meta-oe/recipes-support/c-ares/c-ares/CVE-2024-25629.patch


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34

From: a804c04ddc8245fc8adf0e92368709639125e183 Mon Sep 17 00:00:00 2001
From: Brad House <brad@brad-house.com>
Date: Mon, 11 Mar 2024 14:29:39 +0000
Subject: [PATCH] Merge pull request from GHSA-mg26-v6qh-x48q

CVE: CVE-2024-25629
Upstream-Status: Backport [https://github.com/c-ares/c-ares/commit/a804c04ddc8245fc8adf0e92368709639125e183]

Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
---
 src/lib/ares__read_line.c | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/src/lib/ares__read_line.c b/src/lib/ares__read_line.c
index c62ad2a..d6625a3 100644
--- a/src/lib/ares__read_line.c
+++ b/src/lib/ares__read_line.c
@@ -49,6 +49,14 @@ int ares__read_line(FILE *fp, char **buf, size_t *bufsize)
       if (!fgets(*buf + offset, bytestoread, fp))
         return (offset != 0) ? 0 : (ferror(fp)) ? ARES_EFILE : ARES_EOF;
       len = offset + strlen(*buf + offset);
+
+      /* Probably means there was an embedded NULL as the first character in
+       * the line, throw away line */
+      if (len == 0) {
+        offset = 0;
+        continue;
+      }
+
       if ((*buf)[len - 1] == '\n')
         {
           (*buf)[len - 1] = 0;
--
2.40.0