Subject: CVS commit: pkgsrc/multimedia/mpeg_encode
From: Lubomir Sedlacik
Date: 2005-10-05 13:45:46
Message id: 20051005114546.A07032DA27@cvs.netbsd.org
Log Message:
Security fixes for SA17008:

"Vulnerabilities in Berkeley MPEG Tools can be exploited by malicious, local
users to perform certain actions on a vulnerable system with escalated
privileges. The vulnerabilities are caused due to temporary files being
created insecurely in "/tmp."

http://secunia.com/advisories/17008/
http://www.gentoo.org/security/en/glsa/glsa-200510-02.xml

Patches from Gentoo.
Files:
RevisionActionfile
1.9modifypkgsrc/multimedia/mpeg_encode/Makefile
1.4modifypkgsrc/multimedia/mpeg_encode/distinfo
1.2modifypkgsrc/multimedia/mpeg_encode/patches/patch-ae
1.1addpkgsrc/multimedia/mpeg_encode/patches/patch-ah
1.1addpkgsrc/multimedia/mpeg_encode/patches/patch-ai
1.1addpkgsrc/multimedia/mpeg_encode/patches/patch-aj
1.1addpkgsrc/multimedia/mpeg_encode/patches/patch-ak
1.1addpkgsrc/multimedia/mpeg_encode/patches/patch-al
1.1addpkgsrc/multimedia/mpeg_encode/patches/patch-am
1.1addpkgsrc/multimedia/mpeg_encode/patches/patch-an