From e84a906a5eaab43f5a3e5397dbe4fbb8781e157ba01368103b2091776b05e759 Mon Sep 17 00:00:00 2001 From: Pavol Rusnak Date: Wed, 25 Aug 2010 13:29:12 +0000 Subject: [PATCH 1/3] - correct fix for CVE-2009-3995 [bnc#625547] OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/libmikmod?expand=0&rev=10 --- libmikmod-3.1.12-CVE-2009-3995,3996.diff | 30 ++++++++++++++---------- libmikmod.changes | 5 ++++ 2 files changed, 23 insertions(+), 12 deletions(-) diff --git a/libmikmod-3.1.12-CVE-2009-3995,3996.diff b/libmikmod-3.1.12-CVE-2009-3995,3996.diff index 1d2b7ad..932896e 100644 --- a/libmikmod-3.1.12-CVE-2009-3995,3996.diff +++ b/libmikmod-3.1.12-CVE-2009-3995,3996.diff @@ -2,18 +2,24 @@ Index: loaders/load_it.c =================================================================== --- loaders/load_it.c.orig +++ loaders/load_it.c -@@ -862,6 +862,11 @@ BOOL IT_Load(BOOL curious) - #endif - - IT_ProcessEnvelope(vol); -+ -+ // Secunia SA37775 -+ if (ih.volpts>= ENVPOINTS) -+ ih.volpts = ENVPOINTS-1; -+ - for(u=0;uvolenv[u].val=(ih.volnode[u]<<2); - +@@ -747,6 +747,8 @@ BOOL IT_Load(BOOL curious) + ih. name##end =_mm_read_UBYTE(modreader); \ + ih. name##susbeg=_mm_read_UBYTE(modreader); \ + ih. name##susend=_mm_read_UBYTE(modreader); \ ++ if (ih. name##pts>= ITENVCNT) \ ++ ih. name##pts = ITENVCNT-1; \ + for(lp=0;lp= ITENVCNT) \ ++ ih. name/**/pts = ITENVCNT-1; \ + for(lp=0;lp Date: Fri, 27 Aug 2010 12:29:36 +0000 Subject: [PATCH 2/3] Accepting request 46212 from multimedia:libs checked in (request 46212) OBS-URL: https://build.opensuse.org/request/show/46212 OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/libmikmod?expand=0&rev=11 --- libmikmod-3.1.12-CVE-2009-3995,3996.diff | 8 ++++---- libmikmod.changes | 5 ----- 2 files changed, 4 insertions(+), 9 deletions(-) diff --git a/libmikmod-3.1.12-CVE-2009-3995,3996.diff b/libmikmod-3.1.12-CVE-2009-3995,3996.diff index 932896e..57e90a7 100644 --- a/libmikmod-3.1.12-CVE-2009-3995,3996.diff +++ b/libmikmod-3.1.12-CVE-2009-3995,3996.diff @@ -6,8 +6,8 @@ Index: loaders/load_it.c ih. name##end =_mm_read_UBYTE(modreader); \ ih. name##susbeg=_mm_read_UBYTE(modreader); \ ih. name##susend=_mm_read_UBYTE(modreader); \ -+ if (ih. name##pts>= ITENVCNT) \ -+ ih. name##pts = ITENVCNT-1; \ ++ if (ih. name##pts>= ENVPOINTS) \ ++ ih. name##pts = ENVPOINTS-1; \ for(lp=0;lp= ITENVCNT) \ -+ ih. name/**/pts = ITENVCNT-1; \ ++ if (ih. name/**/pts>= ENVPOINTS) \ ++ ih. name/**/pts = ENVPOINTS-1; \ for(lp=0;lp Date: Sat, 19 Nov 2011 21:04:16 +0000 Subject: [PATCH 3/3] Accepting request 92543 from home:coolo:removelibtool - add libtool as buildrequire to avoid implicit dependency OBS-URL: https://build.opensuse.org/request/show/92543 OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/libmikmod?expand=0&rev=12 --- libmikmod-3.1.12-CVE-2009-3995,3996.diff | 8 ++++---- libmikmod.changes | 10 ++++++++++ libmikmod.spec | 8 ++++---- 3 files changed, 18 insertions(+), 8 deletions(-) diff --git a/libmikmod-3.1.12-CVE-2009-3995,3996.diff b/libmikmod-3.1.12-CVE-2009-3995,3996.diff index 57e90a7..932896e 100644 --- a/libmikmod-3.1.12-CVE-2009-3995,3996.diff +++ b/libmikmod-3.1.12-CVE-2009-3995,3996.diff @@ -6,8 +6,8 @@ Index: loaders/load_it.c ih. name##end =_mm_read_UBYTE(modreader); \ ih. name##susbeg=_mm_read_UBYTE(modreader); \ ih. name##susend=_mm_read_UBYTE(modreader); \ -+ if (ih. name##pts>= ENVPOINTS) \ -+ ih. name##pts = ENVPOINTS-1; \ ++ if (ih. name##pts>= ITENVCNT) \ ++ ih. name##pts = ITENVCNT-1; \ for(lp=0;lp= ENVPOINTS) \ -+ ih. name/**/pts = ENVPOINTS-1; \ ++ if (ih. name/**/pts>= ITENVCNT) \ ++ ih. name/**/pts = ITENVCNT-1; \ for(lp=0;lp