r1028 - trunk/mpg123

djensen Tue, 26 Jul 2005 20:17:37 -0700

Author: djensen
Date: 2005-07-26 21:17:28 -0600 (Tue, 26 Jul 2005)
New Revision: 1028


Added:
   trunk/mpg123/mpg123-0.59r-security-1.patch
Log:
mpg123 security patch

Added: trunk/mpg123/mpg123-0.59r-security-1.patch
===================================================================
--- trunk/mpg123/mpg123-0.59r-security-1.patch  2005-07-26 23:31:12 UTC (rev 
1027)
+++ trunk/mpg123/mpg123-0.59r-security-1.patch  2005-07-27 03:17:28 UTC (rev 
1028)
@@ -0,0 +1,25 @@
+Submitted By: David Jensen (djensen at linuxfromscratch dot org)
+Date: 2005-07-23
+Initial Package Version: 0.59r
+Origin: Debian
+Upstream Status: not maintained
+Description: Fixes buffer overflow vulnerablity (CAN-2004-0805)
+ 
+$LastChangedBy$
+$Date$
+
+diff -Naur mpg123-0.59r.orig/layer2.c mpg123-0.59r/layer2.c
+--- mpg123-0.59r.orig/layer2.c 1999-02-10 06:13:06.000000000 -0600
++++ mpg123-0.59r/layer2.c      2005-07-23 16:44:07.000000000 -0500
+@@ -265,6 +265,11 @@
+   fr->jsbound = (fr->mode == MPG_MD_JOINT_STEREO) ?
+      (fr->mode_ext<<2)+4 : fr->II_sblimit;
+ 
++  if (fr->jsbound > fr->II_sblimit) {
++        fprintf(stderr, "Truncating stereo boundary to sideband limit.\n");
++        fr->jsbound=fr->II_sblimit;
++  }
++  
+   if(stereo == 1 || single == 3)
+     single = 0;
+ 


Property changes on: trunk/mpg123/mpg123-0.59r-security-1.patch
___________________________________________________________________
Name: svn:keywords
   + LastChangedBy Date

-- 
http://linuxfromscratch.org/mailman/listinfo/patches
FAQ: http://www.linuxfromscratch.org/faq/
Unsubscribe: See the above information page

r1028 - trunk/mpg123

Reply via email to