---
- branch: MAIN
  date: Sun Jul 14 15:39:32 UTC 2019
  files:
  - new: '1.76'
    old: '1.75'
    path: pkgsrc/audio/libsndfile/Makefile
    pathrev: pkgsrc/audio/libsndfile/Makefile@1.76
    type: modified
  - new: '1.43'
    old: '1.42'
    path: pkgsrc/audio/libsndfile/distinfo
    pathrev: pkgsrc/audio/libsndfile/distinfo@1.43
    type: modified
  - new: '1.1'
    old: '0'
    path: pkgsrc/audio/libsndfile/patches/patch-CVE-2017-14634
    pathrev: pkgsrc/audio/libsndfile/patches/patch-CVE-2017-14634@1.1
    type: added
  - new: '1.1'
    old: '0'
    path: pkgsrc/audio/libsndfile/patches/patch-CVE-2018-13139
    pathrev: pkgsrc/audio/libsndfile/patches/patch-CVE-2018-13139@1.1
    type: added
  - new: '1.1'
    old: '0'
    path: pkgsrc/audio/libsndfile/patches/patch-src_alaw.c
    pathrev: pkgsrc/audio/libsndfile/patches/patch-src_alaw.c@1.1
    type: added
  - new: '1.1'
    old: '0'
    path: pkgsrc/audio/libsndfile/patches/patch-src_ulaw.c
    pathrev: pkgsrc/audio/libsndfile/patches/patch-src_ulaw.c@1.1
    type: added
  - new: '1.1'
    old: '0'
    path: pkgsrc/audio/libsndfile/patches/patch-src_wav.c
    pathrev: pkgsrc/audio/libsndfile/patches/patch-src_wav.c@1.1
    type: added
  id: 20190714T153932Z.d30921f1880f2698f8553cf3bf2e1321e722a878
  log: |
    libsndfile: Apply patches from upstream's github for these CVEs:

    CVE-2017-14245 - information-disclosure
    CVE-2017-14246 - information-disclosure
    CVE-2017-14634 - denial-of-service
    CVE-2017-17456 - denial-of-service
    CVE-2017-17457 - denial-of-service
    CVE-2017-8362 - denial-of-service
    CVE-2017-8363 - heap-overflow
    CVE-2017-8365 - buffer-overflow
    CVE-2018-13139 - stack-overflow
    CVE-2018-19432 - null-pointer-dereference
    CVE-2018-19661 - denial-of-service
    CVE-2018-19662 - denial-of-service
    CVE-2018-19758 - denial-of-service
    CVE-2019-3832 - denial-of-service

    Bump PKGREVISION.
  module: pkgsrc
  subject: 'CVS commit: pkgsrc/audio/libsndfile'
  unixtime: '1563118772'
  user: nia