!39 Fix CVE-2022-23094

From: @starlet-dx Reviewed-by: @zhuchunyi Signed-off-by: @zhuchunyi
2022-06-29 03:23:06 +00:00 · 2022-06-29 03:23:06 +00:00 · 1065d04785
commit 1065d04785
parent c404a642a7 7cfda6f34f
2 changed files with 33 additions and 2 deletions
--- a/CVE-2022-23094.patch
+++ b/CVE-2022-23094.patch
@ -0,0 +1,26 @@
+diff --git a/programs/pluto/ikev1.c b/programs/pluto/ikev1.c
+index 9f4847874d..f7413f3594 100644
+--- a/programs/pluto/ikev1.c
+++ b/programs/pluto/ikev1.c
+@@ -2103,7 +2103,9 @@ void process_packet_tail(struct msg_digest *md)
+ 					diag_t d = pbs_in_struct(&md->message_pbs, &isakmp_ignore_desc,
+ 								 &pd->payload, sizeof(pd->payload), &pd->pbs);
+ 					if (d != NULL) {
+-						llog_diag(RC_LOG, st->st_logger, &d, "%s", "");
+						llog_diag(RC_LOG,
+							st != NULL ? st->st_logger : md->md_logger,
+							&d, "%s", "");
+ 						LOG_PACKET(RC_LOG_SERIOUS,
+ 							   "%smalformed payload in packet",
+ 							   excuse);
+@@ -2172,7 +2174,9 @@ void process_packet_tail(struct msg_digest *md)
+ 						 &pd->payload, sizeof(pd->payload),
+ 						 &pd->pbs);
+ 			if (d != NULL) {
+-				llog_diag(RC_LOG, st->st_logger, &d, "%s", "");
+				llog_diag(RC_LOG,
+					st != NULL ? st->st_logger : md->md_logger,
+					&d, "%s", "");
+ 				LOG_PACKET(RC_LOG_SERIOUS,
+ 					   "%smalformed payload in packet",
+ 					   excuse);
--- a/libreswan.spec
+++ b/libreswan.spec
@ -26,7 +26,7 @@
 Name: libreswan
 Summary: IKE implementation for IPsec with IKEv1 and IKEv2 support
 Version: 4.5
-Release: 1
+Release: 2
 License: GPLv2
 Url: https://libreswan.org/
 Source0: https://download.libreswan.org/%{name}-%{version}.tar.gz
@ -34,6 +34,8 @@ Source1: https://download.libreswan.org/cavs/ikev1_dsa.fax.bz2
 Source2: https://download.libreswan.org/cavs/ikev1_psk.fax.bz2
 Source3: https://download.libreswan.org/cavs/ikev2.fax.bz2
 Source4: openeuler-libreswan-sysctl.conf
+#https://libreswan.org/security/CVE-2022-23094/
+Patch0:  CVE-2022-23094.patch


 BuildRequires: audit-libs-devel
@ -92,7 +94,7 @@ Summary:    Help documents for libreswan
 Man pages and other related help documents for libreswan.

 %prep
-%setup -q -n libreswan-%{version}%{?prever}
+%autosetup -n libreswan-%{version}%{?prever} -p1

 sed -i "s/-lfreebl //" mk/config.mk

@ -188,6 +190,9 @@ certutil -N -d sql:$tmpdir --empty-password
 %attr(0644,root,root) %doc %{_mandir}/*/*

 %changelog
+* Tue Jun 28 2022 yaoxin <yaoxin30@h-partners.com> - 4.5-2
+- Fix CVE-2022-23094
+
 * Mon Apr 18 2022 yangping <yangping69@h-partners.com> - 4.5-1
 - Update to 4.5