Fix CVE-2023-23009

2023-03-07 11:16:11 +08:00 · 2023-03-07 11:16:11 +08:00 · aadc9420b1
commit aadc9420b1
parent 1065d04785
2 changed files with 22 additions and 1 deletions
--- a/CVE-2023-23009.patch
+++ b/CVE-2023-23009.patch
@ -0,0 +1,16 @@
 diff --git a/programs/pluto/ikev2_ts.c b/programs/pluto/ikev2_ts.c
 index 3f7519ca38..f06c40ba46 100644
 --- a/programs/pluto/ikev2_ts.c
 +++ b/programs/pluto/ikev2_ts.c
@@ -437,6 +437,11 @@ static bool v2_parse_tss(struct payload_digest *const ts_pd,
 		d = pbs_in_struct(&ts_pd->pbs, &ikev2_ts_header_desc,
 			  &ts_h, sizeof(ts_h), &ts_body_pbs);
 +		if (d != NULL) {
 +			llog_diag(RC_LOG, logger, &d, "%s", "");
 +			return false;
 +		}
 +
 		switch (ts_h.isath_type) {
 		case IKEv2_TS_IPV4_ADDR_RANGE:
 		case IKEv2_TS_IPV6_ADDR_RANGE:
--- a/libreswan.spec
+++ b/libreswan.spec
@ -26,7 +26,7 @@
 Name: libreswan
 Summary: IKE implementation for IPsec with IKEv1 and IKEv2 support
 Version: 4.5
-Release: 2
+Release: 3
 License: GPLv2
 Url: https://libreswan.org/
 Source0: https://download.libreswan.org/%{name}-%{version}.tar.gz
@ -36,6 +36,8 @@ Source3: https://download.libreswan.org/cavs/ikev2.fax.bz2
 Source4: openeuler-libreswan-sysctl.conf
 #https://libreswan.org/security/CVE-2022-23094/
 Patch0:  CVE-2022-23094.patch
 #https://libreswan.org/security/CVE-2023-23009/
 Patch1:  CVE-2023-23009.patch
 BuildRequires: audit-libs-devel
@ -190,6 +192,9 @@ certutil -N -d sql:$tmpdir --empty-password
 %attr(0644,root,root) %doc %{_mandir}/*/*
 %changelog
 * Tue Mar 07 2023 yaoxin <yaoxin30@h-partners.com> - 4.5-3
 - Fix CVE-2023-23009
 * Tue Jun 28 2022 yaoxin <yaoxin30@h-partners.com> - 4.5-2
 - Fix CVE-2022-23094