Opened 7 years ago
Closed 7 years ago
#54009 closed update (fixed)
libsndfile @1.0.27: update to 1.0.28
| Reported by: | l2dy (Zero King) | Owned by: | janstary (Jan Starý) |
|---|---|---|---|
| Priority: | Normal | Milestone: | |
| Component: | ports | Version: | |
| Keywords: | security | Cc: | |
| Port: | libsndfile |
Description
CVE-2017-7585 CVE-2017-7586 CVE-2017-7741 CVE-2017-7742.
All low impact from Red Hat CVE Database.
Attachments (2)
Change History (6)
comment:1 Changed 7 years ago by janstary (Jan Starý)
Changed 7 years ago by janstary (Jan Starý)
| Attachment: | Portfile.diff added |
|---|
upgrade libsndfile to 1.0.28
Changed 7 years ago by janstary (Jan Starý)
| Attachment: | patch-Wvla.diff added |
|---|
disable the -Wvla option
comment:2 Changed 7 years ago by janstary (Jan Starý)
BTW, libsndfile-1.0.29pre1 already exists that does not need the patch.
comment:3 Changed 7 years ago by janstary (Jan Starý)
Do we need to do something else before commiting this?
comment:4 Changed 7 years ago by mf2k (Frank Schima)
| Resolution: | → fixed |
|---|---|
| Status: | new → closed |
Note: See
TracTickets for help on using
tickets.
Attached find a diff to the Portfile which upgrades libsndfile to 1.0.28 and a patchfile that removes the newly introduced -Wvla option which breaks build on MacOS 10.6.8 whose gcc 4.2.1 does not recognize this option.