Return-Path: X-Original-To: archive-asf-public-internal@cust-asf2.ponee.io Delivered-To: archive-asf-public-internal@cust-asf2.ponee.io Received: from cust-asf.ponee.io (cust-asf.ponee.io [163.172.22.183]) by cust-asf2.ponee.io (Postfix) with ESMTP id 7C48F200D2F for ; Wed, 1 Nov 2017 12:22:55 +0100 (CET) Received: by cust-asf.ponee.io (Postfix) id 7AC0C160BEA; Wed, 1 Nov 2017 11:22:55 +0000 (UTC) Delivered-To: archive-asf-public@cust-asf.ponee.io Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by cust-asf.ponee.io (Postfix) with SMTP id C0F3E160BE6 for ; Wed, 1 Nov 2017 12:22:54 +0100 (CET) Received: (qmail 56062 invoked by uid 500); 1 Nov 2017 11:22:53 -0000 Mailing-List: contact dev-help@apr.apache.org; run by ezmlm Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Id: Delivered-To: mailing list dev@apr.apache.org Received: (qmail 56053 invoked by uid 99); 1 Nov 2017 11:22:53 -0000 Received: from pnap-us-west-generic-nat.apache.org (HELO spamd1-us-west.apache.org) (209.188.14.142) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 01 Nov 2017 11:22:53 +0000 Received: from localhost (localhost [127.0.0.1]) by spamd1-us-west.apache.org (ASF Mail Server at spamd1-us-west.apache.org) with ESMTP id 29239C690C for ; Wed, 1 Nov 2017 11:22:53 +0000 (UTC) X-Virus-Scanned: Debian amavisd-new at spamd1-us-west.apache.org X-Spam-Flag: NO X-Spam-Score: -0.699 X-Spam-Level: X-Spam-Status: No, score=-0.699 tagged_above=-999 required=6.31 tests=[RCVD_IN_DNSWL_LOW=-0.7, UNPARSEABLE_RELAY=0.001] autolearn=disabled Received: from mx1-lw-eu.apache.org ([10.40.0.8]) by localhost (spamd1-us-west.apache.org [10.40.0.7]) (amavisd-new, port 10024) with ESMTP id f6P_eqvEq-up for ; Wed, 1 Nov 2017 11:22:52 +0000 (UTC) Received: from einhorn-mail.in-berlin.de (einhorn.in-berlin.de [192.109.42.8]) by mx1-lw-eu.apache.org (ASF Mail Server at mx1-lw-eu.apache.org) with ESMTPS id B5B6160D8C for ; Wed, 1 Nov 2017 11:22:51 +0000 (UTC) X-Envelope-From: stsp@apache.org Received: from jim.stsp.name (jim.stsp.name [217.197.84.42]) (authenticated bits=0) by einhorn.in-berlin.de (8.14.4/8.14.4/Debian-8+deb8u2) with ESMTP id vA1BMofE018513 (version=TLSv1/SSLv3 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 1 Nov 2017 12:22:51 +0100 Received: from localhost (jim.stsp.name [local]) by jim.stsp.name (OpenSMTPD) with ESMTPA id 6dc9386f; Wed, 1 Nov 2017 12:22:50 +0100 (CET) Date: Wed, 1 Nov 2017 12:22:50 +0100 From: Stefan Sperling To: William A Rowe Jr Cc: APR Developer List Subject: Re: [Announce] Apache Portable Runtime APR 1.6.3, APR-util 1.6.1 and APR-iconv 1.2.2 Released Message-ID: <20171101112249.GB79732@jim.stsp.name> References: MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.9.1 (2017-09-22) archived-at: Wed, 01 Nov 2017 11:22:55 -0000 On Mon, Oct 23, 2017 at 01:27:59PM -0500, William A Rowe Jr wrote: > CVE-2017-12618; Out-of-bounds access in corrupted SDBM database. > > APR-util 1.6.0 and prior failed to validate the integrity of SDBM > database files used by apr_sdbm*() functions, resulting in a > possible out of bound read access. A local user with write access > to the database can make a program or process using these functions > crash, and cause a denial of service. I am looking for the patch which fixed the above issue. Where can I find it? Was it r1809394? All of it? Some of it? Rationale: APR-util 1.6.3 added a shared library symbol: No dynamic export changes PLT added: apr_xml_parser_done I want to figure out a way to patch this security issue in OpenBSD 6.2-stable, without changing unrelated library symbols. Thanks, Stefan