CVS: cvs.openbsd.org: ports

Christian Weisgerber Fri, 16 Mar 2018 14:45:07 -0700

CVSROOT:        /cvs
Module name:    ports
Changes by:     [email protected]   2018/03/16 15:44:10


Modified files:
        audio/libvorbis: Makefile distinfo 
        audio/libvorbis/patches: patch-configure 
        audio/libvorbis/pkg: PLIST 

Log message:
Security update to 1.3.6:
* Fix CVE-2018-5146 - out-of-bounds write on codebook decoding.
* Fix CVE-2017-14632 - free() on unitialized data
* Fix CVE-2017-14633 - out-of-bounds read
* Fix bitrate metadata parsing.
* Fix out-of-bounds read in codebook parsing.
* Fix residue vector size in Vorbis I spec.

CVS: cvs.openbsd.org: ports

Reply via email to