about summary refs log tree commit diff
path: root/nixpkgs/pkgs/applications/version-management/subversion/CVE-2020-17525.patch
diff options
context:
space:
mode:
Diffstat (limited to 'nixpkgs/pkgs/applications/version-management/subversion/CVE-2020-17525.patch')
-rw-r--r--nixpkgs/pkgs/applications/version-management/subversion/CVE-2020-17525.patch15
1 files changed, 15 insertions, 0 deletions
diff --git a/nixpkgs/pkgs/applications/version-management/subversion/CVE-2020-17525.patch b/nixpkgs/pkgs/applications/version-management/subversion/CVE-2020-17525.patch
new file mode 100644
index 000000000000..c844c3773e34
--- /dev/null
+++ b/nixpkgs/pkgs/applications/version-management/subversion/CVE-2020-17525.patch
@@ -0,0 +1,15 @@
+Patch included in advisory @ https://subversion.apache.org/security/CVE-2020-17525-advisory.txt
+
+--- a/subversion/libsvn_repos/config_file.c
++++ b/subversion/libsvn_repos/config_file.c
+@@ -237,6 +237,10 @@ get_repos_config(svn_stream_t **stream,
+     {
+       /* Search for a repository in the full path. */
+       repos_root_dirent = svn_repos_find_root_path(dirent, scratch_pool);
++      if (repos_root_dirent == NULL)
++        return svn_error_trace(handle_missing_file(stream, checksum, access,
++                                                   url, must_exist,
++                                                   svn_node_none));
+ 
+       /* Attempt to open a repository at repos_root_dirent. */
+       SVN_ERR(svn_repos_open3(&access->repos, repos_root_dirent, NULL,
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-06-02 02:29:08 +0000