JakeHillion/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
879ffc06fe
nixpkgs/pkgs/development
History
Andreas Rammhold 879ffc06fe
libvorbis: 1.3.5 -> 1.3.6 
This update includes the removed patches (CVE-2017-14632,
CVE-2017-14633) and additionally fixes CVE-2018-5146 [1].

The changelog:

libvorbis 1.3.6 (2018-03-16) -- "Xiph.Org libVorbis I 20180316 (Now 100% fewer shells)"

* Fix CVE-2018-5146 - out-of-bounds write on codebook decoding.
* Fix CVE-2017-14632 - free() on unitialized data
* Fix CVE-2017-14633 - out-of-bounds read
* Fix bitrate metadata parsing.
* Fix out-of-bounds read in codebook parsing.
* Fix residue vector size in Vorbis I spec.
* Appveyor support
* Travis CI support
* Add secondary CMake build system.
* Build system fixes

[1] http://seclists.org/oss-sec/2018/q1/243
2018-03-17 19:17:56 +01:00
..
arduino
beam-modules
bower-modules/generic
compilers Merge pull request #36956 from coreyoconnor/merge 2018-03-17 18:23:11 +01:00
coq-modules coqPackages.bignums: Change expression to match other Coq packages 2018-03-06 07:46:51 -08:00
dotnet-modules/patches
eclipse/ecj
em-modules/generic
go-modules
guile-modules
haskell-modules brick: undo update to revision 1, which breaks the build with GHC 8.2.2 2018-03-17 11:42:36 +01:00
idris-modules idrisPackages.wl-pprint: 2016-09-28 -> 2017-03-13 2018-03-09 10:22:53 +01:00
interpreters elixir: 1.6.2 -> 1.6.4 2018-03-16 21:15:07 -04:00
java-modules
libraries libvorbis: 1.3.5 -> 1.3.6 2018-03-17 19:17:56 +01:00
lisp-modules
lua-modules
misc darwin: disable broken packages 2018-03-08 17:21:17 -06:00
mobile Merge branch 'master' 2018-03-05 14:53:27 +01:00
node-packages nodePackages: regenerate with node2nix 1.5.3 2018-03-13 00:04:44 +01:00
ocaml-modules ocamlPackages.sawja: 1.5.2 -> 1.5.3 2018-03-09 07:53:49 +01:00
perl-modules Merge branch 'master' into staging 2018-03-10 20:38:13 +00:00
pharo pharo: Tighten source and simplify meta.platforms 2018-03-12 18:55:41 -04:00
pure-modules
python-modules pythonPackages.pyspark: Init at 2.3.0 2018-03-17 09:54:12 -04:00
qtcreator
r-modules R: fix evaluation errors 2018-03-15 21:14:29 +01:00
ruby-modules treewide: s/xlibs/xorg/g (#36889) 2018-03-13 10:16:03 +00:00
stm32/betaflight
tools Merge pull request #37106 from ryantm/auto-update/sassc 2018-03-17 13:42:39 +01:00
web nodejs-9_x: 9.7.1 -> 9.8.0 2018-03-16 15:43:30 +08:00