diff options
| author | Gustavo Zacarias <gustavo@zacarias.com.ar> | 2012-08-13 10:09:18 -0300 |
|---|---|---|
| committer | Thomas Petazzoni <thomas.petazzoni@free-electrons.com> | 2012-08-24 23:47:56 +0200 |
| commit | 8add5064c35f64fdf32d4f9b121b8f4c888ba1a2 (patch) | |
| tree | e3c5d481b69714986d12b7d74a6515d2aef54453 /package/bash/bash-4.2-021.patch | |
| parent | a45b10baa71273eba6f9100e0e66eca5660a4062 (diff) | |
| download | buildroot-novena-8add5064c35f64fdf32d4f9b121b8f4c888ba1a2.tar.gz buildroot-novena-8add5064c35f64fdf32d4f9b121b8f4c888ba1a2.zip | |
bash: security bump to version 4.2 pl37
Bump bash to version 4.2 patchlevel 37.
Fixes CVE-2012-3410.
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Diffstat (limited to 'package/bash/bash-4.2-021.patch')
| -rw-r--r-- | package/bash/bash-4.2-021.patch | 61 |
1 files changed, 61 insertions, 0 deletions
diff --git a/package/bash/bash-4.2-021.patch b/package/bash/bash-4.2-021.patch new file mode 100644 index 000000000..82e00fd3b --- /dev/null +++ b/package/bash/bash-4.2-021.patch @@ -0,0 +1,61 @@ + BASH PATCH REPORT + ================= + +Bash-Release: 4.2 +Patch-ID: bash42-021 + +Bug-Reported-by: Dan Douglas <ormaaj@gmail.com> +Bug-Reference-ID: <4585554.nZWb4q7YoZ@smorgbox> +Bug-Reference-URL: http://lists.gnu.org/archive/html/bug-bash/2011-12/msg00084.html + +Bug-Description: + +Using `read -N' to assign values to an array can result in NUL values being +assigned to some array elements. These values cause seg faults when referenced +later. + +Patch (apply with `patch -p0'): + +*** ../bash-4.2-patched/builtins/read.def 2011-11-21 18:03:38.000000000 -0500 +--- ./builtins/read.def 2011-12-19 19:52:12.000000000 -0500 +*************** +*** 738,742 **** + } + else +! var = bind_read_variable (varname, t); + } + else +--- 775,779 ---- + } + else +! var = bind_read_variable (varname, t ? t : ""); + } + else +*************** +*** 799,803 **** + } + else +! var = bind_read_variable (list->word->word, input_string); + + if (var) +--- 836,840 ---- + } + else +! var = bind_read_variable (list->word->word, input_string ? input_string : ""); + + if (var) +*** ../bash-4.2-patched/patchlevel.h Sat Jun 12 20:14:48 2010 +--- ./patchlevel.h Thu Feb 24 21:41:34 2011 +*************** +*** 26,30 **** + looks for to find the patch level (for the sccs version string). */ + +! #define PATCHLEVEL 20 + + #endif /* _PATCHLEVEL_H_ */ +--- 26,30 ---- + looks for to find the patch level (for the sccs version string). */ + +! #define PATCHLEVEL 21 + + #endif /* _PATCHLEVEL_H_ */ |