Change-Id: I7a0024a15ca4dd135c076cdf3d3f72484c8405ca
Reviewed-on: http://photon-jenkins.eng.vmware.com:8082/6083
Tested-by: gerrit-photon <photon-checkins@vmware.com>
Reviewed-by: Anish Swaminathan <anishs@vmware.com>
1 | 1 |
new file mode 100644 |
... | ... |
@@ -0,0 +1,11 @@ |
0 |
+--- a/src/libsystemd-network/dhcp6-option.c 2018-11-02 18:46:16.710217740 +0530 |
|
1 |
+@@ -102,7 +102,7 @@ int dhcp6_option_append_ia(uint8_t **buf |
|
2 |
+ return -EINVAL; |
|
3 |
+ } |
|
4 |
+ |
|
5 |
+- if (*buflen < len) |
|
6 |
++ if (*buflen < offsetof(DHCP6Option, data) + len) |
|
7 |
+ return -ENOBUFS; |
|
8 |
+ |
|
9 |
+ ia_hdr = *buf; |
... | ... |
@@ -1,7 +1,7 @@ |
1 | 1 |
Summary: Systemd-228 |
2 | 2 |
Name: systemd |
3 | 3 |
Version: 228 |
4 |
-Release: 47%{?dist} |
|
4 |
+Release: 48%{?dist} |
|
5 | 5 |
License: LGPLv2+ and GPLv2+ and MIT |
6 | 6 |
URL: http://www.freedesktop.org/wiki/Software/systemd/ |
7 | 7 |
Group: System Environment/Security |
... | ... |
@@ -46,6 +46,7 @@ Patch28: systemd-228-link-disabled-nullptr-fix.patch |
46 | 46 |
Patch29: systemd-228-CVE-2017-15908-dns-pkt-loop-fix.patch |
47 | 47 |
Patch30: systemd-228-CVE-2017-18078.patch |
48 | 48 |
Patch31: systemd-228-CVE-2018-1049.patch |
49 |
+Patch32: systemd-228-CVE-2018-15688.patch |
|
49 | 50 |
Requires: Linux-PAM |
50 | 51 |
Requires: libcap |
51 | 52 |
Requires: xz |
... | ... |
@@ -111,6 +112,7 @@ sed -i "s:blkid/::" $(grep -rl "blkid/blkid.h") |
111 | 111 |
%patch29 -p1 |
112 | 112 |
%patch30 -p1 |
113 | 113 |
%patch31 -p1 |
114 |
+%patch32 -p1 |
|
114 | 115 |
sed -i "s#\#DefaultTasksMax=512#DefaultTasksMax=infinity#g" src/core/system.conf |
115 | 116 |
|
116 | 117 |
%build |
... | ... |
@@ -251,6 +253,8 @@ rm -rf %{buildroot}/* |
251 | 251 |
|
252 | 252 |
|
253 | 253 |
%changelog |
254 |
+* Fri Nov 02 2018 Tapas Kundu <tkundu@vmware.com> 228-48 |
|
255 |
+- Fix CVE-2018-15688 |
|
254 | 256 |
* Mon Jul 23 2018 Ankit Jain <ankitja@vmware.com> 228-47 |
255 | 257 |
- Fix CVE-2018-1049. |
256 | 258 |
* Thu Jun 28 2018 Srivatsa S. Bhat <srivatsa@csail.mit.edu> 228-46 |