head	1.2;
access;
symbols
	pkgsrc-2013Q2:1.2.0.4
	pkgsrc-2013Q2-base:1.2
	pkgsrc-2012Q4:1.2.0.2
	pkgsrc-2012Q4-base:1.2
	pkgsrc-2011Q4:1.1.0.2;
locks; strict;
comment	@# @;


1.2
date	2012.02.21.13.05.57;	author drochner;	state dead;
branches;
next	1.1;

1.1
date	2012.02.17.12.23.24;	author drochner;	state Exp;
branches
	1.1.2.1;
next	;

1.1.2.1
date	2012.02.17.12.23.24;	author tron;	state dead;
branches;
next	1.1.2.2;

1.1.2.2
date	2012.02.18.23.17.50;	author tron;	state Exp;
branches;
next	;


desc
@@


1.2
log
@update to 1.3.3
integrates the fix for CVE-2012-0444
@
text
@$NetBSD: patch-CVE-2012-0444,v 1.1 2012/02/17 12:23:24 drochner Exp $

changeset #18151

--- lib/floor1.c.orig	2010-10-23 04:31:21.000000000 +0000
+++ lib/floor1.c
@@@@ -167,6 +167,7 @@@@ static vorbis_info_floor *floor1_unpack 
 
   for(j=0,k=0;j<info->partitions;j++){
     count+=info->class_dim[info->partitionclass[j]];
+    if(count>VIF_POSIT) goto err_out;
     for(;k<count;k++){
       int t=info->postlist[k+2]=oggpack_read(opb,rangebits);
       if(t<0 || t>=(1<<rangebits))
@


1.1
log
@add patch from upstream to fix possible memory corruption by
malicious Ogg Vorbis files
bump PKGREV
@
text
@d1 1
a1 1
$NetBSD$
@


1.1.2.1
log
@file patch-CVE-2012-0444 was added on branch pkgsrc-2011Q4 on 2012-02-18 23:17:50 +0000
@
text
@d1 14
@


1.1.2.2
log
@Pullup ticket #3684 - requested by drochner
audio/libvorbis: security patch

Revisions pulled up:
- audio/libvorbis/Makefile                                      1.52
- audio/libvorbis/distinfo                                      1.21
- audio/libvorbis/patches/patch-CVE-2012-0444                   1.1

---
   Module Name:    pkgsrc
   Committed By:   drochner
   Date:           Fri Feb 17 12:23:24 UTC 2012

   Modified Files:
           pkgsrc/audio/libvorbis: Makefile distinfo
   Added Files:
           pkgsrc/audio/libvorbis/patches: patch-CVE-2012-0444

   Log Message:
   add patch from upstream to fix possible memory corruption by
   malicious Ogg Vorbis files
   bump PKGREV
@
text
@a0 14
$NetBSD$

changeset #18151

--- lib/floor1.c.orig	2010-10-23 04:31:21.000000000 +0000
+++ lib/floor1.c
@@@@ -167,6 +167,7 @@@@ static vorbis_info_floor *floor1_unpack 
 
   for(j=0,k=0;j<info->partitions;j++){
     count+=info->class_dim[info->partitionclass[j]];
+    if(count>VIF_POSIT) goto err_out;
     for(;k<count;k++){
       int t=info->postlist[k+2]=oggpack_read(opb,rangebits);
       if(t<0 || t>=(1<<rangebits))
@