Antonio Larrosa
0aa4b1876f
the async-signal-unsafe code (CVE-2024-6387, bsc#1226642): * fix-CVE-2024-6387.patch OBS-URL: https://build.opensuse.org/package/show/network/openssh?expand=0&rev=269
20 lines
485 B
Diff
20 lines
485 B
Diff
Index: openssh-9.6p1/log.c
|
|
===================================================================
|
|
--- openssh-9.6p1.orig/log.c
|
|
+++ openssh-9.6p1/log.c
|
|
@@ -451,12 +451,14 @@ void
|
|
sshsigdie(const char *file, const char *func, int line, int showfunc,
|
|
LogLevel level, const char *suffix, const char *fmt, ...)
|
|
{
|
|
+#if 0
|
|
va_list args;
|
|
|
|
va_start(args, fmt);
|
|
sshlogv(file, func, line, showfunc, SYSLOG_LEVEL_FATAL,
|
|
suffix, fmt, args);
|
|
va_end(args);
|
|
+#endif
|
|
_exit(1);
|
|
}
|
|
|