OpenSDE
/
package-nopast
3
0
Fork 0
Code Issues 9 Projects 1 Releases Activity
OpenSDE Packages Database (without history before r20070)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
11833 Commits
49 Branches
0 Tags
34 MiB
Tree: 5cc3682e4b
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '5cc3682e4b'
${ noResults }
package-nopast/network/rsync/CVE-2014-2855.patch

91 lines
2.8 KiB
Raw Normal View History

rsync: Security! CVE-2014-2855
11 years ago
  1. # --- SDE-COPYRIGHT-NOTE-BEGIN ---
  2. # This copyright note is auto-generated by ./scripts/Create-CopyPatch.
  3. #
  4. # Filename: package/.../rsync/CVE-2014-2855.patch
  5. # Copyright (C) 2014 The OpenSDE Project
  6. #
  7. # More information can be found in the files COPYING and README.
  8. #
  9. # This patch file is dual-licensed. It is available under the license the
  10. # patched project is licensed under, as long as it is an OpenSource license
  11. # as defined at http://www.opensource.org/ (e.g. BSD, X11) or under the terms
  12. # of the GNU General Public License as published by the Free Software
  13. # Foundation; either version 2 of the License, or (at your option) any later
  14. # version.
  15. # --- SDE-COPYRIGHT-NOTE-END ---
  17. X-Git-Url:
  18. https://git.samba.org/?p=rsync.git;a=blobdiff_plain;f=authenticate.c;h=c92746c6926f49e23fd38ce7b76c2e74d9c17df0;hp=3381b8c77a747a7a47a273f6272a6db6def1ed02;hb=0dedfbce2c1b851684ba658861fe9d620636c56a;hpb=4cad402ea8a91031f86c53961d78bb7f4f174790
  20. diff --git a/authenticate.c b/authenticate.c
  21. index 3381b8c..c92746c 100644
  22. --- a/authenticate.c
  23. +++ b/authenticate.c
  24. @@ -102,15 +102,16 @@ static const char *check_secret(int module, const char *user, const char *group,
  25. char pass2[MAX_DIGEST_LEN*2];
  26. const char *fname = lp_secrets_file(module);
  27. STRUCT_STAT st;
  28. - int fd, ok = 1;
  29. + int ok = 1;
  30. int user_len = strlen(user);
  31. int group_len = group ? strlen(group) : 0;
  32. char *err;
  33. + FILE *fh;
  35. - if (!fname || !*fname || (fd = open(fname, O_RDONLY)) < 0)
  36. + if (!fname || !*fname || (fh = fopen(fname, "r")) == NULL)
  37. return "no secrets file";
  39. - if (do_fstat(fd, &st) == -1) {
  40. + if (do_fstat(fileno(fh), &st) == -1) {
  41. rsyserr(FLOG, errno, "fstat(%s)", fname);
  42. ok = 0;
  43. } else if (lp_strict_modes(module)) {
  44. @@ -123,29 +124,30 @@ static const char *check_secret(int module, const char *user, const char *group,
  45. }
  46. }
  47. if (!ok) {
  48. - close(fd);
  49. + fclose(fh);
  50. return "ignoring secrets file";
  51. }
  53. if (*user == '#') {
  54. /* Reject attempt to match a comment. */
  55. - close(fd);
  56. + fclose(fh);
  57. return "invalid username";
  58. }
  60. /* Try to find a line that starts with the user (or @group) name and a ':'. */
  61. err = "secret not found";
  62. - while ((user || group) && read_line_old(fd, line, sizeof line, 1)) {
  63. - const char **ptr, *s;
  64. + while ((user || group) && fgets(line, sizeof line, fh) != NULL) {
  65. + const char **ptr, *s = strtok(line, "\n\r");
  66. int len;
  67. - if (*line == '@') {
  68. + if (!s)
  69. + continue;
  70. + if (*s == '@') {
  71. ptr = &group;
  72. len = group_len;
  73. - s = line+1;
  74. + s++;
  75. } else {
  76. ptr = &user;
  77. len = user_len;
  78. - s = line;
  79. }
  80. if (!*ptr || strncmp(s, *ptr, len) != 0 || s[len] != ':')
  81. continue;
  82. @@ -158,7 +160,7 @@ static const char *check_secret(int module, const char *user, const char *group,
  83. *ptr = NULL; /* Don't look for name again. */
  84. }
  86. - close(fd);
  87. + fclose(fh);
  89. memset(line, 0, sizeof line);
  90. memset(pass2, 0, sizeof pass2);