rpms/libmodplug/devel libmodplug-0.8-CVE-2006-4192.patch, NONE, 1.1 libmodplug.spec, 1.10, 1.11
Ville Skytta (scop)
fedora-extras-commits at redhat.com
Tue Oct 3 17:05:08 UTC 2006
Author: scop
Update of /cvs/extras/rpms/libmodplug/devel
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv2325/devel
Modified Files:
libmodplug.spec
Added Files:
libmodplug-0.8-CVE-2006-4192.patch
Log Message:
* Tue Oct 3 2006 Ville Skyttä <ville.skytta at iki.fi>
- Apply patch for CVE-2006-4192 (from Debian).
libmodplug-0.8-CVE-2006-4192.patch:
--- NEW FILE libmodplug-0.8-CVE-2006-4192.patch ---
--- libmodplug-0.8/src/sndfile.cpp~ 2006-03-20 05:22:32.000000000 +0200
+++ libmodplug-0.8/src/sndfile.cpp 2006-10-03 19:21:17.000000000 +0300
@@ -1081,7 +1081,7 @@
{
UINT len = 0, mem = pIns->nLength+6;
- if ((!pIns) || (pIns->nLength < 4) || (!lpMemFile)) return 0;
+ if ((!pIns) || ((int)pIns->nLength < 4) || (!lpMemFile)) return 0;
if (pIns->nLength > MAX_SAMPLE_LENGTH) pIns->nLength = MAX_SAMPLE_LENGTH;
pIns->uFlags &= ~(CHN_16BIT|CHN_STEREO);
if (nFlags & RSF_16BIT)
Index: libmodplug.spec
===================================================================
RCS file: /cvs/extras/rpms/libmodplug/devel/libmodplug.spec,v
retrieving revision 1.10
retrieving revision 1.11
diff -u -r1.10 -r1.11
--- libmodplug.spec 28 Aug 2006 16:08:17 -0000 1.10
+++ libmodplug.spec 3 Oct 2006 17:05:08 -0000 1.11
@@ -1,6 +1,6 @@
Name: libmodplug
Version: 0.8
-Release: 2%{?dist}
+Release: 3%{?dist}
Epoch: 1
Summary: Modplug mod music file format library
@@ -8,6 +8,7 @@
License: Public Domain
URL: http://modplug-xmms.sourceforge.net/
Source0: http://dl.sf.net/modplug-xmms/%{name}-%{version}.tar.gz
+Patch0: %{name}-0.8-CVE-2006-4192.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)
%description
@@ -25,6 +26,7 @@
%prep
%setup -q
+%patch0 -p1
chmod -c -x AUTHORS ChangeLog COPYING src/*.{cpp,h} src/libmodplug/*.h
sed -i -e 's/\r//g' ChangeLog
@@ -66,6 +68,9 @@
%changelog
+* Tue Oct 3 2006 Ville Skyttä <ville.skytta at iki.fi> - 1:0.8-3
+- Apply patch for CVE-2006-4192 (from Debian).
+
* Mon Aug 28 2006 Ville Skyttä <ville.skytta at iki.fi> - 1:0.8-2
- Rebuild.
More information about the scm-commits
mailing list