rpms/libmodplug/devel libmodplug-0.8-CVE-2006-4192.patch, NONE, 1.1 libmodplug.spec, 1.10, 1.11

Ville Skytta (scop) fedora-extras-commits at redhat.com
Tue Oct 3 17:05:08 UTC 2006 

Author: scop

Update of /cvs/extras/rpms/libmodplug/devel
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv2325/devel

Modified Files:
	libmodplug.spec 
Added Files:
	libmodplug-0.8-CVE-2006-4192.patch 
Log Message:
* Tue Oct  3 2006 Ville Skyttä <ville.skytta at iki.fi>
- Apply patch for CVE-2006-4192 (from Debian).


libmodplug-0.8-CVE-2006-4192.patch:

--- NEW FILE libmodplug-0.8-CVE-2006-4192.patch ---
--- libmodplug-0.8/src/sndfile.cpp~	2006-03-20 05:22:32.000000000 +0200
+++ libmodplug-0.8/src/sndfile.cpp	2006-10-03 19:21:17.000000000 +0300
@@ -1081,7 +1081,7 @@
 {
 	UINT len = 0, mem = pIns->nLength+6;
 
-	if ((!pIns) || (pIns->nLength < 4) || (!lpMemFile)) return 0;
+	if ((!pIns) || ((int)pIns->nLength < 4) || (!lpMemFile)) return 0;
 	if (pIns->nLength > MAX_SAMPLE_LENGTH) pIns->nLength = MAX_SAMPLE_LENGTH;
 	pIns->uFlags &= ~(CHN_16BIT|CHN_STEREO);
 	if (nFlags & RSF_16BIT)


Index: libmodplug.spec
===================================================================
RCS file: /cvs/extras/rpms/libmodplug/devel/libmodplug.spec,v
retrieving revision 1.10
retrieving revision 1.11
diff -u -r1.10 -r1.11
--- libmodplug.spec	28 Aug 2006 16:08:17 -0000	1.10
+++ libmodplug.spec	3 Oct 2006 17:05:08 -0000	1.11
@@ -1,6 +1,6 @@
 Name:           libmodplug
 Version:        0.8
-Release:        2%{?dist}
+Release:        3%{?dist}
 Epoch:          1
 Summary:        Modplug mod music file format library
 
@@ -8,6 +8,7 @@
 License:        Public Domain
 URL:            http://modplug-xmms.sourceforge.net/
 Source0:        http://dl.sf.net/modplug-xmms/%{name}-%{version}.tar.gz
+Patch0:         %{name}-0.8-CVE-2006-4192.patch
 BuildRoot:      %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)
 
 %description
@@ -25,6 +26,7 @@
 
 %prep
 %setup -q
+%patch0 -p1
 chmod -c -x AUTHORS ChangeLog COPYING src/*.{cpp,h} src/libmodplug/*.h
 sed -i -e 's/\r//g' ChangeLog
 
@@ -66,6 +68,9 @@
 
 
 %changelog
+* Tue Oct  3 2006 Ville Skyttä <ville.skytta at iki.fi> - 1:0.8-3
+- Apply patch for CVE-2006-4192 (from Debian).
+
 * Mon Aug 28 2006 Ville Skyttä <ville.skytta at iki.fi> - 1:0.8-2
 - Rebuild.

More information about the scm-commits mailing list