Hello community, here is the log from the commit of package squid for openSUSE:11.3 checked in at Thu Dec 22 15:32:33 CET 2011. -------- --- old-versions/11.3/all/squid/squid.changes 2009-11-03 20:22:42.000000000 +0100 +++ 11.3/squid/squid.changes 2011-12-21 15:54:02.000000000 +0100 @@ -1,0 +2,6 @@ +Wed Dec 21 15:53:44 CET 2011 - draht@suse.de + +- squid-2.7.STABLE5-bnc587375-CVE-2010-0639.patch fixes remote + dos via NULL ptr deref on HTCP. [bnc#587375] + +------------------------------------------------------------------- Package does not exist at destination yet. Using Fallback old-versions/11.3/all/squid Destination is old-versions/11.3/UPDATES/all/squid calling whatdependson for 11.3-i586 Old: ---- 12488.patch New: ---- squid-2.7.STABLE5-bnc587375-CVE-2010-0639.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ squid.spec ++++++ --- /var/tmp/diff_new_pack.yV7cpJ/_old 2011-12-22 15:31:45.000000000 +0100 +++ /var/tmp/diff_new_pack.yV7cpJ/_new 2011-12-22 15:31:45.000000000 +0100 @@ -1,7 +1,7 @@ # -# spec file for package squid (Version 2.7.STABLE6) +# spec file for package squid # -# Copyright (c) 2009 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2011 SUSE LINUX Products GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -26,7 +26,7 @@ %endif Summary: Squid WWW proxy server Version: 2.7.STABLE6 -Release: 2 +Release: 7.<RELEASE2> License: GPLv2+ Url: http://www.squid-cache.org Group: Productivity/Networking/Web/Proxy @@ -117,6 +117,7 @@ Patch100: squid_ldapauth-%{squid_ldapauth_version}.dif Patch101: %{name}-2.6.STABLE19-64bit.patch Patch102: %{name}-2.6.STABLE2-ldflags.patch +Patch103: squid-2.7.STABLE5-bnc587375-CVE-2010-0639.patch BuildRoot: %{_tmppath}/%{name}-%{version}-build %define squidconfdir /etc/squid @@ -206,6 +207,7 @@ ) %patch101 -p1 %patch102 -p1 +%patch103 -p0 %build %{?suse_update_config:%{suse_update_config}} ++++++ squid-2.7.STABLE5-bnc587375-CVE-2010-0639.patch ++++++ diff -rNU 30 ../squid-2.7.STABLE5-o/src/htcp.c ./src/htcp.c --- ../squid-2.7.STABLE5-o/src/htcp.c 2008-05-05 01:23:13.000000000 +0200 +++ ./src/htcp.c 2011-12-21 15:19:38.000000000 +0100 @@ -923,60 +923,65 @@ { debug(31, 3) ("htcpHandleMon: Unimplemented\n"); } static void htcpHandleSet(htcpDataHeader * hdr, char *buf, int sz, struct sockaddr_in *from) { debug(31, 3) ("htcpHandleSet: Unimplemented\n"); } static void htcpHandleClr(htcpDataHeader * hdr, char *buf, int sz, struct sockaddr_in *from) { htcpSpecifier *s; /* buf[0/1] is reserved and reason */ int reason = buf[1] << 4; debug(31, 3) ("htcpHandleClr: reason=%d\n", reason); buf += 2; sz -= 2; /* buf should be a SPECIFIER */ if (sz == 0) { debug(31, 4) ("htcpHandleClr: nothing to do\n"); return; } s = htcpUnpackSpecifier(buf, sz); if (NULL == s) { debug(31, 3) ("htcpHandleClr: htcpUnpackSpecifier failed\n"); return; } + if (!s->request) { + debug(31, 2) ("htcpHandleTstRequest: failed to parse request\n"); + htcpFreeSpecifier(s); + return; + } if (!htcpAccessCheck(Config.accessList.htcp_clr, s, from)) { debug(31, 2) ("htcpHandleClr: Access denied\n"); htcpFreeSpecifier(s); return; } debug(31, 5) ("htcpHandleClr: %s %s %s\n", s->method, s->uri, s->version); debug(31, 5) ("htcpHandleClr: request headers: %s\n", s->req_hdrs); /* Release objects from cache * analog to clientPurgeRequest in client_side.c */ switch (htcpClrStore(s)) { case 1: htcpClrReply(hdr, 1, from); /* hit */ break; case 0: htcpClrReply(hdr, 0, from); /* miss */ break; default: break; } htcpFreeSpecifier(s); } static void htcpHandleData(char *buf, int sz, struct sockaddr_in *from) continue with "q"... Remember to have fun... -- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org