Updated libopus to 1.1.4.

This Opus 1.1.4 release fixes a single bug. A specially-crafted Opus packet could cause an integer wrap-around in the SILK LSF stabilization code. This would cause an out-of-bounds read 256 bytes before a constant table. In most circumstances, the consequences are harmless and the result is simply noise in the audio. This was reported as CVE-2017-0381. Contrary to that report, our own analysis shows that no remote code execution is possible. However, we are making this release as a precaution.
author: wiz <wiz@pkgsrc.org> 2017-01-22 13:04:55 +0000
committer: wiz <wiz@pkgsrc.org> 2017-01-22 13:04:55 +0000
commit: 58a674d3d0fa83afab492e9e3e4852e6132827b5 (patch)
tree: d79c7417a88bfa97c6cfc36aafc61e12123f60be /audio/libopus/Makefile
parent: 04898d41ee5ce94b27db6f6526780d4b178e480d (diff)
download: pkgsrc-58a674d3d0fa83afab492e9e3e4852e6132827b5.tar.gz
1 files changed, 2 insertions, 3 deletions
diff --git a/audio/libopus/Makefile b/audio/libopus/Makefile
index 3b925beb532..93f1ab0e07a 100644
--- a/audio/libopus/Makefile
+++ b/audio/libopus/Makefile
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.8 2016/07/21 12:24:33 wiz Exp $
+# $NetBSD: Makefile,v 1.9 2017/01/22 13:04:55 wiz Exp $
 
-DISTNAME=	opus-1.1.3
+DISTNAME=	opus-1.1.4
 PKGNAME=	lib${DISTNAME}
 CATEGORIES=	audio
 MASTER_SITES=	http://downloads.xiph.org/releases/opus/
@@ -10,7 +10,6 @@ HOMEPAGE=	http://opus-codec.org/
 COMMENT=	Totally open, royalty-free, highly versatile audio codec library
 LICENSE=	modified-bsd
 
-CONFLICTS=	opus<=1.0.2
 SUPERSEDES=	opus<=1.0.2
 
 GNU_CONFIGURE=	yes
author	wiz <wiz@pkgsrc.org>	2017-01-22 13:04:55 +0000
committer	wiz <wiz@pkgsrc.org>	2017-01-22 13:04:55 +0000
commit	58a674d3d0fa83afab492e9e3e4852e6132827b5 (patch)
tree	d79c7417a88bfa97c6cfc36aafc61e12123f60be /audio/libopus/Makefile
parent	04898d41ee5ce94b27db6f6526780d4b178e480d (diff)
download	pkgsrc-58a674d3d0fa83afab492e9e3e4852e6132827b5.tar.gz