Sync from SUSE:SLFO:1.1 iniparser revision b699f30ae8d8ca56663864ee0c4a9459

2025-04-15 19:44:03 +02:00
3 changed files with 0 additions and 21 deletions
--- a/CVE-2025-0633.patch
+++ b/CVE-2025-0633.patch
@@ -1,13 +0,0 @@
-diff --git a/src/iniparser.c b/src/iniparser.c
-index 4cffb96..7cffe7a 100644
--- a/src/iniparser.c
-+++ b/src/iniparser.c
-@@ -327,6 +327,7 @@ void iniparser_dumpsection_ini(const dictionary * d, const char * s, FILE * f)
- 
-     if (d==NULL || f==NULL) return ;
-     if (! iniparser_find_entry(d, s)) return ;
-+    if (strlen(s) > sizeof(keym)) return ;
- 
-     seclen  = (int)strlen(s);
-     fprintf(f, "\n[%s]\n", s);
-
--- a/iniparser.changes
+++ b/iniparser.changes
@@ -1,9 +1,3 @@
-------------------------------------------------------------------
-Thu Feb 27 13:07:37 UTC 2025 - Yunus Acar <yunus.acar@suse.com>
-
- Add CVE-2025-0633.patch (bsc#1237377)
-  Fix heap overflow in iniparser_dumpsection_ini()
-
 -------------------------------------------------------------------
 Wed May 15 19:07:26 UTC 2024 - Michal Suchanek <msuchanek@suse.com>

--- a/iniparser.spec
+++ b/iniparser.spec
@@ -28,8 +28,6 @@ URL:            http://ndevilla.free.fr/iniparser/
 Source:         https://github.com/ndevilla/%{name}/archive/v%{version}.tar.gz#/%{name}-%{version}.tar.gz
 Source2:        baselibs.conf
 Patch00:        iniparser_remove_rpath.patch
-# PATCH-FIX-UPSTREAM CVE-2025-0633.patch bsc#1237377 -- based on commit 072a39a772a38c475e35a1be311304ca99e9de7f
-Patch01:        CVE-2025-0633.patch
 BuildRequires:  doxygen

 %description