From 177e77309783656ab48e9ce546910b5b36deb586 Mon Sep 17 00:00:00 2001
From: Martin Wilke <miwi@FreeBSD.org>
Date: Fri, 9 Mar 2007 15:55:12 +0000
Subject: - Fix Buffer overflow vulnerability - Bump PORTREVISION

Approved by:	simon (secteam)
Obtained from:	mplayer svn
Security:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1246
---
 multimedia/mplayer/Makefile                       |  2 +-
 multimedia/mplayer/files/patch-DMO_VideoDecoder.c | 10 ++++++++++
 2 files changed, 11 insertions(+), 1 deletion(-)
 create mode 100644 multimedia/mplayer/files/patch-DMO_VideoDecoder.c

(limited to 'multimedia/mplayer')

diff --git a/multimedia/mplayer/Makefile b/multimedia/mplayer/Makefile
index 3c1897309f9d..2d291744027a 100644
--- a/multimedia/mplayer/Makefile
+++ b/multimedia/mplayer/Makefile
@@ -84,7 +84,7 @@
 
 PORTNAME=	mplayer
 PORTVERSION=	0.99.10
-PORTREVISION=	5
+PORTREVISION=	6
 CATEGORIES=	multimedia audio
 MASTER_SITES=	http://www1.mplayerhq.hu/MPlayer/releases/ \
 		http://www2.mplayerhq.hu/MPlayer/releases/ \
diff --git a/multimedia/mplayer/files/patch-DMO_VideoDecoder.c b/multimedia/mplayer/files/patch-DMO_VideoDecoder.c
new file mode 100644
index 000000000000..94878a0ce528
--- /dev/null
+++ b/multimedia/mplayer/files/patch-DMO_VideoDecoder.c
@@ -0,0 +1,10 @@
+--- loader/dmo/DMO_VideoDecoder.c	2007/01/26 09:21:22	22019
++++ loader/dmo/DMO_VideoDecoder.c	2007/02/11 17:55:49	22204
+@@ -119,6 +119,7 @@
+      
+         this->iv.m_bh = malloc(bihs);
+         memcpy(this->iv.m_bh, format, bihs);
++        this->iv.m_bh->biSize = bihs;
+ 
+         this->iv.m_State = STOP;
+         //this->iv.m_pFrame = 0;
-- 
cgit v1.2.3