please unblock/xine-lib_1.1.2+dfsg-3 (security)
please unblock/xine-lib_1.1.2+dfsg-3. See the diff below:
>> debdiff xine-lib_1.1.2+dfsg-2.dsc xine-lib_1.1.2+dfsg-3.dsc localhost:10.0
diff -u xine-lib-1.1.2+dfsg/debian/changelog xine-lib-1.1.2+dfsg/debian/changelog
--- xine-lib-1.1.2+dfsg/debian/changelog
+++ xine-lib-1.1.2+dfsg/debian/changelog
@@ -1,3 +1,10 @@
+xine-lib (1.1.2+dfsg-3) unstable; urgency=high
+
+ * [CVE-2007-1246]: DMO decoder heap allocation overflow. Thanks for the
+ patch, Kees Cook and A Mennucc! (Closes: #414072)
+
+ -- Reinhard Tartler <siretart@tauware.de> Fri, 9 Mar 2007 09:37:43 +0100
+
xine-lib (1.1.2+dfsg-2) unstable; urgency=medium
* Bug fix: "CVE-2006-6172: xine-lib libreal Buffer Overflow
only in patch2:
unchanged:
--- xine-lib-1.1.2+dfsg.orig/src/libw32dll/dmo/DMO_VideoDecoder.c
+++ xine-lib-1.1.2+dfsg/src/libw32dll/dmo/DMO_VideoDecoder.c
@@ -118,6 +118,7 @@
this->iv.m_bh = (BITMAPINFOHEADER*)malloc(bihs);
memcpy(this->iv.m_bh, format, bihs);
+ this->iv.m_bh->biSize = bihs;
this->iv.m_State = STOP;
//this->iv.m_pFrame = 0;
only in patch2:
unchanged:
--- xine-lib-1.1.2+dfsg.orig/src/libw32dll/DirectShow/DS_VideoDecoder.c
+++ xine-lib-1.1.2+dfsg/src/libw32dll/DirectShow/DS_VideoDecoder.c
@@ -110,6 +110,7 @@
this->iv.m_bh = (BITMAPINFOHEADER*)malloc(bihs);
memcpy(this->iv.m_bh, format, bihs);
+ this->iv.m_bh->biSize = bihs;
this->iv.m_State = STOP;
//this->iv.m_pFrame = 0;
--
Gruesse/greetings,
Reinhard Tartler, KeyID 945348A4
Reply to: