summaryrefslogtreecommitdiff
path: root/lang/python25/patches/patch-cb
diff options
context:
space:
mode:
Diffstat (limited to 'lang/python25/patches/patch-cb')
-rw-r--r--lang/python25/patches/patch-cb38
1 files changed, 0 insertions, 38 deletions
diff --git a/lang/python25/patches/patch-cb b/lang/python25/patches/patch-cb
deleted file mode 100644
index 6710f26e275..00000000000
--- a/lang/python25/patches/patch-cb
+++ /dev/null
@@ -1,38 +0,0 @@
-$NetBSD: patch-cb,v 1.1 2008/08/30 10:02:33 tron Exp $
-
-Patch for CVE-2008-3142 taken from Gentoo.
-
---- Objects/obmalloc.c.orig 2008-02-14 11:26:18.000000000 +0000
-+++ Objects/obmalloc.c 2008-08-30 10:39:43.000000000 +0100
-@@ -727,6 +727,15 @@
- uint size;
-
- /*
-+ * Limit ourselves to PY_SSIZE_T_MAX bytes to prevent security holes.
-+ * Most python internals blindly use a signed Py_ssize_t to track
-+ * things without checking for overflows or negatives.
-+ * As size_t is unsigned, checking for nbytes < 0 is not required.
-+ */
-+ if (nbytes > PY_SSIZE_T_MAX)
-+ return NULL;
-+
-+ /*
- * This implicitly redirects malloc(0).
- */
- if ((nbytes - 1) < SMALL_REQUEST_THRESHOLD) {
-@@ -1130,6 +1139,15 @@
- if (p == NULL)
- return PyObject_Malloc(nbytes);
-
-+ /*
-+ * Limit ourselves to PY_SSIZE_T_MAX bytes to prevent security holes.
-+ * Most python internals blindly use a signed Py_ssize_t to track
-+ * things without checking for overflows or negatives.
-+ * As size_t is unsigned, checking for nbytes < 0 is not required.
-+ */
-+ if (nbytes > PY_SSIZE_T_MAX)
-+ return NULL;
-+
- pool = POOL_ADDR(p);
- if (Py_ADDRESS_IN_RANGE(p, pool)) {
- /* We're in charge of this block */