Package: unace / 1.2b-10+deb7u1

Metadata

Package Version Patches format
unace 1.2b-10+deb7u1 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
001_cpp_define.patch | (download)

unix/makefile | 19 10 + 9 - 0 !
1 file changed, 10 insertions(+), 9 deletions(-)

 
---
002_fix_warnings.patch | (download)

uac_dcpr.c | 4 4 + 0 - 0 !
1 file changed, 4 insertions(+)

 
---
003_security.patch | (download)

uac_crt.c | 62 58 + 4 - 0 !
uac_crt.h | 2 1 + 1 - 0 !
unace.c | 17 11 + 6 - 0 !
3 files changed, 70 insertions(+), 11 deletions(-)

 
---
004_64_bit_clean.patch | (download)

declare.h | 14 8 + 6 - 0 !
1 file changed, 8 insertions(+), 6 deletions(-)

 
---
005_format security.patch | (download)

unace.c | 4 2 + 2 - 0 !
1 file changed, 2 insertions(+), 2 deletions(-)

 
---
006_security afl.patch | (download)

unace.c | 25 23 + 2 - 0 !
1 file changed, 23 insertions(+), 2 deletions(-)

 
 fixes a buffer overflow when reading bogus file headers
 The header parser was not checking if it had read enough data when trying
 to parse the header from memory, causing it to accept files with headers
 smaller than expected.
 .
 Fixes CVE-2015-2063.