Fix CVE-2018-6003:

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6003
https://lists.gnu.org/archive/html/help-libtasn1/2018-01/msg00000.html

Patch copied from upstream source repository:

https://gitlab.com/gnutls/libtasn1/commit/c593ae84cfcde8fea45787e53950e0ac71e9ca97

From c593ae84cfcde8fea45787e53950e0ac71e9ca97 Mon Sep 17 00:00:00 2001
From: Nikos Mavrogiannopoulos <nmav@redhat.com>
Date: Thu, 4 Jan 2018 10:52:05 +0100
Subject: [PATCH] _asn1_decode_simple_ber: restrict the levels of recursion to 3

On indefinite string decoding, setting a maximum level of recursions
protects the BER decoder from a stack exhaustion due to large amounts
of recursion.

Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
---
 lib/decoding.c | 21 +++++++++++++++++++--
 1 file changed, 19 insertions(+), 2 deletions(-)

diff --git a/lib/decoding.c b/lib/decoding.c
index 2240b09..0ee35d3 100644
--- a/lib/decoding.c
+++ b/lib/decoding.c
@@ -45,6 +45,13 @@
 
 #define DECODE_FLAG_HAVE_TAG 1
 #define DECODE_FLAG_INDEFINITE (1<<1)
+/* On indefinite string decoding, allow this maximum levels
+ * of recursion. Allowing infinite recursion, makes the BER
+ * decoder susceptible to stack exhaustion due to that recursion.
+ */
+#define DECODE_FLAG_LEVEL1 (1<<2)
+#define DECODE_FLAG_LEVEL2 (1<<3)
+#define DECODE_FLAG_LEVEL3 (1<<4)
 
 #define DECR_LEN(l, s) do { \
 	  l -= s; \
@@ -2216,7 +2223,8 @@ _asn1_decode_simple_ber (unsigned int etype, const unsigned char *der,
     }
 
   /* indefinite constructed */
-  if (((dflags & DECODE_FLAG_INDEFINITE) || class == ASN1_CLASS_STRUCTURED) && ETYPE_IS_STRING(etype))
+  if ((((dflags & DECODE_FLAG_INDEFINITE) || class == ASN1_CLASS_STRUCTURED) && ETYPE_IS_STRING(etype)) &&
+      !(dflags & DECODE_FLAG_LEVEL3))
     {
       len_len = 1;
 
@@ -2236,8 +2244,17 @@ _asn1_decode_simple_ber (unsigned int etype, const unsigned char *der,
       do
         {
           unsigned tmp_len;
+          unsigned flags = DECODE_FLAG_HAVE_TAG;
+
+          if (dflags & DECODE_FLAG_LEVEL1)
+                flags |= DECODE_FLAG_LEVEL2;
+          else if (dflags & DECODE_FLAG_LEVEL2)
+		flags |= DECODE_FLAG_LEVEL3;
+	  else
+		flags |= DECODE_FLAG_LEVEL1;
 
-          result = asn1_decode_simple_ber(etype, p, der_len, &out, &out_len, &tmp_len);
+          result = _asn1_decode_simple_ber(etype, p, der_len, &out, &out_len, &tmp_len,
+                                           flags);
           if (result != ASN1_SUCCESS)
             {
               warn();
--
libgit2 0.26.0

></div><div class='content'><table class='list nowrap'><tr class='nohover'><th class='left'>Age</th><th class='left'>Commit message (<a href='/guix/log/gnu/services/mail.scm?id=184bb5a137ce137eb81a0fe590d14e36e45cb15c'>Collapse</a>)</th><th class='left'>Author</th></tr>
<tr class='logheader'><td><span title='2020-12-27 19:32:09 +0100'>2020-12-27</span></td><td class='logsubject'><a href='/guix/commit/gnu/services/mail.scm?id=b4db11364185e035de3d8c335b1a66eddeeeb84c'>services: Add radicale-service-type.</a></td><td>Jonathan Brielmaier</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
* gnu/services/mail.scm (radicale-configuration)
(radicale-configuration?): New procedures.
(%default-radicale-config-file)
(radicale-service-type): New variables.
* doc/guix.texi: Document it.


</td></tr>
<tr class='logheader'><td><span title='2020-09-11 22:38:08 +0200'>2020-09-11</span></td><td class='logsubject'><a href='/guix/commit/gnu/services/mail.scm?id=d9d88c2ff0d367599d0a851ccf9377c4e21079d6'>Revert "services: dovecot: Use modules via symlink to system profile."</a></td><td>Tobias Geerinckx-Rice</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
This reverts commit bcfe0f0c1e9a2b91049d7c6c591c7f0c6a002c14 for now.

It breaks most current use(r)s of the Dovecot service and needs to be
combined with an extra modules configuration field of some kind.

See &lt;https://issues.guix.gnu.org/43347&gt;.


</td></tr>
<tr class='logheader'><td><span title='2020-09-11 16:28:01 +0200'>2020-09-11</span></td><td class='logsubject'><a href='/guix/commit/gnu/services/mail.scm?id=a16400919f9e589b7161372c3c97f56b5cf52091'>services: dovecot: Only serialize settings with non-empty values.</a></td><td>Alexey Abramov</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
* gnu/services/mail.scm (serialize-space-separated-string-list): Protocols
might have custom settings, which are not supported by other protocols. To
prevent dovecot/services from crashing, serialize settings that hold non-empty
values only.

Signed-off-by: Tobias Geerinckx-Rice &lt;me@tobias.gr&gt;


</td></tr>
<tr class='logheader'><td><span title='2020-09-09 20:37:07 +0200'>2020-09-09</span></td><td class='logsubject'><a href='/guix/commit/gnu/services/mail.scm?id=22470c88af9b2ec94cc2521ec67f8dee9c2cbb37'>services: dovecot: Serialize global settings first.</a></td><td>Alexey Abramov</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
* gnu/services/mail.scm (dovecot-configuration): To avoid dovecot warning
messages, move serialization of protocol settings below the global one.

Signed-off-by: Tobias Geerinckx-Rice &lt;me@tobias.gr&gt;


</td></tr>
<tr class='logheader'><td><span title='2020-09-09 20:37:07 +0200'>2020-09-09</span></td><td class='logsubject'><a href='/guix/commit/gnu/services/mail.scm?id=bcfe0f0c1e9a2b91049d7c6c591c7f0c6a002c14'>services: dovecot: Use modules via symlink to system profile.</a></td><td>Alexey Abramov</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
* gnu/services/mail.scm (%dovecot-activation): Link the location with multiple
plugins (dovecot-pigeonhole, etc), to a place where dovecot can find them.
* gnu/services/mail.scm (dovecot-configuration): Use the symlink.

Signed-off-by: Tobias Geerinckx-Rice &lt;me@tobias.gr&gt;


</td></tr>
<tr class='logheader'><td><span title='2020-04-21 00:06:40 +0200'>2020-04-21</span></td><td class='logsubject'><a href='/guix/commit/gnu/services/mail.scm?id=b25ecfa2e0ab6642dc35f7f68a24117e33f5795f'>services: dovecot: 'stop' method returns #f upon success.</a></td><td>Ludovic Courtès</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
* gnu/services/mail.scm (dovecot-shepherd-service)[stop]: Use 'invoke'
instead of 'make-forkexec-constructor'.  Previously, the 'stop' method
would return the PID of the "dovecot stop" process, which would be
interpreted as a failure to stop the service.


</td></tr>
<tr class='logheader'><td><span title='2020-03-16 14:05:52 +0100'>2020-03-16</span></td><td class='logsubject'><a href='/guix/commit/gnu/services/mail.scm?id=a37e03d60e18dfcf119d0b92d9008e54fc350bf1'>tests: opensmtpd: Check /var/spool/mail instead of /var/mail.</a></td><td>Ludovic Courtès</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
The test had been failing since the upgrade to 6.6.3p1 in commit
2dbfd8eec43b602d23cee3fdd2842cc333e36c24.

* gnu/services/mail.scm (opensmtpd-activation): Create /var/spool/mail.
* gnu/tests/mail.scm (run-opensmtpd-test): Check /var/spool/mail instead
of /var/mail.


</td></tr>

Age	Commit message (Collapse)	Author
2020-12-27	services: Add radicale-service-type.	Jonathan Brielmaier
	* gnu/services/mail.scm (radicale-configuration) (radicale-configuration?): New procedures. (%default-radicale-config-file) (radicale-service-type): New variables. * doc/guix.texi: Document it.
2020-09-11	Revert "services: dovecot: Use modules via symlink to system profile."	Tobias Geerinckx-Rice
	This reverts commit bcfe0f0c1e9a2b91049d7c6c591c7f0c6a002c14 for now. It breaks most current use(r)s of the Dovecot service and needs to be combined with an extra modules configuration field of some kind. See <https://issues.guix.gnu.org/43347>.
2020-09-11	services: dovecot: Only serialize settings with non-empty values.	Alexey Abramov
	* gnu/services/mail.scm (serialize-space-separated-string-list): Protocols might have custom settings, which are not supported by other protocols. To prevent dovecot/services from crashing, serialize settings that hold non-empty values only. Signed-off-by: Tobias Geerinckx-Rice <me@tobias.gr>
2020-09-09	services: dovecot: Serialize global settings first.	Alexey Abramov
	* gnu/services/mail.scm (dovecot-configuration): To avoid dovecot warning messages, move serialization of protocol settings below the global one. Signed-off-by: Tobias Geerinckx-Rice <me@tobias.gr>
2020-09-09	services: dovecot: Use modules via symlink to system profile.	Alexey Abramov
	* gnu/services/mail.scm (%dovecot-activation): Link the location with multiple plugins (dovecot-pigeonhole, etc), to a place where dovecot can find them. * gnu/services/mail.scm (dovecot-configuration): Use the symlink. Signed-off-by: Tobias Geerinckx-Rice <me@tobias.gr>
2020-04-21	services: dovecot: 'stop' method returns #f upon success.	Ludovic Courtès
	* gnu/services/mail.scm (dovecot-shepherd-service)[stop]: Use 'invoke' instead of 'make-forkexec-constructor'. Previously, the 'stop' method would return the PID of the "dovecot stop" process, which would be interpreted as a failure to stop the service.
2020-03-16	tests: opensmtpd: Check /var/spool/mail instead of /var/mail.	Ludovic Courtès
	The test had been failing since the upgrade to 6.6.3p1 in commit 2dbfd8eec43b602d23cee3fdd2842cc333e36c24. * gnu/services/mail.scm (opensmtpd-activation): Create /var/spool/mail. * gnu/tests/mail.scm (run-opensmtpd-test): Check /var/spool/mail instead of /var/mail.