From 555492e41a38ad5ca1fcffb0394c947b1a6b61d4 Mon Sep 17 00:00:00 2001
From: Jo-Philipp Wich <jow@openwrt.org>
Date: Tue, 20 Jan 2015 12:49:54 +0000
Subject: polarssl: patch CVE-2015-1182

Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

SVN-Revision: 44060
---
 package/libs/polarssl/patches/300-CVE-2015-1182.patch | 11 +++++++++++
 1 file changed, 11 insertions(+)
 create mode 100644 package/libs/polarssl/patches/300-CVE-2015-1182.patch

(limited to 'package/libs/polarssl/patches/300-CVE-2015-1182.patch')

diff --git a/package/libs/polarssl/patches/300-CVE-2015-1182.patch b/package/libs/polarssl/patches/300-CVE-2015-1182.patch
new file mode 100644
index 0000000..5961d37
--- /dev/null
+++ b/package/libs/polarssl/patches/300-CVE-2015-1182.patch
@@ -0,0 +1,11 @@
+--- a/library/asn1parse.c
++++ b/library/asn1parse.c
+@@ -278,6 +278,8 @@ int asn1_get_sequence_of( unsigned char
+             if( cur->next == NULL )
+                 return( POLARSSL_ERR_ASN1_MALLOC_FAILED );
+ 
++            memset( cur->next, 0, sizeof( asn1_sequence ) );
++
+             cur = cur->next;
+         }
+     }
-- 
cgit v1.1