Accepting request 580731 from home:sbrabec:branches:multimedia:libs

- Fix double free vulnerability (bsc#1082877, CVE-2017-18201).

OBS-URL: https://build.opensuse.org/request/show/580731
OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/libcdio?expand=0&rev=53

libcdio.spec

@@ -1,7 +1,7 @@
 #
 # spec file for package libcdio
 #
-# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -31,6 +31,8 @@ Source2:        %{name}.keyring
 Source3:        baselibs.conf
 # PATCH-FIX-UPSTREAM 0001-Savannah-Bug-49907.patch https://savannah.gnu.org/bugs/index.php?49907
 Patch0:         0001-Savannah-Bug-49907.patch
+# PATCH-FIX-SECURITY CVE-2017-18201.patch bsc1082877 CVE-2017-18201 sbrabec@suse.com -- Fix double free vulnerability.
+Patch1:         CVE-2017-18201.patch
 BuildRequires:  fdupes
 BuildRequires:  gcc-c++
 BuildRequires:  help2man
@@ -110,6 +112,7 @@ applications that want to make use of the cdio libraries.
 %prep
 %setup -q
 %patch0 -p1
+%patch1 -p1
 
 %define buildir ${PWD}