rpm/libmikmod
SHA256
1
0
Fork 0
forked from pool/libmikmod
Code Pull Requests Activity

- correct fix for CVE-2009-3995 [bnc#625547]

Browse Source 
OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/libmikmod?expand=0&rev=10
This commit is contained in:
Pavol Rusnak
2010-08-25 13:29:12 +00:00
committed by Git OBS Bridge
parent 6eeb6f4dd1
commit f74c35b89c
2 changed files with 9 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
libmikmod-3.1.12-CVE-2009-3995,3996.diff
View File

@@ -6,8 +6,8 @@ Index: loaders/load_it.c
ih. name##end =_mm_read_UBYTE(modreader); \
ih. name##susbeg=_mm_read_UBYTE(modreader); \
ih. name##susend=_mm_read_UBYTE(modreader); \
+ if (ih. name##pts>= ENVPOINTS) \
+ ih. name##pts = ENVPOINTS-1; \
+ if (ih. name##pts>= ITENVCNT) \
+ ih. name##pts = ITENVCNT-1; \
for(lp=0;lp<ITENVCNT;lp++) { \
ih. name##node[lp]=_mm_read_##type (modreader); \
ih. name##tick[lp]=_mm_read_I_UWORD(modreader); \
@@ -15,8 +15,8 @@ Index: loaders/load_it.c
ih. name/**/end =_mm_read_UBYTE(modreader); \
ih. name/**/susbeg=_mm_read_UBYTE(modreader); \
ih. name/**/susend=_mm_read_UBYTE(modreader); \
+ if (ih. name/**/pts>= ENVPOINTS) \
+ ih. name/**/pts = ENVPOINTS-1; \
+ if (ih. name/**/pts>= ITENVCNT) \
+ ih. name/**/pts = ITENVCNT-1; \
for(lp=0;lp<ITENVCNT;lp++) { \
ih. name/**/node[lp]=_mm_read_/**/type (modreader); \
ih. name/**/tick[lp]=_mm_read_I_UWORD(modreader); \

5
libmikmod.changes
View File

@@ -1,3 +1,8 @@
-------------------------------------------------------------------
Wed Aug 25 13:26:22 UTC 2010 - prusnak@opensuse.org
- correct fix for CVE-2009-3995 [bnc#625547]
-------------------------------------------------------------------
Fri Apr 23 01:29:56 CEST 2010 - prusnak@suse.cz