rabbitmq-server: security bump to version 3.6.6
[buildroot-gz.git] / package / bash / bash44-003.patch
blobcdfc206f8aa87e78a7682f932f848d92e8c97205
1 From https://ftp.gnu.org/gnu/bash/bash-4.4-patches/bash44-003
3 Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 BASH PATCH REPORT
6 =================
8 Bash-Release: 4.4
9 Patch-ID: bash44-003
11 Bug-Reported-by: op7ic \x00 <op7ica@gmail.com>
12 Bug-Reference-ID: <CAFHyJTopWC5Jx+U7WcvxSZKu+KrqSf+_3sHPiRWo=VzXSiPq=w@mail.gmail.com>
13 Bug-Reference-URL: http://lists.gnu.org/archive/html/bug-bash/2016-11/msg00005.html
15 Bug-Description:
17 Specially-crafted input, in this case an incomplete pathname expansion
18 bracket expression containing an invalid collating symbol, can cause the
19 shell to crash.
21 Patch (apply with `patch -p0'):
23 *** a/bash-4.4/lib/glob/sm_loop.c 2016-04-10 11:23:21.000000000 -0400
24 --- b/lib/glob/sm_loop.c 2016-11-02 14:03:34.000000000 -0400
25 ***************
26 *** 331,334 ****
27 --- 331,340 ----
28 if (p[pc] == L('.') && p[pc+1] == L(']'))
29 break;
30 + if (p[pc] == 0)
31 + {
32 + if (vp)
33 + *vp = INVALID;
34 + return (p + pc);
35 + }
36 val = COLLSYM (p, pc);
37 if (vp)
38 ***************
39 *** 484,487 ****
40 --- 490,496 ----
41 c = FOLD (c);
43 + if (c == L('\0'))
44 + return ((test == L('[')) ? savep : (CHAR *)0);
46 if ((flags & FNM_PATHNAME) && c == L('/'))
47 /* [/] can never match when matching a pathname. */
48 *** a/bash-4.4/patchlevel.h 2016-06-22 14:51:03.000000000 -0400
49 --- b/patchlevel.h 2016-10-01 11:01:28.000000000 -0400
50 ***************
51 *** 26,30 ****
52 looks for to find the patch level (for the sccs version string). */
54 ! #define PATCHLEVEL 2
56 #endif /* _PATCHLEVEL_H_ */
57 --- 26,30 ----
58 looks for to find the patch level (for the sccs version string). */
60 ! #define PATCHLEVEL 3
62 #endif /* _PATCHLEVEL_H_ */