- bnc#927841, CVE-2015-3310: Fix buffer overflow in radius

plug-in's rc_mksid(). OBS-URL: https://build.opensuse.org/package/show/network/ppp?expand=0&rev=32
2015-11-13 15:39:47 +00:00
parent eec413c3c3
commit ae7ba71314
3 changed files with 21 additions and 0 deletions
--- a/ppp.spec
+++ b/ppp.spec
@@ -69,6 +69,7 @@ Patch19:        ppp-2.4.4-strncatfix.patch
 Patch21:        ppp-2.4.6-lib64.patch
 Patch22:        ppp-2.4.4-var_run_resolv_conf.patch
 Patch23:        ppp-send-padt.patch
+Patch24:        ppp-CVE-2015-3310.patch

 %description
 The ppp package contains the PPP (Point-to-Point Protocol) daemon,
@@ -109,6 +110,7 @@ plugins for the pppd.
 %endif
 %patch22
 %patch23 -p1
+%patch24
 sed -i -e '1s/local\///' scripts/secure-card
 find scripts -type f | xargs chmod a-x
 find -type f -name '*.orig' | xargs rm -f