rpms/wpa_supplicant/devel wpa_supplicant-0.6.3-fix-dbus-use-after-free.patch, NONE, 1.1 wpa_supplicant.spec, 1.42, 1.43
Daniel Williams (dcbw)
fedora-extras-commits at redhat.com
Tue Mar 4 15:11:38 UTC 2008
- Previous message (by thread): rpms/pigment/devel .cvsignore, 1.5, 1.6 pigment.spec, 1.6, 1.7 sources, 1.5, 1.6
- Next message (by thread): rpms/system-config-services/devel .cvsignore, 1.50, 1.51 sources, 1.62, 1.63 system-config-services.spec, 1.61, 1.62
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: dcbw
Update of /cvs/extras/rpms/wpa_supplicant/devel
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv19713
Modified Files:
wpa_supplicant.spec
Added Files:
wpa_supplicant-0.6.3-fix-dbus-use-after-free.patch
Log Message:
* Tue Mar 4 2008 Dan Williams <dcbw at redhat.com> - 1:0.6.3-2
- Fix a potential use-after-free in the D-Bus byte array demarshalling code
wpa_supplicant-0.6.3-fix-dbus-use-after-free.patch:
--- NEW FILE wpa_supplicant-0.6.3-fix-dbus-use-after-free.patch ---
diff --git a/wpa_supplicant/dbus_dict_helpers.c b/wpa_supplicant/dbus_dict_helpers.c
index 1232ab2..d810979 100644
--- a/wpa_supplicant/dbus_dict_helpers.c
+++ b/wpa_supplicant/dbus_dict_helpers.c
@@ -674,7 +674,7 @@ static dbus_bool_t _wpa_dbus_dict_entry_get_byte_array(
/* Zero-length arrays are valid. */
if (entry->array_len == 0) {
free(entry->bytearray_value);
- entry->strarray_value = NULL;
+ entry->bytearray_value = NULL;
}
success = TRUE;
Index: wpa_supplicant.spec
===================================================================
RCS file: /cvs/extras/rpms/wpa_supplicant/devel/wpa_supplicant.spec,v
retrieving revision 1.42
retrieving revision 1.43
diff -u -r1.42 -r1.43
--- wpa_supplicant.spec 3 Mar 2008 17:20:11 -0000 1.42
+++ wpa_supplicant.spec 4 Mar 2008 15:11:01 -0000 1.43
@@ -2,7 +2,7 @@
Name: wpa_supplicant
Epoch: 1
Version: 0.6.3
-Release: 1%{?dist}
+Release: 2%{?dist}
License: BSD
Group: System Environment/Base
Source0: http://hostap.epitest.fi/releases/%{name}-%{version}.tar.gz
@@ -19,6 +19,7 @@
Patch3: wpa_supplicant-0.5.7-flush-debug-output.patch
Patch4: wpa_supplicant-0.5.7-use-IW_ENCODE_TEMP.patch
Patch5: wpa_supplicant-0.5.10-dbus-service-file.patch
+Patch6: wpa_supplicant-0.6.3-fix-dbus-use-after-free.patch
URL: http://w1.fi/wpa_supplicant/
BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)
@@ -52,6 +53,7 @@
%patch3 -p1 -b .flush-debug-output
%patch4 -p1 -b .use-IW_ENCODE_TEMP
%patch5 -p1 -b .dbus-service-file
+%patch6 -p1 -b .use-after-free
%build
pushd src
@@ -145,6 +147,9 @@
%{_bindir}/wpa_gui
%changelog
+* Tue Mar 4 2008 Dan Williams <dcbw at redhat.com> - 1:0.6.3-2
+- Fix a potential use-after-free in the D-Bus byte array demarshalling code
+
* Mon Mar 3 2008 Dan Williams <dcbw at redhat.com> - 1:0.6.3-1
- Update to latest development release; remove upstreamed patches
- Previous message (by thread): rpms/pigment/devel .cvsignore, 1.5, 1.6 pigment.spec, 1.6, 1.7 sources, 1.5, 1.6
- Next message (by thread): rpms/system-config-services/devel .cvsignore, 1.50, 1.51 sources, 1.62, 1.63 system-config-services.spec, 1.61, 1.62
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the fedora-extras-commits
mailing list