From a013971e2841611780cdada4501f15314ebebcb6 Mon Sep 17 00:00:00 2001 From: Juan RP Date: Fri, 18 Dec 2015 16:08:49 +0100 Subject: [PATCH] grub: added patch for CVE-2015-8370. --- srcpkgs/grub/patches/CVE-2015-8370.patch | 47 ++++++++++++++++++++++++ srcpkgs/grub/template | 2 +- 2 files changed, 48 insertions(+), 1 deletion(-) create mode 100644 srcpkgs/grub/patches/CVE-2015-8370.patch diff --git a/srcpkgs/grub/patches/CVE-2015-8370.patch b/srcpkgs/grub/patches/CVE-2015-8370.patch new file mode 100644 index 00000000000..7e0c1ba81b4 --- /dev/null +++ b/srcpkgs/grub/patches/CVE-2015-8370.patch @@ -0,0 +1,47 @@ +From e16eeda1200deabd0d3a4af968d526d62845a85f Mon Sep 17 00:00:00 2001 +From: Hector Marco-Gisbert +Date: Fri, 13 Nov 2015 16:21:09 +0100 +Subject: [PATCH] Fix security issue when reading username and password + + This patch fixes two integer underflows at: + * grub-core/lib/crypto.c + * grub-core/normal/auth.c + +Resolves: CVE-2015-8370 + +Signed-off-by: Hector Marco-Gisbert +Signed-off-by: Ismael Ripoll-Ripoll +--- + grub-core/lib/crypto.c | 2 +- + grub-core/normal/auth.c | 2 +- + 2 files changed, 2 insertions(+), 2 deletions(-) + +diff --git a/grub-core/lib/crypto.c b/grub-core/lib/crypto.c +index 010e550..524a3d8 100644 +--- grub-core/lib/crypto.c ++++ grub-core/lib/crypto.c +@@ -468,7 +468,7 @@ grub_password_get (char buf[], unsigned buf_size) + break; + } + +- if (key == '\b') ++ if (key == '\b' && cur_len) + { + cur_len--; + continue; +diff --git a/grub-core/normal/auth.c b/grub-core/normal/auth.c +index c6bd96e..5782ec5 100644 +--- grub-core/normal/auth.c ++++ grub-core/normal/auth.c +@@ -172,7 +172,7 @@ grub_username_get (char buf[], unsigned buf_size) + break; + } + +- if (key == '\b') ++ if (key == '\b' && cur_len) + { + cur_len--; + grub_printf ("\b"); +-- +2.6.4 + diff --git a/srcpkgs/grub/template b/srcpkgs/grub/template index d09a2a003eb..ee444d11430 100644 --- a/srcpkgs/grub/template +++ b/srcpkgs/grub/template @@ -1,7 +1,7 @@ # Template file for 'grub' pkgname=grub version=2.02~beta2 -revision=1 +revision=2 hostmakedepends="flex" makedepends="libusb-compat-devel ncurses-devel freetype-devel liblzma-devel device-mapper-devel font-unifont-bdf fuse-devel"