resolved rhbz#918168 ICU: CVE-2013-0900 race condition allows DoS

Upstream changes https://ssl.icu-project.org/trac/changeset/32865 https://ssl.icu-project.org/trac/changeset/32908 See also https://bugzilla.redhat.com/show_bug.cgi?id=918167 Plus changed UMutex to UMTX to make these compile in icu49. Change-Id: Ib5dba7085e6b2dd3925c0c220b5d264e4c7bb4c8

resolved rhbz#918168 ICU: CVE-2013-0900 race condition allows DoS
Upstream changes https://ssl.icu-project.org/trac/changeset/32865 https://ssl.icu-project.org/trac/changeset/32908 See also https://bugzilla.redhat.com/show_bug.cgi?id=918167 Plus changed UMutex to UMTX to make these compile in icu49. Change-Id: Ib5dba7085e6b2dd3925c0c220b5d264e4c7bb4c8
94147f6e · Eike Rathke · 303ff249 · 94147f6e · 94147f6e · 94147f6e
Kaydet (Commit) 94147f6e authored Mar 06, 2013 tarafından Eike Rathke
3 changed files
--- a/icu/UnpackedTarball_icu.mk
+++ b/icu/UnpackedTarball_icu.mk
@@ -25,6 +25,8 @@ $(eval $(call gb_UnpackedTarball_add_patches,icu,\
 	icu/icu4c-solarisgcc.patch \
 	icu/icu4c-mkdir.patch \
 	icu/icu4c-buffer-overflow.patch \
+	icu/icu4c.9737.CVE-2013-0900_changesets_32865_32908.patch \
+	icu/icu4c-CVE-2013-0900_umutex.patch \
 	icu/icu4c-$(if $(filter ANDROID,$(OS)),android,rpath).patch \
 ))

--- a/icu/icu4c-CVE-2013-0900_umutex.patch
+++ b/icu/icu4c-CVE-2013-0900_umutex.patch
+diff -ruN icu.orig/source/common/locid.cpp icu/source/common/locid.cpp
+--- build/icu.orig/source/common/locid.cpp	2013-03-06 21:27:35.170696967 +0100
+++ build/icu/source/common/locid.cpp	2013-03-06 21:29:47.711378977 +0100
+@@ -53,7 +53,7 @@
+ static Locale *gLocaleCache = NULL;
+ // gDefaultLocaleMutex protects all access to gDefaultLocalesHashT and gDefaultLocale.
+-static UMutex gDefaultLocaleMutex = U_MUTEX_INITIALIZER;
+static UMTX gDefaultLocaleMutex = NULL;
+ static UHashtable *gDefaultLocalesHashT = NULL;
+ static Locale *gDefaultLocale = NULL;
--- a/icu/icu4c.9737.CVE-2013-0900_changesets_32865_32908.patch
+++ b/icu/icu4c.9737.CVE-2013-0900_changesets_32865_32908.patch