CVSROOT: /cvs Module name: ports Changes by: na...@cvs.openbsd.org 2014/04/08 12:56:52
Modified files: audio/xmms : Makefile Added files: audio/xmms/patches: patch-xmms_bmp_c Log message: Fix CVE-2007-0653, CVE-2007-0654. Integer overflow and underflow allows user-assisted remote attackers to execute arbitrary code via crafted header information in a skin bitmap image, which triggers memory corruption.