pool/evolution-ews
SHA256
2
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Accepting request 879957 from GNOME:Factory

Browse Source 
- Add evolution-ews-boo1182882.patch: fix buffer overrun when
  parsing base64 data (boo#1182882). (forwarded request 876819 from mgorse)

OBS-URL: https://build.opensuse.org/request/show/879957
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/evolution-ews?expand=0&rev=110
This commit is contained in:
Dominique Leuenberger 2021-03-24 15:09:38 +00:00 committed by Git OBS Bridge
commit a5d9023dab
3 changed files with 33 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

25
evolution-ews-boo1182882.patch Normal file
View File

@ -0,0 +1,25 @@
From 5eba0627725352ef9978d9c0a91e5d0bd13a3789 Mon Sep 17 00:00:00 2001
From: Milan Crha <mcrha@redhat.com>
Date: Tue, 2 Mar 2021 12:28:09 +0100
Subject: [PATCH] Allocate large-enough buffer for g_base64_decode_step()
---
src/EWS/common/e-soap-message.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/src/EWS/common/e-soap-message.c b/src/EWS/common/e-soap-message.c
index e559f851..434c19af 100644
--- a/src/EWS/common/e-soap-message.c
+++ b/src/EWS/common/e-soap-message.c
@@ -248,7 +248,7 @@ soap_sax_characters (gpointer _ctxt,
g_warning ("Failed to write streaming data to file");
}
} else {
- guchar *bdata = g_malloc (len);
+ guchar *bdata = g_malloc ((len * 3 / 4) + 3);
gsize blen;
blen = g_base64_decode_step (
--
2.30.1

6
evolution-ews.changes
View File

@ -1,3 +1,9 @@
-------------------------------------------------------------------
Wed Mar 3 19:46:04 UTC 2021 - Michael Gorse <mgorse@suse.com>
- Add evolution-ews-boo1182882.patch: fix buffer overrun when
parsing base64 data (boo#1182882).
------------------------------------------------------------------- -------------------------------------------------------------------
Fri Feb 12 17:09:25 UTC 2021 - Bjørn Lie <bjorn.lie@gmail.com> Fri Feb 12 17:09:25 UTC 2021 - Bjørn Lie <bjorn.lie@gmail.com>

2
evolution-ews.spec
View File

@ -27,6 +27,8 @@ License: LGPL-2.1-only
Group: Productivity/Networking/Email/Clients Group: Productivity/Networking/Email/Clients
URL: https://wiki.gnome.org/Apps/Evolution URL: https://wiki.gnome.org/Apps/Evolution
Source0: https://download.gnome.org/sources/evolution-ews/3.38/%{name}-%{version}.tar.xz Source0: https://download.gnome.org/sources/evolution-ews/3.38/%{name}-%{version}.tar.xz
# PATCH-FIX-UPSTREAM evolution-ews-boo1182882.patch boo#1182882 mgorse@suse.com -- fix buffer overrun when decoding base64 data.
Patch0: evolution-ews-boo1182882.patch
BuildRequires: c++_compiler BuildRequires: c++_compiler
BuildRequires: cmake BuildRequires: cmake