Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package rasdaemon for openSUSE:Factory checked in at 2025-04-28 16:17:58 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/rasdaemon (Old) and /work/SRC/openSUSE:Factory/.rasdaemon.new.30101 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "rasdaemon" Mon Apr 28 16:17:58 2025 rev:25 rq:1273064 version:0.8.3.0.git+db0870e Changes: -------- --- /work/SRC/openSUSE:Factory/rasdaemon/rasdaemon.changes 2025-04-20 20:08:46.419141134 +0200 +++ /work/SRC/openSUSE:Factory/.rasdaemon.new.30101/rasdaemon.changes 2025-04-28 16:18:30.294611155 +0200 @@ -1,0 +2,6 @@ +Thu Apr 24 10:50:48 UTC 2025 - Thomas Renninger <tr...@suse.de> + +- Fix early bufferoverflow in event initialization (bsc#1241567) +A Fix-buffer-overflow-in-add_event_handler-read.patch + +------------------------------------------------------------------- New: ---- Fix-buffer-overflow-in-add_event_handler-read.patch BETA DEBUG BEGIN: New:- Fix early bufferoverflow in event initialization (bsc#1241567) A Fix-buffer-overflow-in-add_event_handler-read.patch BETA DEBUG END: ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ rasdaemon.spec ++++++ --- /var/tmp/diff_new_pack.m6GZ3A/_old 2025-04-28 16:18:31.866677025 +0200 +++ /var/tmp/diff_new_pack.m6GZ3A/_new 2025-04-28 16:18:31.870677192 +0200 @@ -24,6 +24,7 @@ Group: Hardware/Other URL: http://git.infradead.org/users/mchehab/rasdaemon.git Source: %{name}-%{version}.tar.xz +Patch1: Fix-buffer-overflow-in-add_event_handler-read.patch BuildRequires: autoconf BuildRequires: automake BuildRequires: gettext-devel ++++++ Fix-buffer-overflow-in-add_event_handler-read.patch ++++++ From: Thomas Renninger <tr...@suse.de> Subject: Fix buffer overflow in add_event_handler read References: bsc#1241567 Patch-Mainline: not yet Git-commit: 46bed1b6845bcb560d760b4cacea7df67cd6d1fd If the first read in ras-events.c:862 is successful, it will be tried to read more out of the fd, without re-allocating more memory. Submitted mainline: https://github.com/mchehab/rasdaemon/pull/212 Signed-off-by: Thomas Renninger <tr...@suse.de> Signed-off-by: <tr...@suse.de> diff --git a/ras-events.c b/ras-events.c index 6692a31..c7ee801 100644 --- a/ras-events.c +++ b/ras-events.c @@ -859,6 +859,17 @@ static int add_event_handler(struct ras_events *ras, struct tep_handle *pevent, } do { + if (size > 0) { + page = realloc(page, page_size + size); + if (!page) { + rc = -errno; + log(TERM, LOG_ERR, + "Can't reallocate page to read %s:%s" + " format\n", group, event); + close(fd); + return rc; + } + } rc = read(fd, page + size, page_size); if (rc < 0) { log(TERM, LOG_ERR, "Can't get arch page size\n");
