sync/ports
1
0
Fork 0
mirror of https://git.freebsd.org/ports.git synced 2025-07-18 01:39:16 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions

Add patch and fix CVE-2017-15132

Browse source 
Add upstream patch to fix CVE-2017-15132, memory leak in the log in process
that can cause memory exhaustion.

PR:		225446
Submitted by:	Vladimir Krstulja
Approved by:	adamw (maintainer), swills (ports-secteam)
MFH:		2018Q1
Security:	92b8b284-a3a2-41b1-956c-f9cf8b74f500
This commit is contained in:
Niclas Zeising 2018-01-29 20:59:18 +00:00
parent bb9cc65039
commit 14986c7295
Notes: svn2git 2021-03-31 03:12:20 +00:00 
svn path=/head/; revision=460336
2 changed files with 11 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
mail/dovecot/Makefile
View file

@ -13,7 +13,7 @@
PORTNAME= dovecot PORTNAME= dovecot
PORTVERSION= 2.2.33.2 PORTVERSION= 2.2.33.2
PORTREVISION= 2 PORTREVISION= 3
CATEGORIES= mail ipv6 CATEGORIES= mail ipv6
MASTER_SITES= https://www.dovecot.org/releases/2.2/ MASTER_SITES= https://www.dovecot.org/releases/2.2/

10
mail/dovecot/files/patch-src_lib-auth_auth-client-request.c Normal file
View file

@ -0,0 +1,10 @@
--- src/lib-auth/auth-client-request.c.orig 2017-10-05 17:10:44 UTC
+++ src/lib-auth/auth-client-request.c
@@ -180,6 +180,7 @@ void auth_client_request_abort(struct auth_client_requ
auth_client_send_cancel(request->conn->client, request->id);
call_callback(request, AUTH_REQUEST_STATUS_ABORT, NULL, NULL);
+ pool_unref(&request->pool);
}
unsigned int auth_client_request_get_id(struct auth_client_request *request)