On 2015/12/10 10:39, Jan Stary wrote:
> On Nov 24 23:16:21, h...@stare.cz wrote:
> > This updates audio/libsndfile to the new release.
> >
> > * CVE-2014-9756 fixed upstream, drop the patch
> > * share/doc/libsndfile/pkgconfig.html removed
> > * man1/sndfile-salvage.1 added
> >
> > Also, upstream
On Nov 24 23:16:21, h...@stare.cz wrote:
> This updates audio/libsndfile to the new release.
>
> * CVE-2014-9756 fixed upstream, drop the patch
> * share/doc/libsndfile/pkgconfig.html removed
> * man1/sndfile-salvage.1 added
>
> Also, upstream has accepted a complete rewrite of the manpages
> int
On Nov 25 10:54:43, st...@openbsd.org wrote:
> There are a number of test failures on macppc, though they occur in
> the existing version too so I don't think they should block the update
> but might be worth talking to upstream about.
Thanks, I will dig up my old MacMini and look into this.
On 2015/11/25 10:29, Stuart Henderson wrote:
> On 2015/11/25 08:27, Jan Stary wrote:
> > On Nov 24 23:16:21, h...@stare.cz wrote:
> > > Tested on amd64, i386 and armv7.
> > > Please re-test everywhere.
> >
> > Also, I only tested the sndfile-* binaries and audio/sox
> > - please test your favourit
On 2015/11/25 08:27, Jan Stary wrote:
> On Nov 24 23:16:21, h...@stare.cz wrote:
> > Tested on amd64, i386 and armv7.
> > Please re-test everywhere.
>
> Also, I only tested the sndfile-* binaries and audio/sox
> - please test your favourite audio applications using sndfile, too.
>
> Jan
>
On Nov 24 23:16:21, h...@stare.cz wrote:
> Tested on amd64, i386 and armv7.
> Please re-test everywhere.
Also, I only tested the sndfile-* binaries and audio/sox
- please test your favourite audio applications using sndfile, too.
Jan
On Nov 25 05:47:53, mich...@codesand.org wrote:
> Looks like the newest heap based overflow vulnerability is also
> patched with this.
>
> https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-7805
> POC: http://www.nemux.org/2015/10/13/libsndfile-1-0-25-heap-overflow/
Yes; I forgot to mentio
Looks like the newest heap based overflow vulnerability is also
patched with this.
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-7805
POC: http://www.nemux.org/2015/10/13/libsndfile-1-0-25-heap-overflow/
Thanks. I hope I didn't bother you too much, (and erik the developer).
I will tes
