void-packages/srcpkgs/libxml2/patches/CVE-2017-7376.patch

From 5dca9eea1bd4263bfa4d037ab2443de1cd730f7e Mon Sep 17 00:00:00 2001
From: Daniel Veillard <veillard@redhat.com>
Date: Fri, 7 Apr 2017 17:13:28 +0200
Subject: Increase buffer space for port in HTTP redirect support

For https://bugzilla.gnome.org/show_bug.cgi?id=780690

nanohttp.c: the code wrongly assumed a short int port value.
---
 nanohttp.c | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/nanohttp.c b/nanohttp.c
index e109ad7..373425d 100644
--- nanohttp.c
+++ nanohttp.c
@@ -1423,9 +1423,9 @@ retry:
     if (ctxt->port != 80) {
 	/* reserve space for ':xxxxx', incl. potential proxy */
 	if (proxy)
-	    blen += 12;
+	    blen += 17;
 	else
-	    blen += 6;
+	    blen += 11;
     }
     bp = (char*)xmlMallocAtomic(blen);
     if ( bp == NULL ) {
-- 
cgit v0.12
libxml2: add patches for multiple CVEs patches from the GNOME libxml2 git repository at https://git.gnome.org/browse/libxml2/ , revisions: CVE-2016-4658 c1d1f7121194036608bf555f08d3062a36fd344b CVE-2016-5131 a005199330b86dada19d162cae15ef9bdcb6baa8 and 9ab01a277d71f54d3143c2cf333c5c2e9aaedd9e CVE-2017-0663 92b9e8c8b3787068565a1820ba575d042f9eec66 CVE-2017-7375 90ccb58242866b0ba3edbef8fe44214a101c2b3e CVE-2017-7376 5dca9eea1bd4263bfa4d037ab2443de1cd730f7e CVE-2017-9047 932cc9896ab41475d4aa429c27d9afd175959d74 CVE-2017-9048 932cc9896ab41475d4aa429c27d9afd175959d74 CVE-2017-9049 e26630548e7d138d2c560844c43820b6767251e3 CVE-2017-9050 e26630548e7d138d2c560844c43820b6767251e3 2017-08-24 12:44:02 +00:00			`From 5dca9eea1bd4263bfa4d037ab2443de1cd730f7e Mon Sep 17 00:00:00 2001`
			`From: Daniel Veillard <veillard@redhat.com>`
			`Date: Fri, 7 Apr 2017 17:13:28 +0200`
			`Subject: Increase buffer space for port in HTTP redirect support`

			`For https://bugzilla.gnome.org/show_bug.cgi?id=780690`

			`nanohttp.c: the code wrongly assumed a short int port value.`
			`---`
			`nanohttp.c \| 4 ++--`
			`1 file changed, 2 insertions(+), 2 deletions(-)`

			`diff --git a/nanohttp.c b/nanohttp.c`
			`index e109ad7..373425d 100644`
			`--- nanohttp.c`
			`+++ nanohttp.c`
			`@@ -1423,9 +1423,9 @@ retry:`
			`if (ctxt->port != 80) {`
			`/* reserve space for ':xxxxx', incl. potential proxy */`
			`if (proxy)`
			`- blen += 12;`
			`+ blen += 17;`
			`else`
			`- blen += 6;`
			`+ blen += 11;`
			`}`
			`bp = (char*)xmlMallocAtomic(blen);`
			`if ( bp == NULL ) {`
			`--`
			`cgit v0.12`