pkgsrc-changes: CVS commit: [pkgsrc-2005Q3] pkgsrc/multimedia/mpeg

Subject: CVS commit: [pkgsrc-2005Q3] pkgsrc/multimedia/mpeg_encode
To: None <pkgsrc-changes@NetBSD.org>
From: Soren Jacobsen <snj@netbsd.org>
List: pkgsrc-changes
Date: 10/08/2005 05:56:40
Module Name:	pkgsrc
Committed By:	snj
Date:		Sat Oct  8 05:56:40 UTC 2005

Modified Files:
	pkgsrc/multimedia/mpeg_encode [pkgsrc-2005Q3]: Makefile distinfo
	pkgsrc/multimedia/mpeg_encode/patches [pkgsrc-2005Q3]: patch-ae
Added Files:
	pkgsrc/multimedia/mpeg_encode/patches [pkgsrc-2005Q3]: patch-ah
	    patch-ai patch-aj patch-ak patch-al patch-am patch-an

Log Message:
Pullup ticket 802 - requested by Lubomir Sedlacik
security fix for mpeg_encode

Revisions pulled up:
- pkgsrc/multimedia/mpeg_encode/Makefile		1.9
- pkgsrc/multimedia/mpeg_encode/distinfo		1.4
- pkgsrc/multimedia/mpeg_encode/patches/patch-ae	1.2
- pkgsrc/multimedia/mpeg_encode/patches/patch-ah	1.1
- pkgsrc/multimedia/mpeg_encode/patches/patch-ai	1.1
- pkgsrc/multimedia/mpeg_encode/patches/patch-aj	1.1
- pkgsrc/multimedia/mpeg_encode/patches/patch-ak	1.1
- pkgsrc/multimedia/mpeg_encode/patches/patch-al	1.1
- pkgsrc/multimedia/mpeg_encode/patches/patch-am	1.1
- pkgsrc/multimedia/mpeg_encode/patches/patch-an	1.1

   Module Name:    pkgsrc
   Committed By:   salo
   Date:           Wed Oct  5 11:45:46 UTC 2005

   Modified Files:
           pkgsrc/multimedia/mpeg_encode: Makefile distinfo
           pkgsrc/multimedia/mpeg_encode/patches: patch-ae
   Added Files:
           pkgsrc/multimedia/mpeg_encode/patches: patch-ah patch-ai patch-aj
               patch-ak patch-al patch-am patch-an

   Log Message:
   Security fixes for SA17008:

   "Vulnerabilities in Berkeley MPEG Tools can be exploited by malicious, local
   users to perform certain actions on a vulnerable system with escalated
   privileges. The vulnerabilities are caused due to temporary files being
   created insecurely in "/tmp."

   http://secunia.com/advisories/17008/
   http://www.gentoo.org/security/en/glsa/glsa-200510-02.xml

   Patches from Gentoo.


To generate a diff of this commit:
cvs rdiff -r1.8 -r1.8.4.1 pkgsrc/multimedia/mpeg_encode/Makefile
cvs rdiff -r1.3 -r1.3.4.1 pkgsrc/multimedia/mpeg_encode/distinfo
cvs rdiff -r1.1.1.1 -r1.1.1.1.14.1 \
    pkgsrc/multimedia/mpeg_encode/patches/patch-ae
cvs rdiff -r0 -r1.1.2.1 pkgsrc/multimedia/mpeg_encode/patches/patch-ah \
    pkgsrc/multimedia/mpeg_encode/patches/patch-ai \
    pkgsrc/multimedia/mpeg_encode/patches/patch-aj \
    pkgsrc/multimedia/mpeg_encode/patches/patch-ak \
    pkgsrc/multimedia/mpeg_encode/patches/patch-al \
    pkgsrc/multimedia/mpeg_encode/patches/patch-am \
    pkgsrc/multimedia/mpeg_encode/patches/patch-an

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.