X-Git-Url: http://git.ozo.com/?a=blobdiff_plain;ds=sidebyside;f=package%2Flibs%2Fpolarssl%2Fpatches%2F300-CVE-2015-1182.patch;fp=package%2Flibs%2Fpolarssl%2Fpatches%2F300-CVE-2015-1182.patch;h=5961d37aa54f62dd0ccdaff170e2e5573d39123c;hb=179d925d85a207933b9f6e1964c6c11edd80c1d0;hp=0000000000000000000000000000000000000000;hpb=60abf1305e4c8cc8c5673dfd98b214e9ceab8ca5;p=openwrt-14.07%2F.git

diff --git a/package/libs/polarssl/patches/300-CVE-2015-1182.patch b/package/libs/polarssl/patches/300-CVE-2015-1182.patch
new file mode 100644
index 0000000..5961d37
--- /dev/null
+++ b/package/libs/polarssl/patches/300-CVE-2015-1182.patch
@@ -0,0 +1,11 @@
+--- a/library/asn1parse.c
++++ b/library/asn1parse.c
+@@ -278,6 +278,8 @@ int asn1_get_sequence_of( unsigned char
+             if( cur->next == NULL )
+                 return( POLARSSL_ERR_ASN1_MALLOC_FAILED );
+ 
++            memset( cur->next, 0, sizeof( asn1_sequence ) );
++
+             cur = cur->next;
+         }
+     }