pkgsrc.se | The NetBSD package collection

./audio/libsndfile, Library for reading and writing audio files

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: pkgsrc-2019Q2, Version: 1.0.28nb3, Package name: libsndfile-1.0.28nb3, Maintainer: pkgsrc-users

Libsndfile is a C library for reading and writing files containing
sampled sound (such as MS Windows WAV and the Apple/SGI AIFF format)
through one standard library interface.

Required to run:
[audio/flac] [audio/libvorbis] [multimedia/libogg]

Required to build:
[pkgtools/cwrappers]

Package options: sun

Master sites:

http://www.mega-nerd.com/libsndfile/files/ (Download)

SHA1: 85aa967e19f6b9bf975601d79669025e5f8bc77d
RMD160: f8803966802afe2b5a35cda28c2f764d91c48f37
Filesize: 1174.642 KB

Version history: (Expand)

(2019-07-18) Updated to version: libsndfile-1.0.28nb3
(2019-07-04) Package added to pkgsrc.se, version libsndfile-1.0.28nb2 (created)

CVS history: (Expand)

2019-07-18 15:08:19 by Benny Siegert | Files touched by this commit (7)

Log message:
Pullup ticket #5998 - requested by nia
audio/libsndfile: security fix

Revisions pulled up:
- audio/libsndfile/Makefile                                     1.76
- audio/libsndfile/distinfo                                     1.43
- audio/libsndfile/patches/patch-CVE-2017-14634                 1.1
- audio/libsndfile/patches/patch-CVE-2018-13139                 1.1
- audio/libsndfile/patches/patch-src_alaw.c                     1.1
- audio/libsndfile/patches/patch-src_ulaw.c                     1.1
- audio/libsndfile/patches/patch-src_wav.c                      1.1

---
   Module Name:	pkgsrc
   Committed By:	nia
   Date:		Sun Jul 14 15:39:32 UTC 2019

   Modified Files:
   	pkgsrc/audio/libsndfile: Makefile distinfo
   Added Files:
   	pkgsrc/audio/libsndfile/patches: patch-CVE-2017-14634
   	    patch-CVE-2018-13139 patch-src_alaw.c patch-src_ulaw.c
   	    patch-src_wav.c

   Log message:
   libsndfile: Apply patches from upstream's github for these CVEs:

   CVE-2017-14245 - information-disclosure
   CVE-2017-14246 - information-disclosure
   CVE-2017-14634 - denial-of-service
   CVE-2017-17456 - denial-of-service
   CVE-2017-17457 - denial-of-service
   CVE-2017-8362 - denial-of-service
   CVE-2017-8363 - heap-overflow
   CVE-2017-8365 - buffer-overflow
   CVE-2018-13139 - stack-overflow
   CVE-2018-19432 - null-pointer-dereference
   CVE-2018-19661 - denial-of-service
   CVE-2018-19662 - denial-of-service
   CVE-2018-19758 - denial-of-service
   CVE-2019-3832 - denial-of-service

   Bump PKGREVISION.