Viewing all changes in revision 13.
- Committer: Package Import Robot
- Date: 2014-04-02 09:06:57 UTC
- Revision ID: package-import@ubuntu.com-20140402090657-2nnca4ahlevkn2ug
* Add various patches from Daniel Kobras' mpg123 packaging to fix
buffer overflows in the embedded copy/fork of mpglib
- CVE-2003-0577 (originally #201698 in mpg123)
- CVE-2004-0805 (originally #270542 in mpg123)
- CVE-2004-0991
- CVE-2006-1655 (originally #361863 in mpg123)
(Closes: #740268)
buffer overflows in the embedded copy/fork of mpglib
- CVE-2003-0577 (originally #201698 in mpg123)
- CVE-2004-0805 (originally #270542 in mpg123)
- CVE-2004-0991
- CVE-2006-1655 (originally #361863 in mpg123)
(Closes: #740268)
- files added:
- .pc/.quilt_patches
- .pc/0011-CVE-2004-0805-layer2.c-fix-buffer-overflow-in-layer2.patch
- .pc/0011-CVE-2004-0805-layer2.c-fix-buffer-overflow-in-layer2.patch/mpglibDBL
- .pc/0012-CVE-2006-1655-fix-heap-overflow-in-layer3.c-III_anti.patch
- .pc/0012-CVE-2006-1655-fix-heap-overflow-in-layer3.c-III_anti.patch/mpglibDBL
- .pc/0013-CVE-2004-0991-fix-insufficient-validation-of-MPEG-he.patch
- .pc/0013-CVE-2004-0991-fix-insufficient-validation-of-MPEG-he.patch/mpglibDBL
- .pc/0014-CVE-2004-0991-copy-frame-size-checking-from-mpg123-0.patch
- .pc/0014-CVE-2004-0991-copy-frame-size-checking-from-mpg123-0.patch/mpglibDBL
- .pc/0015-CVE-2003-0577-common.c-0000-is-also-an-invalid-bit-r.patch
- .pc/0015-CVE-2003-0577-common.c-0000-is-also-an-invalid-bit-r.patch/mpglibDBL
- .pc/0016-Increase-MAXFRAMESIZE-to-3456-bytes-which-is-much-cl.patch
- .pc/0016-Increase-MAXFRAMESIZE-to-3456-bytes-which-is-much-cl.patch/mpglibDBL
- files modified:
- .pc/applied-patches
expand all
collapse all
added
removed
