes");
+ return;
+ }
+
memcpy(self->xkey, key, keylength);
/* Phase 1: Expand input key to 128 bytes */
Index: python-crypto.spec
===================================================================
RCS file: /cvs/pkgs/rpms/python-crypto/F-10/python-crypto.spec,v
retrieving revision 1.23
retrieving revision 1.24
diff -u -r1.23 -r1.24
--- python-crypto.spec 4 May 2008 18:37:31 -0000 1.23
+++ python-crypto.spec 13 Feb 2009 16:27:15 -0000 1.24
@@ -4,11 +4,14 @@
Summary: Cryptography library for Python
Name: python-crypto
Version: 2.0.1
-Release: 13.1
+Release: 14%{?dist}
License: Public Domain
Group: Development/Libraries
URL: http://www.amk.ca/python/code/crypto.html
Source: http://www.amk.ca/files/python/crypto/pycrypto-2.0.1.tar.gz
+# patch taken from
+# http://gitweb2.dlitz.net/?p=crypto/pycrypto-2.x.git;a=commitdiff;h=d1c4875e1f220652fe7ff8358f56dee3b2aba31b
+Patch0: %{name}-fix_buffer_overflow.patch
Provides: pycrypto = %{version}-%{release}
BuildRequires: python >= 2.2
BuildRequires: python-devel >= 2.2
@@ -24,7 +27,7 @@
%prep
%setup -n pycrypto-%{version} -q
sed -i s:/lib:/%_lib:g setup.py
-
+%patch0 -b .patch0 -p1
%build
CFLAGS="$RPM_OPT_FLAGS" %{__python} setup.py build
@@ -62,6 +65,9 @@
%changelog
+* Fri Feb 13 2009 Thorsten Leemhuis <fedora[AT]leemhuis[DOT]info> - 2.0.1-14
+- add patch to fix #485298 / CVE-2009-0544
+
* Sun May 04 2008 Thorsten Leemhuis <fedora[AT]leemhuis[DOT]info> - 2.0.1-13
- provide pycrypto
- Previous message: rpms/beesu/devel .cvsignore, 1.2, 1.3 beesu.spec, 1.1, 1.2 sources, 1.2, 1.3
- Next message: rpms/cylindrix/devel cylindrix-1.0-object-fopen.patch, NONE, 1.1 cylindrix.spec, 1.4, 1.5
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the scm-commits
mailing list