svn commit: r445849 - in branches/2017Q3/audio/id3lib: . files

Roman Bogorodskiy novel at FreeBSD.org
Sat Jul 15 06:26:50 UTC 2017 

Author: novel
Date: Sat Jul 15 06:26:48 2017
New Revision: 445849
URL: https://svnweb.freebsd.org/changeset/ports/445849

Log:
  MFH: r445652
  
  audio/id3lib: fix stack corruption bug
  
  Add a patch to fix stack corruption bug when reading IDv3 tags
  and VBR header information.
  
  PR:		220374
  Submitted by:	bob at eager.cx
  Obtained from:	https://sourceforge.net/p/id3lib/bugs/189/
  Approved by:	maintainer timeout
  
  Approved by:	ports-secteam (junovitch)

Added:
  branches/2017Q3/audio/id3lib/files/patch-src_mp3__parse.cpp
     - copied unchanged from r445652, head/audio/id3lib/files/patch-src_mp3__parse.cpp
Modified:
  branches/2017Q3/audio/id3lib/Makefile
Directory Properties:
  branches/2017Q3/   (props changed)

Modified: branches/2017Q3/audio/id3lib/Makefile
==============================================================================
--- branches/2017Q3/audio/id3lib/Makefile	Sat Jul 15 06:16:09 2017	(r445848)
+++ branches/2017Q3/audio/id3lib/Makefile	Sat Jul 15 06:26:48 2017	(r445849)
@@ -3,7 +3,7 @@
 
 PORTNAME=	id3lib
 PORTVERSION=	3.8.3
-PORTREVISION=	9
+PORTREVISION=	10
 CATEGORIES=	audio
 MASTER_SITES=	SF
 

Copied: branches/2017Q3/audio/id3lib/files/patch-src_mp3__parse.cpp (from r445652, head/audio/id3lib/files/patch-src_mp3__parse.cpp)
==============================================================================
--- /dev/null	00:00:00 1970	(empty, because file is newly added)
+++ branches/2017Q3/audio/id3lib/files/patch-src_mp3__parse.cpp	Sat Jul 15 06:26:48 2017	(r445849, copy of r445652, head/audio/id3lib/files/patch-src_mp3__parse.cpp)
@@ -0,0 +1,11 @@
+--- src/mp3_parse.cpp.orig	2017-07-13 13:36:15 UTC
++++ src/mp3_parse.cpp
+@@ -465,7 +465,7 @@ bool Mp3Info::Parse(ID3_Reader& reader, size_t mp3size
+   // from http://www.xingtech.com/developer/mp3/
+ 
+   const size_t VBR_HEADER_MIN_SIZE = 8;     // "xing" + flags are fixed
+-  const size_t VBR_HEADER_MAX_SIZE = 116;   // frames, bytes, toc and scale are optional
++  const size_t VBR_HEADER_MAX_SIZE = 120;   // frames, bytes, toc and scale are optional
+ 
+   if (mp3size >= vbr_header_offest + VBR_HEADER_MIN_SIZE) 
+   {

More information about the svn-ports-all mailing list