Go to:
Gentoo Home
Documentation
Forums
Lists
Bugs
Planet
Store
Wiki
Get Gentoo!
Gentoo's Bugzilla – Attachment 136006 Details for
Bug 199195
net-print/cups < 1.2.12-r3 SSL DoS due to fix for CVE-2007-0720 (CVE-2007-4045)
Home
|
New
–
[Ex]
|
Browse
|
Search
|
Privacy Policy
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
cups-1.2.4-CVE-2007-4045.patch
cups-1.2.4-CVE-2007-4045.patch (text/plain), 1.70 KB, created by
Robert Buchholz (RETIRED)
on 2007-11-15 00:00:51 UTC
(
hide
)
Description:
cups-1.2.4-CVE-2007-4045.patch
Filename:
MIME Type:
Creator:
Robert Buchholz (RETIRED)
Created:
2007-11-15 00:00:51 UTC
Size:
1.70 KB
patch
obsolete
>diff -up cups-1.2.4/scheduler/client.c.CVE-2007-4045 cups-1.2.4/scheduler/client.c >--- cups-1.2.4/scheduler/client.c.CVE-2007-4045 2007-10-30 09:51:04.000000000 +0000 >+++ cups-1.2.4/scheduler/client.c 2007-10-30 10:07:10.000000000 +0000 >@@ -105,6 +105,25 @@ static int write_file(cupsd_client_t *c > struct stat *filestats); > > >+void >+_cupsdFixClientsBIO(void) >+{ >+#ifdef HAVE_LIBSSL >+ cupsd_client_t *c; >+ BIO *bio; >+ cupsArraySave (Clients); >+ for (c = (cupsd_client_t *)cupsArrayFirst(Clients); >+ c; >+ c = (cupsd_client_t *)cupsArrayNext(Clients)) >+ { >+ bio = SSL_get_wbio(c->http.tls); >+ BIO_ctrl(bio, BIO_C_SET_FILE_PTR, 0, (char *)HTTP(c)); >+ } >+ cupsArrayRestore (Clients); >+#endif >+} >+ >+ > /* > * 'cupsdAcceptClient()' - Accept a new client. > */ >@@ -438,6 +457,7 @@ cupsdAcceptClient(cupsd_listener_t *lis) > } > > cupsArrayAdd(Clients, con); >+ _cupsdFixClientsBIO(); > > cupsdLogMessage(CUPSD_LOG_DEBUG2, > "cupsdAcceptClient: %d connected to server on %s:%d", >@@ -729,6 +749,7 @@ cupsdCloseClient(cupsd_client_t *con) /* > */ > > cupsArrayRemove(Clients, con); >+ _cupsdFixClientsBIO(); > > free(con); > } >diff -up cups-1.2.4/scheduler/main.c.CVE-2007-4045 cups-1.2.4/scheduler/main.c >--- cups-1.2.4/scheduler/main.c.CVE-2007-4045 2007-10-30 09:51:04.000000000 +0000 >+++ cups-1.2.4/scheduler/main.c 2007-10-30 09:51:05.000000000 +0000 >@@ -948,7 +948,7 @@ main(int argc, /* I - Number of comm > * Write data as needed... > */ > >- if (con->pipe_pid && FD_ISSET(con->file, input)) >+ if (con->pipe_pid && con->file >= 0 && FD_ISSET(con->file, input)) > { > /* > * Keep track of pending input from the file/pipe separately
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=136006">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 199195
: 136006 |
136007
