[icu/f15] Resolves: rhbz#766542 CVE-2011-4599 Stack-based buffer overflow
Eike Rathke
erack at fedoraproject.org
Tue Dec 13 21:08:37 UTC 2011
commit e830c6944d317e3c9f9d9085c1f9fdf530f858bc
Author: Eike Rathke <erack at redhat.com>
Date: Tue Dec 13 22:07:22 2011 +0100
Resolves: rhbz#766542 CVE-2011-4599 Stack-based buffer overflow
icu.8984.CVE-2011-4599.patch | 20 ++++++++++++++++++++
icu.spec | 8 +++++++-
2 files changed, 27 insertions(+), 1 deletions(-)
---
diff --git a/icu.8984.CVE-2011-4599.patch b/icu.8984.CVE-2011-4599.patch
new file mode 100644
index 0000000..fc5fd63
--- /dev/null
+++ b/icu.8984.CVE-2011-4599.patch
@@ -0,0 +1,20 @@
+--- icu/source/common/uloc.c
++++ icu/source/common/uloc.c
+@@ -1797,7 +1797,7 @@
+ int32_t variantLen = _deleteVariant(variant, uprv_min(variantSize, (nameCapacity-len)), variantToCompare, n);
+ len -= variantLen;
+ if (variantLen > 0) {
+- if (name[len-1] == '_') { /* delete trailing '_' */
++ if (len > 0 && name[len-1] == '_') { /* delete trailing '_' */
+ --len;
+ }
+ addKeyword = VARIANT_MAP[j].keyword;
+@@ -1805,7 +1805,7 @@
+ break;
+ }
+ }
+- if (name[len-1] == '_') { /* delete trailing '_' */
++ if (len > 0 && len <= nameCapacity && name[len-1] == '_') { /* delete trailing '_' */
+ --len;
+ }
+ }
diff --git a/icu.spec b/icu.spec
index 8592e5c..88c3dd1 100644
--- a/icu.spec
+++ b/icu.spec
@@ -1,6 +1,6 @@
Name: icu
Version: 4.4.2
-Release: 8%{?dist}
+Release: 9%{?dist}
Summary: International Components for Unicode
Group: Development/Tools
License: MIT and UCD and Public Domain
@@ -20,6 +20,7 @@ Patch6: icu.8011.buildfix.patch
Patch7: icu.8198.revert.icu5431.patch
Patch8: icu.8320.freeserif.crash.patch
Patch9: icu.7664.armasm.patch
+Patch10: icu.8984.CVE-2011-4599.patch
%description
Tools and utilities for developing with icu.
@@ -68,6 +69,7 @@ BuildArch: noarch
%patch7 -p2 -R -b .icu8198.revert.icu5431.patch
%patch8 -p1 -b .icu8320.freeserif.crash.patch
%patch9 -p1 -b .icu7664.armasm.patch
+%patch10 -p1 -b .icu8984.CVE-2011-4599.patch
%build
cd source
@@ -150,6 +152,10 @@ rm -rf $RPM_BUILD_ROOT
%doc source/__docs/%{name}/html/*
%changelog
+* Tue Dec 13 2011 Eike Rathke <erack at redhat.com> - 4.4.2-9
+- Resolves: rhbz#766542 CVE-2011-4599 Stack-based buffer overflow
+- add icu.8984.CVE-2011-4599.patch
+
* Thu Aug 25 2011 Caolán McNamara <caolanm at redhat.com> - 4.4.2-8
- Resolves: rhbz#733162 F-14 only arm workaround
More information about the scm-commits
mailing list