pkgsrc-changes: CVS commit: pkgsrc/multimedia/mpeg

Subject: CVS commit: pkgsrc/multimedia/mpeg_encode
To: None <pkgsrc-changes@NetBSD.org>
From: Lubomir Sedlacik <salo@netbsd.org>
List: pkgsrc-changes
Date: 10/05/2005 11:45:46

Module Name:	pkgsrc
Committed By:	salo
Date:		Wed Oct  5 11:45:46 UTC 2005

Modified Files:
	pkgsrc/multimedia/mpeg_encode: Makefile distinfo
	pkgsrc/multimedia/mpeg_encode/patches: patch-ae
Added Files:
	pkgsrc/multimedia/mpeg_encode/patches: patch-ah patch-ai patch-aj
	    patch-ak patch-al patch-am patch-an

Log Message:
Security fixes for SA17008:

"Vulnerabilities in Berkeley MPEG Tools can be exploited by malicious, local
users to perform certain actions on a vulnerable system with escalated
privileges. The vulnerabilities are caused due to temporary files being
created insecurely in "/tmp."

http://secunia.com/advisories/17008/
http://www.gentoo.org/security/en/glsa/glsa-200510-02.xml

Patches from Gentoo.


To generate a diff of this commit:
cvs rdiff -r1.8 -r1.9 pkgsrc/multimedia/mpeg_encode/Makefile
cvs rdiff -r1.3 -r1.4 pkgsrc/multimedia/mpeg_encode/distinfo
cvs rdiff -r1.1.1.1 -r1.2 pkgsrc/multimedia/mpeg_encode/patches/patch-ae
cvs rdiff -r0 -r1.1 pkgsrc/multimedia/mpeg_encode/patches/patch-ah \
    pkgsrc/multimedia/mpeg_encode/patches/patch-ai \
    pkgsrc/multimedia/mpeg_encode/patches/patch-aj \
    pkgsrc/multimedia/mpeg_encode/patches/patch-ak \
    pkgsrc/multimedia/mpeg_encode/patches/patch-al \
    pkgsrc/multimedia/mpeg_encode/patches/patch-am \
    pkgsrc/multimedia/mpeg_encode/patches/patch-an

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.