Resolves: #2168760 - mod_auth_openidc fails with IPv6 OIDCMemCacheServers

2023-06-12 13:34:12 +02:00 · 2023-06-12 13:34:12 +02:00 · 1198a71a3a
commit 1198a71a3a
parent 7048d927fa
2 changed files with 33 additions and 1 deletions
--- a/apr-util-1.6.3-r1907242.patch
+++ b/apr-util-1.6.3-r1907242.patch
@ -0,0 +1,26 @@
+--- a/memcache/apr_memcache.c	2023/02/03 15:06:16	1907241
+++ b/memcache/apr_memcache.c	2023/02/03 15:12:10	1907242
+@@ -290,9 +290,9 @@
+     apr_status_t rv = APR_SUCCESS;
+     apr_sockaddr_t *sa;
+ #if APR_HAVE_SOCKADDR_UN
+-    apr_int32_t family = conn->ms->host[0] != '/' ? APR_INET : APR_UNIX;
+    apr_int32_t family = conn->ms->host[0] != '/' ? APR_UNSPEC : APR_UNIX;
+ #else
+-    apr_int32_t family = APR_INET;
+    apr_int32_t family = APR_UNSPEC;
+ #endif
+ 
+     rv = apr_sockaddr_info_get(&sa, conn->ms->host, family, conn->ms->port, 0, conn->p);
+@@ -328,9 +328,9 @@
+     apr_pool_t *tp;
+     apr_memcache_server_t *ms = params;
+ #if APR_HAVE_SOCKADDR_UN
+-    apr_int32_t family = ms->host[0] != '/' ? APR_INET : APR_UNIX;
+    apr_int32_t family = ms->host[0] != '/' ? APR_UNSPEC : APR_UNIX;
+ #else
+-    apr_int32_t family = APR_INET;
+    apr_int32_t family = APR_UNSPEC;
+ #endif
+ 
+     rv = apr_pool_create(&np, pool);
--- a/apr-util.spec
+++ b/apr-util.spec
@ -16,13 +16,15 @@
 Summary: Apache Portable Runtime Utility library
 Name: apr-util
 Version: 1.6.1
-Release: 21%{?dist}
+Release: 22%{?dist}
 License: ASL 2.0
 URL: https://apr.apache.org/
 Source0: https://www.apache.org/dist/apr/%{name}-%{version}.tar.bz2
 Patch1: apr-util-1.2.7-pkgconf.patch
 Patch4: apr-util-1.4.1-private.patch
 Patch5: apr-util-mariadb-upstream.patch
+# https://bugzilla.redhat.com/show_bug.cgi?id=2168760
+Patch6: apr-util-1.6.3-r1907242.patch

 # Security patches:
 # https://bugzilla.redhat.com/show_bug.cgi?id=2169652
@ -131,6 +133,7 @@ This package provides the NSS crypto support for the apr-util.
 %patch1 -p1 -b .pkgconf
 %patch4 -p1 -b .private
 %patch5 -p1 -b .maria
+%patch6 -p1 -b .r1907242

 %patch100 -p1 -b .CVE-2022-25147

@ -227,6 +230,9 @@ export LD_LIBRARY_PATH=%{buildroot}/%{_libdir}/apr-util-%{apuver}
 %{_datadir}/aclocal/*.m4

 %changelog
+* Mon Jun 12 2023 Luboš Uhliarik <luhliari@redhat.com> - 1.6.1-22
+- Resolves: #2168760 - mod_auth_openidc fails with IPv6 OIDCMemCacheServers
+
 * Wed May 31 2023 Luboš Uhliarik <luhliari@redhat.com> - 1.6.1-21
 - Resolves: #2196576 - CVE-2022-25147 apr-util: out-of-bounds writes in the
  apr_base64