From nobody Thu Dec 30 19:01:27 2021 X-Original-To: dev-commits-ports-main@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 45763191B315; Thu, 30 Dec 2021 19:01:28 +0000 (UTC) (envelope-from git@FreeBSD.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4JPyL00D3zz4rlQ; Thu, 30 Dec 2021 19:01:28 +0000 (UTC) (envelope-from git@FreeBSD.org) Received: from gitrepo.freebsd.org (gitrepo.freebsd.org [IPv6:2610:1c1:1:6068::e6a:5]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id DCB7D1DBA1; Thu, 30 Dec 2021 19:01:27 +0000 (UTC) (envelope-from git@FreeBSD.org) Received: from gitrepo.freebsd.org ([127.0.1.44]) by gitrepo.freebsd.org (8.16.1/8.16.1) with ESMTP id 1BUJ1RN2087164; Thu, 30 Dec 2021 19:01:27 GMT (envelope-from git@gitrepo.freebsd.org) Received: (from git@localhost) by gitrepo.freebsd.org (8.16.1/8.16.1/Submit) id 1BUJ1RgR087163; Thu, 30 Dec 2021 19:01:27 GMT (envelope-from git) Date: Thu, 30 Dec 2021 19:01:27 GMT Message-Id: <202112301901.1BUJ1RgR087163@gitrepo.freebsd.org> To: ports-committers@FreeBSD.org, dev-commits-ports-all@FreeBSD.org, dev-commits-ports-main@FreeBSD.org From: Tijl Coosemans Subject: git: e362772ad14b - main - security/vuxml: Document Mbed TLS advisory 2021-12 List-Id: Commits to the main branch of the FreeBSD ports repository List-Archive: https://lists.freebsd.org/archives/dev-commits-ports-main List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-dev-commits-ports-main@freebsd.org X-BeenThere: dev-commits-ports-main@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit X-Git-Committer: tijl X-Git-Repository: ports X-Git-Refname: refs/heads/main X-Git-Reftype: branch X-Git-Commit: e362772ad14b5b08de023ed0a4401bb6ca7cf6d1 Auto-Submitted: auto-generated ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1640890888; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding; bh=ibIsZKW+o+gYgADiiWzLH+iAqMuOoaFF2sLKko7sqts=; b=SyqqeKuRlZDUYStekcwh8bS2Z3sHy9/oCmUDhm3U2c9xQsQggGGvGoAtnxA4je75c6XkDQ YSjCi39JWt5sE/WptMXBo6pEq5wpiD1DdDovrN5BAxrqLKE3CdtwA1vLcRyT059GgyDlt6 jVIbx49JxN6HrMBZuVO0KqfALgKxonJrkT17iqniaZak6U/5eqqX2jE2dWCY0HRYNPhV5o b+fbj00Mre4BXNP9U/jNQD0BhpTYdMmoruWEaBE/NF8icPV2XBYc8/UBrS1Q1ngZHyHeVG yRXxXr/oFs/Jkk4hDGDHc8v5gbT6zzXY6WVWwdHM5icOLoVwX61SgG4c1ypDZQ== ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1640890888; a=rsa-sha256; cv=none; b=mMtNoaguC0B+6K8KF/69yUMNPZbaI0iyoKGpCvRmQEnqCC8/zqrkOqGDY6UTos3DvGVks/ vXeqIrFjXixJZIS7+ODaFyJ72l3UR/SoZciF/MQz2RLkuQWd6SNOGzj8BJQqn9TVU3eenW EuHTZEYvsmZDYUQaiFT54aR7ATI9+gpvdG8Wup9zRaAoa7lKHfp5pU6+Fm5sNVsSrWf4jz O6pBmQv64G9db2BdGL0iDiq7ht8hTRZ5Aw28G/iaRFkH+z8C8x+mo0OYbFWib4tW+8mCwv iHnmR1CIYu/jmgLisWjwpbUAP4DS+1QZtZuNDYXRncp3u+982cgvFi8S3bedEQ== ARC-Authentication-Results: i=1; mx1.freebsd.org; none X-ThisMailContainsUnwantedMimeParts: N The branch main has been updated by tijl: URL: https://cgit.FreeBSD.org/ports/commit/?id=e362772ad14b5b08de023ed0a4401bb6ca7cf6d1 commit e362772ad14b5b08de023ed0a4401bb6ca7cf6d1 Author: Tijl Coosemans AuthorDate: 2021-12-30 18:50:23 +0000 Commit: Tijl Coosemans CommitDate: 2021-12-30 19:00:00 +0000 security/vuxml: Document Mbed TLS advisory 2021-12 Security: https://tls.mbed.org/tech-updates/security-advisories/mbedtls-security-advisory-2021-12 --- security/vuxml/vuln-2021.xml | 35 +++++++++++++++++++++++++++++++++++ 1 file changed, 35 insertions(+) diff --git a/security/vuxml/vuln-2021.xml b/security/vuxml/vuln-2021.xml index 78344b256bce..0e49315af241 100644 --- a/security/vuxml/vuln-2021.xml +++ b/security/vuxml/vuln-2021.xml @@ -1,3 +1,38 @@ + + Mbed TLS -- Potential double-free after an out of memory error + + + mbedtls + 2.16.12 + 2.17.02.28.0 + + + + +

Manuel Pégourié-Gonnard reports:

+
+

If mbedtls_ssl_set_session() or mbedtls_ssl_get_session() were to + fail with MBEDTLS_ERR_SSL_ALLOC_FAILED (in an out of memory + condition), then calling mbedtls_ssl_session_free() and + mbedtls_ssl_free() in the usual manner would cause an internal + session buffer to be freed twice, due to two structures both having + valid pointers to it after a call to ssl_session_copy().

+

An attacker could potentially trigger the out of memory condition, + and therefore use this bug to create memory corruption, which could + then be further exploited or targetted.

+
+ + + + CVE-2021-44732 + https://tls.mbed.org/tech-updates/security-advisories/mbedtls-security-advisory-2021-12 + + + 2021-12-14 + 2021-12-30 + + + OpenDMARC - Remote denial of service