Hello community, here is the log from the commit of package xine-lib checked in at Tue Mar 20 01:15:55 CET 2007. -------- --- xine-lib/xine-lib.changes 2007-02-27 14:57:00.000000000 +0100 +++ /mounts/work_src_done/STABLE/xine-lib/xine-lib.changes 2007-03-14 15:53:28.000000000 +0100 @@ -1,0 +2,7 @@ +Wed Mar 14 15:19:49 CET 2007 - mhopf@suse.de + +- Security fix for #254374: DSO loader buffer overflow. + CVE-2007-1387 +- BuildRequires fix (libcdio). + +------------------------------------------------------------------- New: ---- xine-lib-cve-2007-1387-COMMITTED.diff ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ xine-lib.spec ++++++ --- /var/tmp/diff_new_pack.y12380/_old 2007-03-20 01:15:08.000000000 +0100 +++ /var/tmp/diff_new_pack.y12380/_new 2007-03-20 01:15:08.000000000 +0100 @@ -11,11 +11,11 @@ # norootforbuild Name: xine-lib -BuildRequires: ImageMagick-devel SDL-devel arts-devel cdparanoia curl-devel esound-devel flac-devel giflib-devel glib2-devel gnome-common gnome-vfs2-devel gnutls-devel gtk2-devel imlib2-devel krb5-devel libdrm-devel libmng-devel libsmbclient libsmbclient-devel libtheora-devel libvorbis-devel lirc mad-devel readline-devel speex-devel update-desktop-files vcdimager-devel +BuildRequires: ImageMagick-devel SDL-devel arts-devel cdparanoia curl-devel esound-devel flac-devel giflib-devel glib2-devel gnome-common gnome-vfs2-devel gnutls-devel gtk2-devel imlib2-devel krb5-devel libcdio-devel libdrm-devel libmng-devel libsmbclient libsmbclient-devel libtheora-devel libvorbis-devel lirc mad-devel readline-devel speex-devel update-desktop-files vcdimager-devel %define DISTRIBUTABLE 1 Summary: Video Player with Plug-Ins Version: 1.1.4 -Release: 6 +Release: 9 License: GNU General Public License (GPL), Public Domain, Freeware Group: Productivity/Multimedia/Video/Players URL: http://xine.sourceforge.net @@ -28,6 +28,7 @@ # *** xine-lib: Bugfixes Patch: xine-lib-various.diff Patch26: xine-lib-doc-fix-X11R6.diff +Patch27: xine-lib-cve-2007-1387-COMMITTED.diff Patch40: xine-lib-cflags-AUTOMAKE.diff # *** Addons Patch50: vdr-xine-lib-0.7.10-adapted-1.1.4.diff @@ -132,6 +133,7 @@ %setup -q %patch %patch26 +%patch27 %patch40 %patch50 -p1 %patch51 @@ -372,6 +374,10 @@ /usr/include/xine.h %changelog +* Wed Mar 14 2007 - mhopf@suse.de +- Security fix for #254374: DSO loader buffer overflow. + CVE-2007-1387 +- BuildRequires fix (libcdio). * Tue Feb 27 2007 - sbrabec@suse.cz - Reduced BuildRequires. * Wed Jan 31 2007 - mhopf@suse.de ++++++ xine-lib-cve-2007-1387-COMMITTED.diff ++++++ Index: src/libw32dll/DirectShow/DS_VideoDecoder.c =================================================================== RCS file: /cvsroot/xine/xine-lib/src/libw32dll/DirectShow/DS_VideoDecoder.c,v retrieving revision 1.9 retrieving revision 1.10 diff -u -p -r1.9 -r1.10 --- src/libw32dll/DirectShow/DS_VideoDecoder.c 24 Dec 2003 16:55:36 -0000 1.9 +++ src/libw32dll/DirectShow/DS_VideoDecoder.c 10 Mar 2007 00:41:34 -0000 1.10 @@ -110,6 +110,7 @@ DS_VideoDecoder * DS_VideoDecoder_Open(c this->iv.m_bh = (BITMAPINFOHEADER*)malloc(bihs); memcpy(this->iv.m_bh, format, bihs); + this->iv.m_bh->biSize = bihs; this->iv.m_State = STOP; //this->iv.m_pFrame = 0; Index: src/libw32dll/dmo/DMO_VideoDecoder.c =================================================================== RCS file: /cvsroot/xine/xine-lib/src/libw32dll/dmo/DMO_VideoDecoder.c,v retrieving revision 1.4 retrieving revision 1.5 diff -u -p -r1.4 -r1.5 --- src/libw32dll/dmo/DMO_VideoDecoder.c 24 Dec 2003 16:55:36 -0000 1.4 +++ src/libw32dll/dmo/DMO_VideoDecoder.c 10 Mar 2007 00:41:34 -0000 1.5 @@ -118,6 +118,7 @@ DMO_VideoDecoder * DMO_VideoDecoder_Open this->iv.m_bh = (BITMAPINFOHEADER*)malloc(bihs); memcpy(this->iv.m_bh, format, bihs); + this->iv.m_bh->biSize = bihs; this->iv.m_State = STOP; //this->iv.m_pFrame = 0; ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org