iperf3: Fix CVE-2025-54350

Message ID	20250919135856.2015585-1-nitin.wankhade333@gmail.com
State	New
Headers	show Return-Path: <philip@balister.org> ip: 209.85.214.169, mailfrom: nitin.wankhade333@gmail.com) From: Nitin Wankhade <nitin.wankhade333@gmail.com> To: openembedded-devel@lists.openembedded.org Cc: nitin.wankhade@kpit.com Subject: [PATCH] iperf3: Fix CVE-2025-54350 Date: Fri, 19 Sep 2025 19:28:56 +0530 Message-Id: <20250919135856.2015585-1-nitin.wankhade333@gmail.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit
Series	iperf3: Fix CVE-2025-54350 \| expand iperf3: Fix CVE-2025-54350

Message ID

20250919135856.2015585-1-nitin.wankhade333@gmail.com

State

New

Headers

From: Nitin Wankhade <nitin.wankhade333@gmail.com>
To: openembedded-devel@lists.openembedded.org
Cc: nitin.wankhade@kpit.com
Subject: [PATCH] iperf3: Fix CVE-2025-54350
Date: Fri, 19 Sep 2025 19:28:56 +0530
Message-Id: <20250919135856.2015585-1-nitin.wankhade333@gmail.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

Series

iperf3: Fix CVE-2025-54350 | expand

Commit Message

Nitin Wankhade Sept. 19, 2025, 1:58 p.m. UTC

From: Nitin Wankhade <nitin.wankhade@kpit.com>

remove assert to prevent crash due to assertion failure
on malformed authentication attempt

Reference: https://github.com/esnet/iperf/commit/4eab661da0bbaac04493fa40164e928c6df7934a

Signed-off-by: Nitin Wankhade <nitin.wankhade333@gmail.com>
---
 .../iperf3/iperf3/CVE-2025-54350.patch        | 25 +++++++++++++++++++
 .../recipes-benchmark/iperf3/iperf3_3.14.bb   |  1 +
 2 files changed, 26 insertions(+)
 create mode 100644 meta-oe/recipes-benchmark/iperf3/iperf3/CVE-2025-54350.patch

diff --git a/meta-oe/recipes-benchmark/iperf3/iperf3/CVE-2025-54350.patch b/meta-oe/recipes-benchmark/iperf3/iperf3/CVE-2025-54350.patch
new file mode 100644
index 0000000000..c02d9ec0a3
--- /dev/null
+++ b/meta-oe/recipes-benchmark/iperf3/iperf3/CVE-2025-54350.patch
@@ -0,0 +1,25 @@ 
+Subject: [PATCH] iperf3: Fix CVE-2025-54350
+
+CVE: CVE-2025-54350
+Upstream-Status: Backport [https://github.com/esnet/iperf/commit/4eab661da0bbaac04493fa40164e928c6df7934a]
+Comment: Patch is refreshed as per codebase of 3.14
+Signed-off-by: Nitin Wankhade <nitin.wankhade333@gmail.com>
+---
+--- a/src/iperf_auth.c	2025-08-19 12:02:47.706337000 +0530
++++ b/src/iperf_auth.c	2025-08-19 13:16:01.653471517 +0530
+@@ -28,7 +28,6 @@
+ #include "iperf_config.h"
+ 
+ #include <string.h>
+-#include <assert.h>
+ #include <time.h>
+ #include <sys/types.h>
+ /* FreeBSD needs _WITH_GETLINE to enable the getline() declaration */
+@@ -150,7 +149,6 @@
+ 
+     BIO_set_flags(bio, BIO_FLAGS_BASE64_NO_NL); //Do not use newlines to flush buffer
+     *length = BIO_read(bio, *buffer, strlen(b64message));
+-    assert(*length == decodeLen); //length should equal decodeLen, else something went horribly wrong
+     BIO_free_all(bio);
+ 
+     return (0); //success
diff --git a/meta-oe/recipes-benchmark/iperf3/iperf3_3.14.bb b/meta-oe/recipes-benchmark/iperf3/iperf3_3.14.bb
index d181eb3b02..41f336a11f 100644
--- a/meta-oe/recipes-benchmark/iperf3/iperf3_3.14.bb
+++ b/meta-oe/recipes-benchmark/iperf3/iperf3_3.14.bb
@@ -16,6 +16,7 @@  LIC_FILES_CHKSUM = "file://LICENSE;md5=dc6301c8256ceb8f71c9e3c2ae9096b9"
 SRC_URI = "git://github.com/esnet/iperf.git;branch=master;protocol=https \
            file://0002-Remove-pg-from-profile_CFLAGS.patch \
            file://0001-configure.ac-check-for-CPP-prog.patch \
+           file://CVE-2025-54350.patch \
            "
 
 SRCREV = "a0be85934144bc04712a6695b14ea6e45c379e1d"