Pullup ticket #2861 - requested by kefren vlc08: security patch Revisions pulled up: - multimedia/vlc08/Makefile 1.22 - multimedia/vlc08/distinfo 1.9 - multimedia/vlc08/patches/patch-ab 1.7 --- Module Name: pkgsrc Committed By: kefren Date: Sun Aug 9 12:33:14 UTC 2009 Modified Files: pkgsrc/multimedia/vlc08: Makefile distinfo Added Files: pkgsrc/multimedia/vlc08/patches: patch-ab Log Message: add fix for SA36037, bump PKGREVISION. XXX: not testeddiff -r1.20 -r1.20.2.1 pkgsrc/multimedia/vlc08/Makefile
(tron)
@@ -1,20 +1,20 @@ | @@ -1,20 +1,20 @@ | |||
1 | # $NetBSD: Makefile,v 1.20 2009/06/12 17:24:54 ahoka Exp $ | 1 | # $NetBSD: Makefile,v 1.20.2.1 2009/08/14 15:24:05 tron Exp $ | |
2 | # | 2 | # | |
3 | 3 | |||
4 | DISTNAME= vlc-${VLC_VER} | 4 | DISTNAME= vlc-${VLC_VER} | |
5 | PKGNAME= vlc08-${VLC_VER} | 5 | PKGNAME= vlc08-${VLC_VER} | |
6 | VLC_VER= 0.8.6i | 6 | VLC_VER= 0.8.6i | |
7 | PKGREVISION= 4 | 7 | PKGREVISION= 5 | |
8 | CATEGORIES= multimedia | 8 | CATEGORIES= multimedia | |
9 | MASTER_SITES= http://download.videolan.org/pub/videolan/vlc/${VLC_VER}/ | 9 | MASTER_SITES= http://download.videolan.org/pub/videolan/vlc/${VLC_VER}/ | |
10 | EXTRACT_SUFX= .tar.bz2 | 10 | EXTRACT_SUFX= .tar.bz2 | |
11 | 11 | |||
12 | MAINTAINER= pkgsrc-users@NetBSD.org | 12 | MAINTAINER= pkgsrc-users@NetBSD.org | |
13 | HOMEPAGE= http://www.videolan.org/ | 13 | HOMEPAGE= http://www.videolan.org/ | |
14 | COMMENT= VideoLAN Client | 14 | COMMENT= VideoLAN Client | |
15 | 15 | |||
16 | # Purposely not setting PREV_PKGPATH | 16 | # Purposely not setting PREV_PKGPATH | |
17 | SUPERSEDES= vlc-0.8.* | 17 | SUPERSEDES= vlc-0.8.* | |
18 | 18 | |||
19 | PKG_DESTDIR_SUPPORT= user-destdir | 19 | PKG_DESTDIR_SUPPORT= user-destdir | |
20 | CONFLICTS= vlc-[0-9]* vlc07-[0-9]* | 20 | CONFLICTS= vlc-[0-9]* vlc07-[0-9]* |
@@ -1,10 +1,11 @@ | @@ -1,10 +1,11 @@ | |||
1 | $NetBSD: distinfo,v 1.8 2009/07/02 10:15:47 sborrill Exp $ | 1 | $NetBSD: distinfo,v 1.8.2.1 2009/08/14 15:24:05 tron Exp $ | |
2 | 2 | |||
3 | SHA1 (vlc-0.8.6i.tar.bz2) = 4c6f45dffe3a8309ce201897040dc1f82b9cde99 | 3 | SHA1 (vlc-0.8.6i.tar.bz2) = 4c6f45dffe3a8309ce201897040dc1f82b9cde99 | |
4 | RMD160 (vlc-0.8.6i.tar.bz2) = a5da4e1e0980594c678c04016491c8a373df4017 | 4 | RMD160 (vlc-0.8.6i.tar.bz2) = a5da4e1e0980594c678c04016491c8a373df4017 | |
5 | Size (vlc-0.8.6i.tar.bz2) = 11786172 bytes | 5 | Size (vlc-0.8.6i.tar.bz2) = 11786172 bytes | |
6 | SHA1 (patch-aa) = 497a83bb0f1e2c095a81aa84115e66b56dd47e2c | 6 | SHA1 (patch-aa) = 497a83bb0f1e2c095a81aa84115e66b56dd47e2c | |
7 | SHA1 (patch-ab) = df3a58d361ad0767dab78f7fae7891aee6143c6c | |||
7 | SHA1 (patch-mmstu.c) = ef4bed6fb5871790bb9198dad4961384f3e38d16 | 8 | SHA1 (patch-mmstu.c) = ef4bed6fb5871790bb9198dad4961384f3e38d16 | |
8 | SHA1 (patch-mmstu.h) = a11be24360948bcd8ca32bd7d01020e34c0801ad | 9 | SHA1 (patch-mmstu.h) = a11be24360948bcd8ca32bd7d01020e34c0801ad | |
9 | SHA1 (patch-tta.c) = 923852b9aedeb75eed052e532ce5ddf50ab19951 | 10 | SHA1 (patch-tta.c) = 923852b9aedeb75eed052e532ce5ddf50ab19951 | |
10 | SHA1 (patch-x264.c) = 083ab4eeb48e01216cc0c4d62006a50bcd3ae421 | 11 | SHA1 (patch-x264.c) = 083ab4eeb48e01216cc0c4d62006a50bcd3ae421 |
--- modules/access/rtsp/real.c.orig 2009-08-09 15:28:43.000000000 +0300
+++ modules/access/rtsp/real.c 2009-08-09 15:29:26.000000000 +0300
@@ -598,6 +598,8 @@ int real_get_rdt_chunk(rtsp_client_t *rt
int n;
rmff_dump_pheader(ph, *buffer);
+ if (ph->length < 12)
+ return 0;
n=rtsp_read_data(rtsp_session, *buffer + 12, ph->length - 12);
return (n <= 0) ? 0 : n+12;
}