mirror of
https://github.com/openembedded/meta-openembedded.git
synced 2026-07-16 04:17:25 +00:00
fcgi: patch CVE-2025-23016
Pick commit referencing this CVE. Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
This commit is contained in:
committed by
Gyorgy Sarvari
parent
1e6dbd183b
commit
6e86e0dd54
@@ -0,0 +1,40 @@
|
|||||||
|
From b0eabcaf4d4f371514891a52115c746815c2ff15 Mon Sep 17 00:00:00 2001
|
||||||
|
From: Pycatchown <39068868+Pycatchown@users.noreply.github.com>
|
||||||
|
Date: Tue, 8 Apr 2025 17:39:30 +0200
|
||||||
|
Subject: [PATCH] Update fcgiapp.c
|
||||||
|
|
||||||
|
Fixing an integer overflow (CVE-2025-23016)
|
||||||
|
|
||||||
|
CVE: CVE-2025-23016
|
||||||
|
Upstream-Status: Backport [https://github.com/FastCGI-Archives/fcgi2/commit/b0eabcaf4d4f371514891a52115c746815c2ff15]
|
||||||
|
Signed-off-by: Peter Marko <peter.marko@siemens.com>
|
||||||
|
---
|
||||||
|
libfcgi/fcgiapp.c | 8 ++++++++
|
||||||
|
1 file changed, 8 insertions(+)
|
||||||
|
|
||||||
|
diff --git a/libfcgi/fcgiapp.c b/libfcgi/fcgiapp.c
|
||||||
|
index 4ffe318..99c3630 100644
|
||||||
|
--- a/libfcgi/fcgiapp.c
|
||||||
|
+++ b/libfcgi/fcgiapp.c
|
||||||
|
@@ -1173,6 +1173,10 @@ static int ReadParams(Params *paramsPtr, FCGX_Stream *stream)
|
||||||
|
}
|
||||||
|
nameLen = ((nameLen & 0x7f) << 24) + (lenBuff[0] << 16)
|
||||||
|
+ (lenBuff[1] << 8) + lenBuff[2];
|
||||||
|
+ if (nameLen >= INT_MAX) {
|
||||||
|
+ SetError(stream, FCGX_PARAMS_ERROR);
|
||||||
|
+ return -1;
|
||||||
|
+ }
|
||||||
|
}
|
||||||
|
if((valueLen = FCGX_GetChar(stream)) == EOF) {
|
||||||
|
SetError(stream, FCGX_PARAMS_ERROR);
|
||||||
|
@@ -1185,6 +1189,10 @@ static int ReadParams(Params *paramsPtr, FCGX_Stream *stream)
|
||||||
|
}
|
||||||
|
valueLen = ((valueLen & 0x7f) << 24) + (lenBuff[0] << 16)
|
||||||
|
+ (lenBuff[1] << 8) + lenBuff[2];
|
||||||
|
+ if (valueLen >= INT_MAX) {
|
||||||
|
+ SetError(stream, FCGX_PARAMS_ERROR);
|
||||||
|
+ return -1;
|
||||||
|
+ }
|
||||||
|
}
|
||||||
|
/*
|
||||||
|
* nameLen and valueLen are now valid; read the name and value
|
||||||
@@ -7,6 +7,7 @@ SRCREV = "382aa2b0d53a87c27f2f647dfaf670375ba0b85f"
|
|||||||
PV = "2.4.2"
|
PV = "2.4.2"
|
||||||
|
|
||||||
SRC_URI = "git://github.com/FastCGI-Archives/fcgi2.git;protocol=https;branch=master \
|
SRC_URI = "git://github.com/FastCGI-Archives/fcgi2.git;protocol=https;branch=master \
|
||||||
|
file://CVE-2025-23016.patch \
|
||||||
"
|
"
|
||||||
|
|
||||||
S = "${WORKDIR}/git"
|
S = "${WORKDIR}/git"
|
||||||
|
|||||||
Reference in New Issue
Block a user