Attachment #190239 for bug #225585

View | Details | Raw Unified | Return to bug 225585
Collapse All | Expand All

Lines 13-19 Link Here

(-)mail/dovecot/Makefile (-1 / +1 lines)
13		13
14	PORTNAME= dovecot	14	PORTNAME= dovecot
15	PORTVERSION= 2.2.33.2	15	PORTVERSION= 2.2.33.2
16	PORTREVISION= 3	16	PORTREVISION= 4
17	CATEGORIES= mail ipv6	17	CATEGORIES= mail ipv6
18	MASTER_SITES= https://www.dovecot.org/releases/2.2/	18	MASTER_SITES= https://www.dovecot.org/releases/2.2/
19		19

Lines 1-10 Link Here

(-)mail/dovecot/files/patch-src_lib-auth_auth-client-request.c (-3 / +11 lines)
1	--- src/lib-auth/auth-client-request.c.orig 2017-10-05 17:10:44 UTC	1	#
		2	Ref: https://github.com/dovecot/core/commit/a9b135760aea6d1790d447d351c56b78889dac22
		3	Security: CVE-2017-15132
		4
		5	Fix memory leak.
		6
		7	--- src/lib-auth/auth-client-request.c.orig 2018-02-01 02:10:16 UTC
2	+++ src/lib-auth/auth-client-request.c	8	+++ src/lib-auth/auth-client-request.c
3	@@ -180,6 +180,7 @@ void auth_client_request_abort(struct auth_client_requ	9	@@ -180,6 +180,9 @@ void auth_client_request_abort(struct au
4		10
5	auth_client_send_cancel(request->conn->client, request->id);	11	auth_client_send_cancel(request->conn->client, request->id);
6	call_callback(request, AUTH_REQUEST_STATUS_ABORT, NULL, NULL);	12	call_callback(request, AUTH_REQUEST_STATUS_ABORT, NULL, NULL);
7	+ pool_unref(&request->pool);	13	+ /* remove the request */
		14	+ auth_server_connection_remove_request(request->conn, request->id);
		15	+ pool_unref(&request->pool);
8	}	16	}
9		17
10	unsigned int auth_client_request_get_id(struct auth_client_request *request)	18	unsigned int auth_client_request_get_id(struct auth_client_request *request)




#
Ref: https://github.com/dovecot/core/commit/a9b135760aea6d1790d447d351c56b78889dac22
Security: CVE-2017-15132

Fix memory leak.

--- src/lib-auth/auth-server-connection.c.orig	2017-10-05 17:10:44 UTC
+++ src/lib-auth/auth-server-connection.c
@@ -481,3 +481,10 @@ auth_server_connection_add_request(struc
 	hash_table_insert(conn->requests, POINTER_CAST(id), request);
 	return id;
 }
+
+void auth_server_connection_remove_request(struct auth_server_connection *conn,
+					   unsigned int id)
+{
+	i_assert(conn->handshake_received);
+	hash_table_remove(conn->requests, POINTER_CAST(id));
+}




#
Ref: https://github.com/dovecot/core/commit/a9b135760aea6d1790d447d351c56b78889dac22
Security: CVE-2017-15132

Fix memory leak.

--- src/lib-auth/auth-server-connection.h.orig	2017-10-05 17:10:44 UTC
+++ src/lib-auth/auth-server-connection.h
@@ -38,4 +38,6 @@ void auth_server_connection_disconnect(s
 unsigned int
 auth_server_connection_add_request(struct auth_server_connection *conn,
 				   struct auth_client_request *request);
+void auth_server_connection_remove_request(struct auth_server_connection *conn,
+					   unsigned int id);
 #endif

Return to bug 225585