head	1.4;
access;
symbols
	pkgsrc-2013Q2:1.4.0.8
	pkgsrc-2013Q2-base:1.4
	pkgsrc-2012Q4:1.4.0.6
	pkgsrc-2012Q4-base:1.4
	pkgsrc-2011Q4:1.4.0.4
	pkgsrc-2011Q4-base:1.4
	pkgsrc-2011Q2:1.4.0.2
	pkgsrc-2011Q2-base:1.4
	pkgsrc-2010Q3:1.3.0.24
	pkgsrc-2010Q3-base:1.3
	pkgsrc-2010Q2:1.3.0.22
	pkgsrc-2010Q2-base:1.3
	pkgsrc-2010Q1:1.3.0.20
	pkgsrc-2010Q1-base:1.3
	pkgsrc-2009Q4:1.3.0.18
	pkgsrc-2009Q4-base:1.3
	pkgsrc-2009Q3:1.3.0.16
	pkgsrc-2009Q3-base:1.3
	pkgsrc-2009Q2:1.3.0.14
	pkgsrc-2009Q2-base:1.3
	pkgsrc-2009Q1:1.3.0.12
	pkgsrc-2009Q1-base:1.3
	pkgsrc-2008Q4:1.3.0.10
	pkgsrc-2008Q4-base:1.3
	pkgsrc-2008Q3:1.3.0.8
	pkgsrc-2008Q3-base:1.3
	cube-native-xorg:1.3.0.6
	cube-native-xorg-base:1.3
	pkgsrc-2008Q2:1.3.0.4
	pkgsrc-2008Q2-base:1.3
	cwrapper:1.3.0.2
	pkgsrc-2008Q1:1.2.0.2
	pkgsrc-2008Q1-base:1.2
	pkgsrc-2007Q4:1.1.0.18
	pkgsrc-2007Q4-base:1.1
	pkgsrc-2007Q3:1.1.0.16
	pkgsrc-2007Q3-base:1.1
	pkgsrc-2007Q2:1.1.0.14
	pkgsrc-2007Q2-base:1.1
	pkgsrc-2007Q1:1.1.0.12
	pkgsrc-2007Q1-base:1.1
	pkgsrc-2006Q4:1.1.0.10
	pkgsrc-2006Q4-base:1.1
	pkgsrc-2006Q3:1.1.0.8
	pkgsrc-2006Q3-base:1.1
	pkgsrc-2006Q2:1.1.0.6
	pkgsrc-2006Q2-base:1.1
	pkgsrc-2006Q1:1.1.0.4
	pkgsrc-2006Q1-base:1.1
	pkgsrc-2005Q4:1.1.0.2
	pkgsrc-2005Q4-base:1.1;
locks; strict;
comment	@# @;


1.4
date	2010.11.09.13.13.03;	author adam;	state dead;
branches;
next	1.3;

1.3
date	2008.04.29.05.51.10;	author wiz;	state Exp;
branches;
next	1.2;

1.2
date	2008.03.14.18.55.54;	author wiz;	state dead;
branches
	1.2.2.1;
next	1.1;

1.1
date	2005.10.03.15.59.13;	author joerg;	state Exp;
branches;
next	;

1.2.2.1
date	2008.04.30.09.23.27;	author rtr;	state Exp;
branches;
next	;


desc
@@


1.4
log
@Changes 1.4.0:
* Implement corrected channel mappings for all input and playback file types
* Correct an possible infinite loop in WAV input reading code when header is
  corrupt
* Implement disable_coupling option for oggenc
* Fix Ctrl-C lockup bug in ogg123
* ogg123 playback in sorted order
* Add WAVEFORMATEXTENSIBLE support
* More translations
* Add '-' as stdin/out filename in vcut
* Add -lnetwork check for socket in configure
* Remove 'extra' F parameter from ogg123 remote output
@
text
@$NetBSD: patch-ad,v 1.3 2008/04/29 05:51:10 wiz Exp $

https://trac.xiph.org/attachment/ticket/1347/vorbis-tools-1.2.0-sec.patch
for
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1686

--- ogg123/speex_format.c.orig	2008-03-03 06:37:26.000000000 +0100
+++ ogg123/speex_format.c
@@@@ -475,7 +475,7 @@@@ void *process_header(ogg_packet *op, int
            cb->printf_error(callback_arg, ERROR, _("Cannot read header"));
      return NULL;
    }
-   if ((*header)->mode >= SPEEX_NB_MODES) {
+   if ((*header)->mode >= SPEEX_NB_MODES || (*header)->mode < 0) {
      cb->printf_error(callback_arg, ERROR, 
 		      _("Mode number %d does not (any longer) exist in this version"),
 	      (*header)->mode);
@


1.3
log
@Add upstream patch fixing
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1686
Bump PKGREVISION.
@
text
@d1 1
a1 1
$NetBSD$
@


1.2
log
@Update to 1.2.0:

vorbis-tools 1.2.0 -- 2008-02-21

 * FLAC support now relies on libFLAC
 * Support for large files
 * Fixed acinclude.m4 to properly support --no switches
 * ogg123: added remote control support
 * ogg123: fixed a bug in esd when pressing CTRL + C
 * ogg123: fixed a type mismatch in option parsing for 64 bit systems
 * ogg123: configuration no longer hardcoded to /etc
 * oggdec: limited support for chained Ogg bitstreams
 * ogg123: compiles with older versions of libcurl
 * oggdec: support decoding of multiple files into a single one
 * oggenc: -k, switch for Skeleton bitstream encoding
 * oggenc: fixed issues with Skeleton on big endian systems
 * oggenc: proper 5.1 channel mapping support
 * oggenc: FLAC module does not confuse every Ogg file as its own
 * oggenc: compiles with older versions of libvorbis
 * ogginfo: recognizes Skeleton, Dirac, FLAC and Kate bitstreams
 * vcut: solved issues described in ticket #1313
 * vorbiscomment: support for creation of long comments
 * vorbiscomment: support for multiplexed Vorbis
 * Several minor bug fixes
@
text
@d1 1
a1 1
$NetBSD: patch-ad,v 1.1 2005/10/03 15:59:13 joerg Exp $
d3 15
a17 10
--- ogg123/playlist.c.orig	2005-08-17 20:03:15.000000000 +0000
+++ ogg123/playlist.c
@@@@ -19,6 +19,7 @@@@
 #include <stdlib.h>
 #include <string.h>
 #include <ctype.h>
+#include <limits.h>
 #include <sys/types.h>
 #include <sys/stat.h>
 #include <unistd.h>
@


1.2.2.1
log
@pullup ticket #2353 - requested by wiz
vorbis-tools: resolves security issue

revisions pulled up:
- pkgsrc/audio/vorbis-tools/Makefile		1.50
- pkgsrc/audio/vorbis-tools/distinfo		1.21
- pkgsrc/audio/vorbis-tools/patches/patch-ad	1.3

   Module Name:	pkgsrc
   Committed By:	wiz
   Date:		Tue Apr 29 05:51:10 UTC 2008

   Modified Files:
   	pkgsrc/audio/vorbis-tools: Makefile distinfo
   Added Files:
   	pkgsrc/audio/vorbis-tools/patches: patch-ad

   Log Message:
   Add upstream patch fixing
   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1686
   Bump PKGREVISION.
@
text
@d1 1
a1 1
$NetBSD: patch-ad,v 1.3 2008/04/29 05:51:10 wiz Exp $
d3 10
a12 15
https://trac.xiph.org/attachment/ticket/1347/vorbis-tools-1.2.0-sec.patch
for
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1686

--- ogg123/speex_format.c.orig	2008-03-03 06:37:26.000000000 +0100
+++ ogg123/speex_format.c
@@@@ -475,7 +475,7 @@@@ void *process_header(ogg_packet *op, int
            cb->printf_error(callback_arg, ERROR, _("Cannot read header"));
      return NULL;
    }
-   if ((*header)->mode >= SPEEX_NB_MODES) {
+   if ((*header)->mode >= SPEEX_NB_MODES || (*header)->mode < 0) {
      cb->printf_error(callback_arg, ERROR, 
 		      _("Mode number %d does not (any longer) exist in this version"),
 	      (*header)->mode);
@


1.1
log
@If you check for NAME_MAX, you should include limits.h. This fixes the
compilation on DragonFly.
@
text
@d1 1
a1 1
$NetBSD$
@