diff options
author | tron <tron@pkgsrc.org> | 2015-02-20 20:18:59 +0000 |
---|---|---|
committer | tron <tron@pkgsrc.org> | 2015-02-20 20:18:59 +0000 |
commit | f86c1cced069fc585716cd91f31ec33a348a42be (patch) | |
tree | cafd7a385c81893cb30a2eed03b413a8a576a65c /lang/ruby18-base/patches/patch-lib_rexml_entity.rb | |
parent | f44a5f3f16cfce1beee29e696fc3112655ede0fa (diff) | |
download | pkgsrc-f86c1cced069fc585716cd91f31ec33a348a42be.tar.gz |
Pullup ticket #4620 - requested by taca
lang/ruby18-base: security patch
Revisions pulled up:
- lang/ruby18-base/Makefile 1.83
- lang/ruby18-base/distinfo 1.61
- lang/ruby18-base/patches/patch-lib_rexml_entity.rb 1.1
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 16 14:03:32 UTC 2015
Modified Files:
pkgsrc/lang/ruby18-base: Makefile distinfo
Added Files:
pkgsrc/lang/ruby18-base/patches: patch-lib_rexml_entity.rb
Log Message:
Add fix for CVE-2015-1426.
Bump PKGREVISION.
Diffstat (limited to 'lang/ruby18-base/patches/patch-lib_rexml_entity.rb')
-rw-r--r-- | lang/ruby18-base/patches/patch-lib_rexml_entity.rb | 22 |
1 files changed, 22 insertions, 0 deletions
diff --git a/lang/ruby18-base/patches/patch-lib_rexml_entity.rb b/lang/ruby18-base/patches/patch-lib_rexml_entity.rb new file mode 100644 index 00000000000..6745547f49c --- /dev/null +++ b/lang/ruby18-base/patches/patch-lib_rexml_entity.rb @@ -0,0 +1,22 @@ +$NetBSD: patch-lib_rexml_entity.rb,v 1.1.2.2 2015/02/20 20:18:59 tron Exp $ + +Fix for CVE-2015-1426. + +--- lib/rexml/entity.rb.orig 2009-02-05 00:03:56.000000000 +0000 ++++ lib/rexml/entity.rb +@@ -138,8 +138,15 @@ module REXML + matches = @value.scan(PEREFERENCE_RE) + rv = @value.clone + if @parent ++ sum = 0 + matches.each do |entity_reference| + entity_value = @parent.entity( entity_reference[0] ) ++ if sum + entity_value.bytesize > Document.entity_expansion_text_limit ++ raise "entity expansion has grown too large" ++ else ++ sum += entity_value.bytesize ++ end ++ + rv.gsub!( /%#{entity_reference};/um, entity_value ) + end + end |