diff options
| author |   Thomas Deutschmann <whissi@gentoo.org> | 2019-12-03 01:25:04 +0100 |
|---|---|---|
| committer | Thomas Deutschmann <whissi@gentoo.org> | 2019-12-03 01:25:19 +0100 |
| commit | 733260c31ddf36bc2450e9675eddc93329ab171d (patch) | |
| tree | 5bfd52feca5c9c640b3bb0aa78c7842e680fea23 /media-libs/libvorbis/files | |
| parent | media-libs/mutagen: for real stable now (diff) | |
| download | gentoo-733260c31ddf36bc2450e9675eddc93329ab171d.tar.gz gentoo-733260c31ddf36bc2450e9675eddc93329ab171d.tar.bz2 gentoo-733260c31ddf36bc2450e9675eddc93329ab171d.zip | |
media-libs/libvorbis: security bump
Bug: https://bugs.gentoo.org/631646
Bug: https://bugs.gentoo.org/699862
Package-Manager: Portage-2.3.80, Repoman-2.3.19
Signed-off-by: Thomas Deutschmann <whissi@gentoo.org>
Diffstat (limited to 'media-libs/libvorbis/files')
| -rw-r--r-- | media-libs/libvorbis/files/libvorbis-1.3.6-CVE-2017-14160.patch | 29 | ||||
| -rw-r--r-- | media-libs/libvorbis/files/libvorbis-1.3.6-CVE-2018-10392.patch | 25 |
2 files changed, 54 insertions, 0 deletions
diff --git a/media-libs/libvorbis/files/libvorbis-1.3.6-CVE-2017-14160.patch b/media-libs/libvorbis/files/libvorbis-1.3.6-CVE-2017-14160.patch new file mode 100644 index 000000000000..7759e2eb2a6c --- /dev/null +++ b/media-libs/libvorbis/files/libvorbis-1.3.6-CVE-2017-14160.patch @@ -0,0 +1,29 @@ +This is also the patch for CVE-2018-10393. + +From 018ca26dece618457dd13585cad52941193c4a25 Mon Sep 17 00:00:00 2001 +From: Thomas Daede <daede003@umn.edu> +Date: Wed, 9 May 2018 14:56:59 -0700 +Subject: [PATCH] CVE-2017-14160: fix bounds check on very low sample rates. + +--- + lib/psy.c | 3 ++- + 1 file changed, 2 insertions(+), 1 deletion(-) + +diff --git a/lib/psy.c b/lib/psy.c +index 422c6f1..1310123 100644 +--- a/lib/psy.c ++++ b/lib/psy.c +@@ -602,8 +602,9 @@ static void bark_noise_hybridmp(int n,const long *b, + for (i = 0, x = 0.f;; i++, x += 1.f) { + + lo = b[i] >> 16; +- if( lo>=0 ) break; + hi = b[i] & 0xffff; ++ if( lo>=0 ) break; ++ if( hi>=n ) break; + + tN = N[hi] + N[-lo]; + tX = X[hi] - X[-lo]; +-- +2.22.0 + diff --git a/media-libs/libvorbis/files/libvorbis-1.3.6-CVE-2018-10392.patch b/media-libs/libvorbis/files/libvorbis-1.3.6-CVE-2018-10392.patch new file mode 100644 index 000000000000..a12038a94235 --- /dev/null +++ b/media-libs/libvorbis/files/libvorbis-1.3.6-CVE-2018-10392.patch @@ -0,0 +1,25 @@ +From 112d3bd0aaacad51305e1464d4b381dabad0e88b Mon Sep 17 00:00:00 2001 +From: Thomas Daede <daede003@umn.edu> +Date: Thu, 17 May 2018 16:19:19 -0700 +Subject: [PATCH] Sanity check number of channels in setup. + +Fixes #2335. +--- + lib/vorbisenc.c | 1 + + 1 file changed, 1 insertion(+) + +diff --git a/lib/vorbisenc.c b/lib/vorbisenc.c +index 4fc7b62..64a51b5 100644 +--- a/lib/vorbisenc.c ++++ b/lib/vorbisenc.c +@@ -684,6 +684,7 @@ int vorbis_encode_setup_init(vorbis_info *vi){ + highlevel_encode_setup *hi=&ci->hi; + + if(ci==NULL)return(OV_EINVAL); ++ if(vi->channels<1||vi->channels>255)return(OV_EINVAL); + if(!hi->impulse_block_p)i0=1; + + /* too low/high an ATH floater is nonsensical, but doesn't break anything */ +-- +2.22.0 + |