diff options
| author | Vsevolod Stakhov <vsevolod@FreeBSD.org> | 2017-11-30 18:48:13 +0000 |
|---|---|---|
| committer | Vsevolod Stakhov <vsevolod@FreeBSD.org> | 2017-11-30 18:48:13 +0000 |
| commit | 502758a841b67394783cf3d7e69abed40497e9f5 (patch) | |
| tree | 84f4ca4a1ac54f4b36593934f12495c4cf4512a5 /mail/exim/files | |
| parent | Document CVE-2017-16944 in Exim (diff) | |
- Update to 4.89.1
MFH: 2017Q4
Security: 75dd622c-d5fd-11e7-b9fe-c13eb7bcbf4f
Notes
Notes:
svn path=/head/; revision=455220
Diffstat (limited to 'mail/exim/files')
| -rw-r--r-- | mail/exim/files/patch-CVE-2017-1000369 | 37 | ||||
| -rw-r--r-- | mail/exim/files/patch-CVE-2017-16943 | 35 |
2 files changed, 0 insertions, 72 deletions
diff --git a/mail/exim/files/patch-CVE-2017-1000369 b/mail/exim/files/patch-CVE-2017-1000369 deleted file mode 100644 index 77bbb25ed818..000000000000 --- a/mail/exim/files/patch-CVE-2017-1000369 +++ /dev/null @@ -1,37 +0,0 @@ -diff --git a/src/src/exim.c b/src/src/exim.c -index 67583e58..88e11977 100644 ---- src/exim.c -+++ src/exim.c -@@ -3106,7 +3106,14 @@ for (i = 1; i < argc; i++) - - /* -oMr: Received protocol */ - -- else if (Ustrcmp(argrest, "Mr") == 0) received_protocol = argv[++i]; -+ else if (Ustrcmp(argrest, "Mr") == 0) -+ -+ if (received_protocol) -+ { -+ fprintf(stderr, "received_protocol is set already\n"); -+ exit(EXIT_FAILURE); -+ } -+ else received_protocol = argv[++i]; - - /* -oMs: Set sender host name */ - -@@ -3202,7 +3209,15 @@ for (i = 1; i < argc; i++) - - if (*argrest != 0) - { -- uschar *hn = Ustrchr(argrest, ':'); -+ uschar *hn; -+ -+ if (received_protocol) -+ { -+ fprintf(stderr, "received_protocol is set already\n"); -+ exit(EXIT_FAILURE); -+ } -+ -+ hn = Ustrchr(argrest, ':'); - if (hn == NULL) - { - received_protocol = argrest; diff --git a/mail/exim/files/patch-CVE-2017-16943 b/mail/exim/files/patch-CVE-2017-16943 deleted file mode 100644 index 684b69add440..000000000000 --- a/mail/exim/files/patch-CVE-2017-16943 +++ /dev/null @@ -1,35 +0,0 @@ -From: Jeremy Harris <jgh146exb@wizmail.org> -Date: Fri, 24 Nov 2017 20:22:33 +0000 (+0000) -Subject: Avoid release of store if there have been later allocations. Bug 2199 -X-Git-Url: https://git.exim.org/exim.git/commitdiff_plain/4e6ae6235c68de243b1c2419027472d7659aa2b4 - -Avoid release of store if there have been later allocations. Bug 2199 ---- - -diff --git a/src/src/receive.c b/src/src/receive.c -index e7e518a..d9b5001 100644 ---- src/receive.c.orig -+++ src/receive.c -@@ -1810,8 +1810,8 @@ for (;;) - (and sometimes lunatic messages can have ones that are 100s of K long) we - call store_release() for strings that have been copied - if the string is at - the start of a block (and therefore the only thing in it, because we aren't -- doing any other gets), the block gets freed. We can only do this because we -- know there are no other calls to store_get() going on. */ -+ doing any other gets), the block gets freed. We can only do this release if -+ there were no allocations since the once that we want to free. */ - - if (ptr >= header_size - 4) - { -@@ -1820,9 +1820,10 @@ for (;;) - header_size *= 2; - if (!store_extend(next->text, oldsize, header_size)) - { -+ BOOL release_ok = store_last_get[store_pool] == next->text; - uschar *newtext = store_get(header_size); - memcpy(newtext, next->text, ptr); -- store_release(next->text); -+ if (release_ok) store_release(next->text); - next->text = newtext; - } - } |