Skip to content
Open
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
7 changes: 7 additions & 0 deletions debian/changelog
Original file line number Diff line number Diff line change
@@ -1,3 +1,10 @@
libidn (CVE-2026-57053+fix1) unstable; urgency=high

* Fix CVE-2026-57053: fix buffer overread in IDNA xn-- string processing
(Closes: CVE-2026-57053)

-- deepin-ci-robot <packages@deepin.org> Fri, 10 Jul 2026 03:13:35 +0800

libidn (1.43-2) unstable; urgency=medium

* Add pull/gen make deps. Closes: #1105425.
Expand Down
14 changes: 14 additions & 0 deletions debian/patches/CVE-2026-57053.patch
Original file line number Diff line number Diff line change
@@ -0,0 +1,14 @@
Index: libidn-fix/lib/idna.c
===================================================================
--- libidn-fix.orig/lib/idna.c
+++ libidn-fix/lib/idna.c
@@ -385,7 +385,8 @@ step3:
* step 3, using a case-insensitive ASCII comparison.
*/

- if (c_strcasecmp (utf8in, tmpout + strlen (IDNA_ACE_PREFIX)) != 0)
+ if (c_strncasecmp (tmpout, IDNA_ACE_PREFIX, strlen (IDNA_ACE_PREFIX)) != 0
+ || c_strcasecmp (utf8in, tmpout + strlen (IDNA_ACE_PREFIX)) != 0)
{
free (utf8in);
return IDNA_ROUNDTRIP_VERIFY_ERROR;
1 change: 1 addition & 0 deletions debian/patches/series
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
CVE-2026-57053.patch
Loading