Subject: CVS commit: [pkgsrc-2005Q3] pkgsrc/multimedia
To: None <pkgsrc-changes@NetBSD.org>
From: Stoned Elipot <seb@netbsd.org>
List: pkgsrc-changes
Date: 12/12/2005 13:18:47
Module Name: pkgsrc
Committed By: seb
Date: Mon Dec 12 13:18:47 UTC 2005
Modified Files:
pkgsrc/multimedia/gmplayer [pkgsrc-2005Q3]: Makefile distinfo
pkgsrc/multimedia/mencoder [pkgsrc-2005Q3]: Makefile
pkgsrc/multimedia/mplayer [pkgsrc-2005Q3]: Makefile
pkgsrc/multimedia/mplayer-share [pkgsrc-2005Q3]: distinfo
Added Files:
pkgsrc/multimedia/mplayer-share/patches [pkgsrc-2005Q3]: patch-ai
Log Message:
Pullup ticket 952 - requested by Lubomir Sedlacik
Security fix via patch for mplayer, gmplayer and mencoder.
Module Name: pkgsrc
Committed By: salo
Date: Sat Dec 10 23:34:42 UTC 2005
Modified Files:
pkgsrc/multimedia/gmplayer: Makefile distinfo
pkgsrc/multimedia/mencoder: Makefile
pkgsrc/multimedia/mplayer: Makefile
pkgsrc/multimedia/mplayer-share: distinfo
Added Files:
pkgsrc/multimedia/mplayer-share/patches: patch-ai
Log Message:
Security fix for SA17892:
"A vulnerability in FFmpeg libavcodec can be exploited by malicious people
to cause a DoS (Denial of Service) and potentially to compromise a user's
system."
http://secunia.com/advisories/17892/
Fix from ffmpeg CVS repository, libavcodec/utils.c rev. 1.162:
"default_get_buffer() cleanup
fixes probably exploitable heap overflow
heap overflow found by (Simon Kilvington)"
To generate a diff of this commit:
cvs rdiff -r1.37 -r1.37.2.1 pkgsrc/multimedia/gmplayer/Makefile
cvs rdiff -r1.29 -r1.29.2.1 pkgsrc/multimedia/gmplayer/distinfo
cvs rdiff -r1.22 -r1.22.2.1 pkgsrc/multimedia/mencoder/Makefile
cvs rdiff -r1.20 -r1.20.2.1 pkgsrc/multimedia/mplayer/Makefile
cvs rdiff -r1.23 -r1.23.2.1 pkgsrc/multimedia/mplayer-share/distinfo
cvs rdiff -r0 -r1.1.2.1 pkgsrc/multimedia/mplayer-share/patches/patch-ai
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.