File: 0001-Fix-CVE-2023-28625-segfault-DoS-when-OIDCStripCookie.patch

package info (click to toggle)

libapache2-mod-auth-openidc 2.4.12.3-2%2Bdeb12u4

links: PTS, VCS
area: main
in suites: bookworm
size: 3,036 kB
sloc: ansic: 18,979; makefile: 88; sh: 2

file content (24 lines) | stat: -rw-r--r-- 928 bytes

From: Moritz Schlarb <schlarbm@uni-mainz.de>
Date: Tue, 2 May 2023 11:44:18 +0200
Subject: Fix CVE-2023-28625: segfault DoS when OIDCStripCookies is set

Origin: upstream, https://github.com/OpenIDC/mod_auth_openidc/security/advisories/GHSA-f5xw-rvfr-24qr
Applied-Upstream: 2.4.13.2, https://github.com/OpenIDC/mod_auth_openidc/commit/c0e1edac3c4c19988ccdc7713d7aebfce6ff916a
---
 src/mod_auth_openidc.c | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/src/mod_auth_openidc.c b/src/mod_auth_openidc.c
index c7f6c0e..63fa99f 100644
--- a/src/mod_auth_openidc.c
+++ b/src/mod_auth_openidc.c
@@ -175,7 +175,8 @@ void oidc_strip_cookies(request_rec *r) {
 		do {
 			while (cookie != NULL && *cookie == OIDC_CHAR_SPACE)
 				cookie++;
-
+			if (cookie == NULL)
+				break;
 			for (i = 0; i < strip->nelts; i++) {
 				name = ((const char**) strip->elts)[i];
 				if ((strncmp(cookie, name, strlen(name)) == 0)