Add upstream patch (taken from Debian bug report) to fix crashes

caused by bad audio files.
author: tron <tron> 2009-06-08 09:30:17 +0000
committer: tron <tron> 2009-06-08 09:30:17 +0000
commit: 4e5747e8d5c2f33288f59600cd98d164550bcae9 (patch)
tree: 6e27259d06234a3b3e83a415af9f9360f33ffe82 /audio/libsndfile/patches/patch-ab
parent: 5b76839f7b2edefeee54fc6ca72b423cd93483cd (diff)
download: pkgsrc-4e5747e8d5c2f33288f59600cd98d164550bcae9.tar.gz
1 files changed, 17 insertions, 0 deletions
diff --git a/audio/libsndfile/patches/patch-ab b/audio/libsndfile/patches/patch-ab
new file mode 100644
index 00000000000..d5b9906d032
--- /dev/null
+++ b/audio/libsndfile/patches/patch-ab
@@ -0,0 +1,17 @@
+$NetBSD: patch-ab,v 1.9 2009/06/08 09:30:17 tron Exp $
+
+Upstream fix for DoS vulnerability taken from here:
+
+http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=530831
+
+--- src/float32.c.orig	2009-03-25 02:59:47.000000000 +0000
++++ src/float32.c	2009-06-08 10:03:02.000000000 +0100
+@@ -241,7 +241,7 @@
+ 	else
+ 		psf->datalength = 0 ;
+ 
+-	psf->sf.frames = psf->datalength / psf->blockwidth ;
++	psf->sf.frames = psf->blockwidth > 0 ? psf->datalength / psf->blockwidth : 0 ;
+ 
+ 	return 0 ;
+ } /* float32_init */
author	tron <tron>	2009-06-08 09:30:17 +0000
committer	tron <tron>	2009-06-08 09:30:17 +0000
commit	4e5747e8d5c2f33288f59600cd98d164550bcae9 (patch)
tree	6e27259d06234a3b3e83a415af9f9360f33ffe82 /audio/libsndfile/patches/patch-ab
parent	5b76839f7b2edefeee54fc6ca72b423cd93483cd (diff)
download	pkgsrc-4e5747e8d5c2f33288f59600cd98d164550bcae9.tar.gz