ports/78928: Security update port: audio/grip from grip-3.2.0_6 to grip-3.2.0_7

Esa Karkkainen ejk at iki.fi
Wed Mar 16 18:40:03 UTC 2005 

>Number:         78928
>Category:       ports
>Synopsis:       Security update port: audio/grip from grip-3.2.0_6 to grip-3.2.0_7
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    freebsd-ports-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          update
>Submitter-Id:   current-users
>Arrival-Date:   Wed Mar 16 18:40:02 GMT 2005
>Closed-Date:
>Last-Modified:
>Originator:     Esa Karkkainen
>Release:        FreeBSD 5.3-RELEASE-p5 i386
>Organization:
Is in state of disintegration
>Environment:

System: FreeBSD 5.3-RELEASE-p5 #40: Sat Mar 12 16:44:21 EET 2005
Ports tree cvsupped at Mar 16 18:44:30 EET 2005

>Description:

Fix to CDDB response multiple matches buffer overflow vulnerability.

Information what to fix was found obtained from 

http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/SRPMS/grip-3.2.0-3.fc2.src.rpm

grip.834724.patch

>How-To-Repeat:

# cd /usr/ports/audio/grip && make all
===> The default CDROM device is /dev/acd0
===> Define WITH_CDROM_DEVICE if you want to change the default
===> For example, 'make WITH_CDROM_DEVICE="/dev/somedevice"'
===>  grip-3.2.0_6 has known vulnerabilities:
=> grip -- CDDB response multiple matches buffer overflow vulnerability.
   Reference: <http://www.FreeBSD.org/ports/portaudit/bcf27002-94c3-11d9-a9e0-0001020eed82.html>
=> Please update your ports tree and try again.
*** Error code 1

Stop in /usr/ports/audio/grip.

>Fix:

Please note that a new file "files/patch-src::discdb" will be created
when applying following patch.

diff -ruN /usr/ports/audio/grip/Makefile grip/Makefile
--- /usr/ports/audio/grip/Makefile	Sat Mar 12 18:07:56 2005
+++ grip/Makefile	Wed Mar 16 19:14:13 2005
@@ -7,7 +7,7 @@
 
 PORTNAME=	grip
 PORTVERSION=	3.2.0
-PORTREVISION=	6
+PORTREVISION=	7
 CATEGORIES=	audio
 MASTER_SITES=	${MASTER_SITE_SOURCEFORGE_EXTENDED}
 MASTER_SITE_SUBDIR=	${PORTNAME}
diff -ruN /usr/ports/audio/grip/files/patch-src::discdb grip/files/patch-src::discdb
--- /usr/ports/audio/grip/files/patch-src::discdb	Thu Jan  1 02:00:00 1970
+++ grip/files/patch-src::discdb	Wed Mar 16 19:13:02 2005
@@ -0,0 +1,20 @@
+--- src/discdb.c.orig	Thu Apr 15 21:23:37 2004
++++ src/discdb.c	Wed Mar 16 19:02:09 2005
+@@ -311,7 +311,7 @@
+     query->query_match=MATCH_EXACT;
+     query->query_matches=0;
+ 
+-    while((inbuffer=DiscDBReadLine(&dataptr))) {
++    while(query->query_matches < MAX_INEXACT_MATCHES && (inbuffer=DiscDBReadLine(&dataptr))) {
+       query->query_list[query->query_matches].list_genre=
+ 	DiscDBGenreValue(g_strstrip(strtok(inbuffer," ")));
+       
+@@ -331,7 +331,7 @@
+     query->query_match=MATCH_INEXACT;
+     query->query_matches=0;
+ 
+-    while((inbuffer=DiscDBReadLine(&dataptr))) {
++    while(query->query_matches < MAX_INEXACT_MATCHES && (inbuffer=DiscDBReadLine(&dataptr))) {
+       query->query_list[query->query_matches].list_genre=
+ 	DiscDBGenreValue(g_strstrip(strtok(inbuffer," ")));
+       
>Release-Note:
>Audit-Trail:
>Unformatted:

More information about the freebsd-ports-bugs mailing list