bchunk: Update to 1.2.2

1.2.2 - Nov 14 2017 - Hessu

	Fixes CVE-2017-15953, a heap-based buffer overflow.
	Fix provided by Yegor Timoshenko.

	Fixes CVE-2017-15955, Access violation near NULL on destination
	operand and crash when processing a malformed CUE (.cue) file.
	Fix provided by Yegor Timoshenko.

	Fix wrong track size calculation when having multiple tracks in
	one image. (Closes debian bug: #261274).
	Fix provided by Piotr Kaczuba.

	Clarify manual page for input/output file types
	Improvement from Reuben Thomas, debian bug: #503151
This commit is contained in:
nia 2019-11-17 13:07:03 +00:00
parent 357a4b8979
commit 5bc8c64b1d
3 changed files with 7 additions and 29 deletions

View file

@ -1,6 +1,6 @@
# $NetBSD: Makefile,v 1.13 2012/12/12 10:44:11 wiz Exp $
# $NetBSD: Makefile,v 1.14 2019/11/17 13:07:03 nia Exp $
DISTNAME= bchunk-1.2.0
DISTNAME= bchunk-1.2.2
CATEGORIES= sysutils
MASTER_SITES= http://he.fi/bchunk/

View file

@ -1,7 +1,6 @@
$NetBSD: distinfo,v 1.8 2015/11/04 01:32:06 agc Exp $
$NetBSD: distinfo,v 1.9 2019/11/17 13:07:03 nia Exp $
SHA1 (bchunk-1.2.0.tar.gz) = a328e4665eb5e51df63d8d27d1d75ecc74bdef9e
RMD160 (bchunk-1.2.0.tar.gz) = 81dbbbd0162cbfde54eced4b0410044b72d92cb0
SHA512 (bchunk-1.2.0.tar.gz) = 0e1f9daa2dfeff58e2c65ac2767bff804811fa22f70a220747aa873cb01b77b4c6a809736483aa22fb3f2d2a88885469d10fb45af4626069e992a0763a5fcc2d
Size (bchunk-1.2.0.tar.gz) = 15078 bytes
SHA1 (patch-ab) = 19c0e44ab1f54ac2c0645e59a025e638b72a39fb
SHA1 (bchunk-1.2.2.tar.gz) = 5d241a7923a53f8bcd3075d26801958a7e934ee5
RMD160 (bchunk-1.2.2.tar.gz) = 50160ddd03d1fd03d1c7ea5bd034e459e93da17e
SHA512 (bchunk-1.2.2.tar.gz) = 94fcc1dea3a38a907b3f209c20f3de54028cc34bf8964d1dccf94faf3ca3851270cc8e052c29a3f04c60e525c029ebfb1c3c04fa85525e20273ac8d72cb317c8
Size (bchunk-1.2.2.tar.gz) = 15359 bytes

View file

@ -1,21 +0,0 @@
$NetBSD: patch-ab,v 1.3 2007/11/16 12:03:42 dillo Exp $
--- bchunk.c.orig 2004-06-29 22:42:33.000000000 +0200
+++ bchunk.c
@@ -470,13 +470,15 @@ int main(int argc, char **argv)
*t = '\0';
t++;
idx = atoi(p);
+ if (idx != 1)
+ continue;
printf(" %s %s", p, t);
track->startsect = time2frames(t);
track->start = track->startsect * SECTLEN;
if (verbose)
printf(" (startsect %ld ofs %ld)", track->startsect, track->start);
if ((prevtrack) && (prevtrack->stopsect < 0)) {
- prevtrack->stopsect = track->startsect;
+ prevtrack->stopsect = track->startsect - 1;
prevtrack->stop = track->start - 1;
}
}