Add patch for CVE-2025-12105

Resolves: RHEL-123543
This commit is contained in:
Michael Catanzaro 2025-12-09 16:30:14 -06:00
parent a21b3d7bb9
commit aa3d3be262
3 changed files with 34 additions and 3 deletions

30
CVE-2025-12105.patch Normal file
View File

@ -0,0 +1,30 @@
From 9ba1243a24e442fa5ec44684617a4480027da960 Mon Sep 17 00:00:00 2001
From: Eugene Mutavchi <Ievgen_Mutavchi@comcast.com>
Date: Fri, 10 Oct 2025 16:24:27 +0000
Subject: [PATCH] fix 'heap-use-after-free' caused by 'finishing' queue item
twice
---
libsoup/soup-session.c | 6 ++++--
1 file changed, 4 insertions(+), 2 deletions(-)
diff --git a/libsoup/soup-session.c b/libsoup/soup-session.c
index c5694d2c..4e6b478b 100644
--- a/libsoup/soup-session.c
+++ b/libsoup/soup-session.c
@@ -2894,8 +2894,10 @@ run_until_read_done (SoupMessage *msg,
if (soup_message_io_in_progress (msg))
soup_message_io_finished (msg);
item->paused = FALSE;
- item->state = SOUP_MESSAGE_FINISHING;
- soup_session_process_queue_item (item->session, item, FALSE);
+ if (item->state != SOUP_MESSAGE_FINISHED) {
+ item->state = SOUP_MESSAGE_FINISHING;
+ soup_session_process_queue_item (item->session, item, FALSE);
+ }
}
async_send_request_return_result (item, NULL, error);
soup_message_queue_item_unref (item);
--
GitLab

View File

@ -20,7 +20,6 @@ Patch: http2-body-size-test-timeout.patch
Patch: CVE-2025-32914.patch
# https://gitlab.gnome.org/GNOME/libsoup/-/merge_requests/451
Patch: CVE-2025-32908.patch
# https://gitlab.gnome.org/GNOME/libsoup/-/merge_requests/448 (simplified and corrected)
Patch: CVE-2025-4035.patch
# https://gitlab.gnome.org/GNOME/libsoup/-/merge_requests/463
@ -29,8 +28,10 @@ Patch: CVE-2025-4948.patch
Patch: CVE-2025-32049.patch
# https://gitlab.gnome.org/GNOME/libsoup/-/merge_requests/452
Patch: CVE-2025-32907.patch
# https://gitlab.gnome.org/GNOME/libsoup/-/issues/448
Patch: RHEL-117629.patch
# https://gitlab.gnome.org/GNOME/libsoup/-/merge_requests/473
Patch: CVE-2025-4945-CVE-2025-11021.patch
# https://gitlab.gnome.org/GNOME/libsoup/-/merge_requests/481
Patch: CVE-2025-12105.patch
BuildRequires: ca-certificates
BuildRequires: gcc