git.proxmox.com Git - mirror

author	Laszlo Ersek <lersek@redhat.com>
	Thu, 24 Oct 2019 13:20:18 +0000 (15:20 +0200)
committer	Laszlo Ersek <lersek@redhat.com>
	Sat, 2 Nov 2019 11:07:59 +0000 (12:07 +0100)
commit	8d16ef8269b2ff373d8da674e59992adfdc032d3
tree	914b73c06386fc49c18916d9ab8b65e5cab5fb54	tree
parent	2ac41c12c0d4b3d3ee8f905ab80da019e784de00	commit \| diff

CryptoPkg/Crt: import "inet_pton.c" (CVE-2019-14553)

For TianoCore BZ#1734, StdLib has been moved from the edk2 project to the
edk2-libc project, in commit 964f432b9b0a ("edk2: Remove AppPkg, StdLib,
StdLibPrivateInternalFiles", 2019-04-29).

We'd like to use the inet_pton() function in CryptoPkg. Resurrect the
"inet_pton.c" file from just before the StdLib removal, as follows:

  $ git show \
      964f432b9b0a^:StdLib/BsdSocketLib/inet_pton.c \
      > CryptoPkg/Library/BaseCryptLib/SysCall/inet_pton.c

The inet_pton() function is only intended for the DXE phase at this time,
therefore only the "BaseCryptLib" instance INF file receives the new file.

Cc: David Woodhouse <dwmw2@infradead.org>
Cc: Jian J Wang <jian.j.wang@intel.com>
Cc: Jiaxin Wu <jiaxin.wu@intel.com>
Cc: Sivaraman Nainar <sivaramann@amiindia.co.in>
Cc: Xiaoyu Lu <xiaoyux.lu@intel.com>
Ref: https://bugzilla.tianocore.org/show_bug.cgi?id=960
CVE: CVE-2019-14553
Signed-off-by: Laszlo Ersek <lersek@redhat.com>
Reviewed-by: Jian J Wang <jian.j.wang@intel.com>
Reviewed-by: Jiaxin Wu <jiaxin.wu@intel.com>

CryptoPkg/Library/BaseCryptLib/BaseCryptLib.inf		diff \| blob \| blame \| history
CryptoPkg/Library/BaseCryptLib/SysCall/inet_pton.c	[new file with mode: 0644]	blob
CryptoPkg/Library/Include/CrtLibSupport.h		diff \| blob \| blame \| history