Package init
This commit is contained in:
dogsheng
parent
32143e455a
commit
1be23c1010
@ -1,7 +1,17 @@
|
|||||||
diff -Nur old-libssh2-1.9.0/src/packet.c libssh2-1.9.0/src/packet.c
|
From ae6b894e43dabed9a93c1b5e47ab564de3f00d6c Mon Sep 17 00:00:00 2001
|
||||||
--- old-libssh2-1.9.0/src/packet.c 2019-12-24 03:06:34.642095230 -0500
|
From: Will Cosgrove <will@panic.com>
|
||||||
+++ libssh2-1.9.0/src/packet.c 2019-12-24 03:16:50.554095230 -0500
|
Date: Sat, 21 Dec 2019 19:31:58 +0800
|
||||||
@@ -419,8 +419,8 @@
|
Subject: [PATCH] packet.c: improve message parsing (#402)
|
||||||
|
|
||||||
|
---
|
||||||
|
src/packet.c | 66 +++++++++++++++++++++++++-----------------------------------
|
||||||
|
1 file changed, 27 insertions(+), 39 deletions(-)
|
||||||
|
|
||||||
|
diff --git a/src/packet.c b/src/packet.c
|
||||||
|
index 38ab629..52eed32 100644
|
||||||
|
--- a/src/packet.c
|
||||||
|
+++ b/src/packet.c
|
||||||
|
@@ -419,8 +419,8 @@ _libssh2_packet_add(LIBSSH2_SESSION * session, unsigned char *data,
|
||||||
size_t datalen, int macstate)
|
size_t datalen, int macstate)
|
||||||
{
|
{
|
||||||
int rc = 0;
|
int rc = 0;
|
||||||
@ -12,7 +22,7 @@ diff -Nur old-libssh2-1.9.0/src/packet.c libssh2-1.9.0/src/packet.c
|
|||||||
size_t message_len = 0;
|
size_t message_len = 0;
|
||||||
size_t language_len = 0;
|
size_t language_len = 0;
|
||||||
LIBSSH2_CHANNEL *channelp = NULL;
|
LIBSSH2_CHANNEL *channelp = NULL;
|
||||||
@@ -472,33 +472,23 @@
|
@@ -472,32 +472,21 @@ _libssh2_packet_add(LIBSSH2_SESSION * session, unsigned char *data,
|
||||||
|
|
||||||
case SSH_MSG_DISCONNECT:
|
case SSH_MSG_DISCONNECT:
|
||||||
if(datalen >= 5) {
|
if(datalen >= 5) {
|
||||||
@ -23,14 +33,13 @@ diff -Nur old-libssh2-1.9.0/src/packet.c libssh2-1.9.0/src/packet.c
|
|||||||
+ buf.dataptr = buf.data;
|
+ buf.dataptr = buf.data;
|
||||||
+ buf.len = datalen;
|
+ buf.len = datalen;
|
||||||
+ buf.dataptr++; /* advance past type */
|
+ buf.dataptr++; /* advance past type */
|
||||||
+
|
|
||||||
|
- if(datalen >= 9) {
|
||||||
|
- message_len = _libssh2_ntohu32(data + 5);
|
||||||
+ _libssh2_get_u32(&buf, &reason);
|
+ _libssh2_get_u32(&buf, &reason);
|
||||||
+ _libssh2_get_string(&buf, &message, &message_len);
|
+ _libssh2_get_string(&buf, &message, &message_len);
|
||||||
+ _libssh2_get_string(&buf, &language, &language_len);
|
+ _libssh2_get_string(&buf, &language, &language_len);
|
||||||
|
|
||||||
- if(datalen >= 9) {
|
|
||||||
- message_len = _libssh2_ntohu32(data + 5);
|
|
||||||
-
|
|
||||||
- if(message_len < datalen-13) {
|
- if(message_len < datalen-13) {
|
||||||
- /* 9 = packet_type(1) + reason(4) + message_len(4) */
|
- /* 9 = packet_type(1) + reason(4) + message_len(4) */
|
||||||
- message = (char *) data + 9;
|
- message = (char *) data + 9;
|
||||||
@ -56,21 +65,14 @@ diff -Nur old-libssh2-1.9.0/src/packet.c libssh2-1.9.0/src/packet.c
|
|||||||
+ message_len, (const char *)language,
|
+ message_len, (const char *)language,
|
||||||
+ language_len);
|
+ language_len);
|
||||||
}
|
}
|
||||||
+
|
|
||||||
_libssh2_debug(session, LIBSSH2_TRACE_TRANS,
|
_libssh2_debug(session, LIBSSH2_TRACE_TRANS,
|
||||||
"Disconnect(%d): %s(%s)", reason,
|
"Disconnect(%d): %s(%s)", reason,
|
||||||
message, language);
|
@@ -539,22 +528,21 @@ _libssh2_packet_add(LIBSSH2_SESSION * session, unsigned char *data,
|
||||||
@@ -539,22 +529,21 @@
|
|
||||||
int always_display = data[1];
|
int always_display = data[1];
|
||||||
|
|
||||||
if(datalen >= 6) {
|
if(datalen >= 6) {
|
||||||
- message_len = _libssh2_ntohu32(data + 2);
|
- message_len = _libssh2_ntohu32(data + 2);
|
||||||
+ struct string_buf buf;
|
-
|
||||||
+ buf.data = (unsigned char *)data;
|
|
||||||
+ buf.dataptr = buf.data;
|
|
||||||
+ buf.len = datalen;
|
|
||||||
+ buf.dataptr += 2; /* advance past type & always display */
|
|
||||||
|
|
||||||
- if(message_len <= (datalen - 10)) {
|
- if(message_len <= (datalen - 10)) {
|
||||||
- /* 6 = packet_type(1) + display(1) + message_len(4) */
|
- /* 6 = packet_type(1) + display(1) + message_len(4) */
|
||||||
- message = (char *) data + 6;
|
- message = (char *) data + 6;
|
||||||
@ -80,6 +82,12 @@ diff -Nur old-libssh2-1.9.0/src/packet.c libssh2-1.9.0/src/packet.c
|
|||||||
- if(language_len <= (datalen - 10 - message_len))
|
- if(language_len <= (datalen - 10 - message_len))
|
||||||
- language = (char *) data + 10 + message_len;
|
- language = (char *) data + 10 + message_len;
|
||||||
- }
|
- }
|
||||||
|
+ struct string_buf buf;
|
||||||
|
+ buf.data = (unsigned char *)data;
|
||||||
|
+ buf.dataptr = buf.data;
|
||||||
|
+ buf.len = datalen;
|
||||||
|
+ buf.dataptr += 2; /* advance past type & always display */
|
||||||
|
+
|
||||||
+ _libssh2_get_string(&buf, &message, &message_len);
|
+ _libssh2_get_string(&buf, &message, &message_len);
|
||||||
+ _libssh2_get_string(&buf, &language, &language_len);
|
+ _libssh2_get_string(&buf, &language, &language_len);
|
||||||
}
|
}
|
||||||
@ -94,7 +102,7 @@ diff -Nur old-libssh2-1.9.0/src/packet.c libssh2-1.9.0/src/packet.c
|
|||||||
}
|
}
|
||||||
}
|
}
|
||||||
/*
|
/*
|
||||||
@@ -579,7 +568,7 @@
|
@@ -579,7 +567,7 @@ _libssh2_packet_add(LIBSSH2_SESSION * session, unsigned char *data,
|
||||||
uint32_t len = 0;
|
uint32_t len = 0;
|
||||||
unsigned char want_reply = 0;
|
unsigned char want_reply = 0;
|
||||||
len = _libssh2_ntohu32(data + 1);
|
len = _libssh2_ntohu32(data + 1);
|
||||||
@ -103,3 +111,6 @@ diff -Nur old-libssh2-1.9.0/src/packet.c libssh2-1.9.0/src/packet.c
|
|||||||
want_reply = data[5 + len];
|
want_reply = data[5 + len];
|
||||||
_libssh2_debug(session,
|
_libssh2_debug(session,
|
||||||
LIBSSH2_TRACE_CONN,
|
LIBSSH2_TRACE_CONN,
|
||||||
|
--
|
||||||
|
1.8.3.1
|
||||||
|
|
||||||
@ -0,0 +1,28 @@
|
|||||||
|
From c2304e1ed951644bbe559348030bbb2844b348de Mon Sep 17 00:00:00 2001
|
||||||
|
From: Will Cosgrove <will@panic.com>
|
||||||
|
Date: Sat, 21 Dec 2019 19:35:22 +0800
|
||||||
|
Subject: [PATCH] misc.c: _libssh2_ntohu32 cast bit shifting (#401)
|
||||||
|
|
||||||
|
---
|
||||||
|
src/misc.c | 5 ++++-
|
||||||
|
1 file changed, 4 insertions(+), 1 deletion(-)
|
||||||
|
|
||||||
|
diff --git a/src/misc.c b/src/misc.c
|
||||||
|
index bd084c8..b307260 100644
|
||||||
|
--- a/src/misc.c
|
||||||
|
+++ b/src/misc.c
|
||||||
|
@@ -196,7 +196,10 @@ _libssh2_send(libssh2_socket_t sock, const void *buffer, size_t length,
|
||||||
|
unsigned int
|
||||||
|
_libssh2_ntohu32(const unsigned char *buf)
|
||||||
|
{
|
||||||
|
- return (buf[0] << 24) | (buf[1] << 16) | (buf[2] << 8) | buf[3];
|
||||||
|
+ return (((unsigned int)buf[0] << 24)
|
||||||
|
+ | ((unsigned int)buf[1] << 16)
|
||||||
|
+ | ((unsigned int)buf[2] << 8)
|
||||||
|
+ | ((unsigned int)buf[3]));
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
|
--
|
||||||
|
1.8.3.1
|
||||||
|
|
||||||
13
libssh2.spec
13
libssh2.spec
@ -6,7 +6,8 @@ License: BSD
|
|||||||
URL: https://www.libssh2.org/
|
URL: https://www.libssh2.org/
|
||||||
Source0: https://libssh2.org/download/libssh2-%{version}.tar.gz
|
Source0: https://libssh2.org/download/libssh2-%{version}.tar.gz
|
||||||
|
|
||||||
Patch6000: CVE-2019-17498.patch
|
Patch9000: 0001-libssh2-CVE-2019-17498.patch
|
||||||
|
Patch9001: 0001-libssh2-misc.c-_libssh2_ntohu32-cast-bit-shifting-40.patch
|
||||||
|
|
||||||
BuildRequires: coreutils findutils /usr/bin/man zlib-devel
|
BuildRequires: coreutils findutils /usr/bin/man zlib-devel
|
||||||
BuildRequires: gcc make sed openssl-devel > 1:1.0.1 openssh-server
|
BuildRequires: gcc make sed openssl-devel > 1:1.0.1 openssh-server
|
||||||
@ -86,11 +87,11 @@ LC_ALL=en_US.UTF-8 make -C tests check
|
|||||||
%{_mandir}/man3/libssh2_*.3*
|
%{_mandir}/man3/libssh2_*.3*
|
||||||
|
|
||||||
%changelog
|
%changelog
|
||||||
* Tue Dec 24 2019 zhouyihang<zhouyihang1@huawei.com> - 1.9.0-2
|
* Sat Dec 21 2019 openEuler Buildteam <buildteam@openeuler.org> - 1.9.0-2
|
||||||
- Type:cves
|
- Type:bugfix
|
||||||
- ID:CVE-2019-17498
|
- Id:NA
|
||||||
- SUG:restart
|
- SUG:NA
|
||||||
- DESC: fix CVE-2019-17498
|
- DESC: add patches
|
||||||
|
|
||||||
* Sun Sep 15 2019 openEuler Buildteam <buildteam@openeuler.org> - 1.9.0-1
|
* Sun Sep 15 2019 openEuler Buildteam <buildteam@openeuler.org> - 1.9.0-1
|
||||||
- Package init
|
- Package init
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user