* add a patch to fix a null pointer dereference in src/racoon/gssapi.c (CVE-2015-4047) * refresh patches * bumb release number Signed-off-by: Nicolas Thill <nico@openwrt.org>lilik-openwrt-22.03
@ -0,0 +1,16 @@ | |||||
Fix null dereference in racoon/gssapi.c (CVE-2015-4047) | |||||
--- a/src/racoon/gssapi.c | |||||
+++ b/src/racoon/gssapi.c | |||||
@@ -192,6 +192,11 @@ gssapi_init(struct ph1handle *iph1) | |||||
gss_name_t princ, canon_princ; | |||||
OM_uint32 maj_stat, min_stat; | |||||
+ if (iph1->rmconf == NULL) { | |||||
+ plog(LLV_ERROR, LOCATION, NULL, "no remote config\n"); | |||||
+ return -1; | |||||
+ } | |||||
+ | |||||
gps = racoon_calloc(1, sizeof (struct gssapi_ph1_state)); | |||||
if (gps == NULL) { | |||||
plog(LLV_ERROR, LOCATION, NULL, "racoon_calloc failed\n"); |