CVSROOT: /cvs Module name: ports Changes by: na...@cvs.openbsd.org 2014/04/08 12:56:52
Modified files:
audio/xmms : Makefile
Added files:
audio/xmms/patches: patch-xmms_bmp_c
Log message:
Fix CVE-2007-0653, CVE-2007-0654.
Integer overflow and underflow allows user-assisted remote attackers
to execute arbitrary code via crafted header information in a skin
bitmap image, which triggers memory corruption.
