From c7ceef8fd341c8c991ff7a4bb9d4429e4002ed17 Mon Sep 17 00:00:00 2001
From: yixiangzhike <yixiangzhike007@163.com>
Date: Tue, 25 Oct 2022 10:46:01 +0800
Subject: [PATCH] fix CVE-2021-46848

Signed-off-by: yixiangzhike <yixiangzhike007@163.com>
(cherry picked from commit 3094eea5463dd89f39e01e1a22e458b43b381ecc)
---
 ...ff-by-one-array-size-check-Closes-32.patch | 29 +++++++++++++++++++
 libtasn1.spec                                 |  6 +++-
 2 files changed, 34 insertions(+), 1 deletion(-)
 create mode 100644 backport-CVE-2021-46848-Fix-ETYPE_OK-off-by-one-array-size-check-Closes-32.patch

diff --git a/backport-CVE-2021-46848-Fix-ETYPE_OK-off-by-one-array-size-check-Closes-32.patch b/backport-CVE-2021-46848-Fix-ETYPE_OK-off-by-one-array-size-check-Closes-32.patch
new file mode 100644
index 0000000..6ecff92
--- /dev/null
+++ b/backport-CVE-2021-46848-Fix-ETYPE_OK-off-by-one-array-size-check-Closes-32.patch
@@ -0,0 +1,29 @@
+From 44a700d2051a666235748970c2df047ff207aeb5 Mon Sep 17 00:00:00 2001
+From: Simon Josefsson <simon@josefsson.org>
+Date: Wed, 17 Aug 2022 12:25:06 +0200
+Subject: [PATCH] Fix ETYPE_OK off by one array size check.  Closes: #32.
+
+Reported by David Trabish in
+<https://gitlab.com/gnutls/libtasn1/-/issues/32>.
+
+Signed-off-by: Simon Josefsson <simon@josefsson.org>
+---
+ lib/int.h | 2 +-
+ 1 files changed, 1 insertions(+), 1 deletion(-)
+
+diff --git a/lib/int.h b/lib/int.h
+index 488c118..d94d51c 100644
+--- a/lib/int.h
++++ b/lib/int.h
+@@ -97,7 +97,7 @@ typedef struct tag_and_class_st
+ #define ETYPE_TAG(etype) (_asn1_tags[etype].tag)
+ #define ETYPE_CLASS(etype) (_asn1_tags[etype].class)
+ #define ETYPE_OK(etype) (((etype) != ASN1_ETYPE_INVALID && \
+-                          (etype) <= _asn1_tags_size && \
++                          (etype) < _asn1_tags_size && \
+                           _asn1_tags[(etype)].desc != NULL)?1:0)
+ 
+ #define ETYPE_IS_STRING(etype) ((etype == ASN1_ETYPE_GENERALSTRING || \
+-- 
+2.27.0
+
diff --git a/libtasn1.spec b/libtasn1.spec
index b7bea76..1011b8f 100644
--- a/libtasn1.spec
+++ b/libtasn1.spec
@@ -1,7 +1,7 @@
 Summary:	Libtasn1 is a ASN.1 parsing library
 Name:		libtasn1
 Version:	4.16.0
-Release:	1
+Release:	2
 
 # The libtasn1 library is LGPLv2+, utilities are GPLv3+
 License:	GPLv3+ and LGPLv2+
@@ -10,6 +10,7 @@ Source0:	http://ftp.gnu.org/gnu/libtasn1/%name-%version.tar.gz
 Source1:	http://ftp.gnu.org/gnu/libtasn1/%name-%version.tar.gz.sig
 
 Patch0:         fix-memleaks-in-asn1-arrat2tree.patch
+Patch1:         backport-CVE-2021-46848-Fix-ETYPE_OK-off-by-one-array-size-check-Closes-32.patch
 
 BuildRequires:	gcc, autoconf, automake, libtool, gnupg2, bison, pkgconfig, help2man, valgrind-devel
 Provides: bundled(gnulib) = 20130324
@@ -80,6 +81,9 @@ test "$1" = 0 -a -f %_infodir/%name.info.gz && \
 %{_infodir}/*.info.*
 
 %changelog
+* Tue Oct 25 2022 yixiangzhike <yixiangzhike007@163.com> - 4.16.0-2
+- fix CVE-2021-46848
+
 * Thu Aug 27 2020 yangzhuangzhuang <yangzhuangzhuang1@huawei.com> - 4.16.0-1
 - update version to 4.16.0
 
-- 
Gitee