Package: srtp / 1.4.5~20130609~dfsg-1.1+deb8u1

Metadata

Package Version Patches format
srtp 1.4.5~20130609~dfsg-1.1+deb8u1 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
1001_fix_support_forced_64bit_align.patch | (download)

crypto/include/cipher.h | 4 1 + 3 - 0 !
1 file changed, 1 insertion(+), 3 deletions(-)

 fix support forced 64bit alignment
1002_fix_stat_driver_test.patch | (download)

crypto/test/stat_driver.c | 1 1 + 0 - 0 !
1 file changed, 1 insertion(+)

 fix stat driver test
1003_fix_mips_namespace_collision.patch | (download)

test/srtp_driver.c | 20 10 + 10 - 0 !
1 file changed, 10 insertions(+), 10 deletions(-)

 fix mips namespace collision
1004_make_runtest_more_verbose.patch | (download)

Makefile.in | 16 8 + 8 - 0 !
crypto/Makefile.in | 12 6 + 6 - 0 !
2 files changed, 14 insertions(+), 14 deletions(-)

 avoid runtest silencing its output
1005_fix_data_alignment.patch | (download)

test/srtp_driver.c | 5 2 + 3 - 0 !
1 file changed, 2 insertions(+), 3 deletions(-)

 fix data alignment
1007_update_Doxyfile.patch | (download)

doc/Makefile.in | 3 2 + 1 - 0 !
doc/header.template | 40 29 + 11 - 0 !
2 files changed, 31 insertions(+), 12 deletions(-)

 update doxyfile and header template
1008_shared lib.patch | (download)

Makefile.in | 14 11 + 3 - 0 !
1 file changed, 11 insertions(+), 3 deletions(-)

 hack build routines to compile shared library
2001_make_shellscript_noisy.patch | (download)

test/rtpw_test.sh | 5 4 + 1 - 0 !
1 file changed, 4 insertions(+), 1 deletion(-)

 enable debugging in regression test shell script
2002_define_missing_latex_cmd_plus.patch | (download)

doc/header.template | 1 1 + 0 - 0 !
1 file changed, 1 insertion(+)

 provide missing definiton of \+ command
 doxygen's tex output contains a \+ command, which would normally
 be defined in the standard doxygen header, but srtp is using a
 custom header which lacks this definition.
 This patch adds the missing definition, following the approach
 used to solve https://bugs.debian.org/751355 .
CVE 2015 6360.patch | (download)

srtp/srtp.c | 2 2 + 0 - 0 !
1 file changed, 2 insertions(+)

 cve-2015-6360

Prevent potential DoS attack due to lack of bounds checking on RTP header
CSRC count and extension header length. Only the srtp_unprotect function is
affected. AEAD mode does not exist.

Debian-Bug: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=807698