Hello community,
here is the log from the commit of package libmikmod for openSUSE:Factory
checked in at Mon Mar 2 01:53:19 CET 2009.
--------
--- libmikmod/libmikmod.changes 2009-01-23 16:45:53.000000000 +0100
+++ /mounts/work_src_done/STABLE/libmikmod/libmikmod.changes 2009-02-26 17:59:42.000000000 +0100
@@ -1,0 +2,5 @@
+Thu Feb 26 17:59:33 CET 2009 - prusnak@suse.cz
+
+- fixed CVE-2009-0179 [bnc#468760]
+
+-------------------------------------------------------------------
calling whatdependson for head-i586
New:
----
libmikmod-CVE-2009-0179.diff
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ libmikmod.spec ++++++
--- /var/tmp/diff_new_pack.O23734/_old 2009-03-02 01:48:02.000000000 +0100
+++ /var/tmp/diff_new_pack.O23734/_new 2009-03-02 01:48:02.000000000 +0100
@@ -25,7 +25,7 @@
Group: System/Libraries
Summary: MikMod Sound Library
Version: 3.1.11a
-Release: 114
+Release: 117
%define _version 3.1.11
# bug437293
%ifarch ppc64
@@ -33,12 +33,13 @@
%endif
#
Source: %{name}-%{_version}.tar.bz2
-Patch: libmikmod-3.1.11-a.diff
+Source1: libmikmod-rpmlintrc
+Patch0: libmikmod-3.1.11-a.diff
Patch1: libmikmod.diff
-Source2: libmikmod-rpmlintrc
-Patch3: libmikmod-config-fix.dif
-Patch4: libmikmod-conftest_fix.diff
-Patch5: libmikmod-CVE-2007-6720.diff
+Patch2: libmikmod-config-fix.dif
+Patch3: libmikmod-conftest_fix.diff
+Patch4: libmikmod-CVE-2007-6720.diff
+Patch5: libmikmod-CVE-2009-0179.diff
BuildRoot: %{_tmppath}/%{name}-%{version}-build
%description
@@ -76,8 +77,9 @@
%prep
%setup -q -n %{name}-%{_version}
-%patch -p1
+%patch0 -p1
%patch1
+%patch2
%patch3
%patch4
%patch5
@@ -121,6 +123,8 @@
%doc %{_mandir}/man1/*-config.*
%changelog
+* Thu Feb 26 2009 prusnak@suse.cz
+- fixed CVE-2009-0179 [bnc#468760]
* Fri Jan 23 2009 prusnak@suse.cz
- fixed DoS CVE-2007-6720 [bnc#468760]
* Fri Jan 09 2009 crrodriguez@suse.de
++++++ libmikmod-CVE-2007-6720.diff ++++++
--- /var/tmp/diff_new_pack.O23734/_old 2009-03-02 01:48:03.000000000 +0100
+++ /var/tmp/diff_new_pack.O23734/_new 2009-03-02 01:48:03.000000000 +0100
@@ -1,31 +1,38 @@
---- loaders/load_xm.c
-+++ loaders/load_xm.c
-@@ -622,7 +622,8 @@
- /* read the remainder of the header */
- for(u=headend-_mm_ftell(modreader);u;u--) _mm_read_UBYTE(modreader);
+--- playercode/mplayer.c
++++ playercode/mplayer.c
+@@ -2318,7 +2318,7 @@
+ SAMPLE *s;
-- if(_mm_eof(modreader)) {
-+ /* last instrument is at the end of file in version 0x0104 */
-+ if(_mm_eof(modreader) && (mh->version<0x0104 || t