gitlab
/
omnibus-gitlab
mirror of https://gitlab.com/gitlab-org/omnibus-gitlab.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Patch bzip2 against CVE-2016-3189

This commit is contained in:
Balasankar "Balu" C 2018-04-24 18:01:27 +05:30
parent e9362d4ff7
commit 552730bfa3
2 changed files with 13 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
config/patches/bzip2/CVE-2016-3189.patch Normal file
View File

@ -0,0 +1,12 @@
diff --git a/bzip2recover.c b/bzip2recover.c
index f9de049..252c1b7 100644
--- a/bzip2recover.c
+++ b/bzip2recover.c
@@ -457,6 +457,7 @@ Int32 main ( Int32 argc, Char** argv )
bsPutUChar ( bsWr, 0x50 ); bsPutUChar ( bsWr, 0x90 );
bsPutUInt32 ( bsWr, blockCRC );
bsClose ( bsWr );
+ outFile = NULL;
}
if (wrBlock >= rbCtr) break;
wrBlock++;

1
config/software/bzip2.rb
View File

@ -44,6 +44,7 @@ build do
patch source: 'makefile_take_env_vars.patch', env: env
patch source: 'soname_install_dir.patch', env: env if mac_os_x?
patch source: 'CVE-2016-3189.patch', env: env
make args.to_s, env: env
make "#{args} -f Makefile-libbz2_so", env: env