r735 - in /unstable/libmms: ./ debian/ debian/changelog debian/compat debian/control debian/copyright debian/docs debian/libmms-dev.install debian/libmms0.install debian/patches/ debian/patches/10_asf-header-size.patch debian/patches/series debian/rules

lool at users.alioth.debian.org lool at users.alioth.debian.org
Fri Mar 30 10:35:08 CET 2007


Author: lool
Date: Fri Mar 30 09:35:07 2007
New Revision: 735

URL: http://svn.debian.org/wsvn/pkg-multimedia/?sc=1&rev=735
Log:
* Import libmms 0.3-2.

Added:
    unstable/libmms/
    unstable/libmms/debian/   (with props)
    unstable/libmms/debian/changelog
    unstable/libmms/debian/compat
    unstable/libmms/debian/control
    unstable/libmms/debian/copyright
    unstable/libmms/debian/docs
    unstable/libmms/debian/libmms-dev.install
    unstable/libmms/debian/libmms0.install
    unstable/libmms/debian/patches/
    unstable/libmms/debian/patches/10_asf-header-size.patch
    unstable/libmms/debian/patches/series
    unstable/libmms/debian/rules   (with props)

Propchange: unstable/libmms/debian/
------------------------------------------------------------------------------
    mergeWithUpstream = 1

Added: unstable/libmms/debian/changelog
URL: http://svn.debian.org/wsvn/pkg-multimedia/unstable/libmms/debian/changelog?rev=735&op=file
==============================================================================
--- unstable/libmms/debian/changelog (added)
+++ unstable/libmms/debian/changelog Fri Mar 30 09:35:07 2007
@@ -1,0 +1,95 @@
+libmms (0.3-2) unstable; urgency=low
+
+  * Hook a quilt patch system in the build; build-depend on quilt.
+  * New patch, 10_asf-header-size, doubles the size of the ASF header to
+    permit decoding of some ASF streams and fixes a couple of debug messages;
+    thanks Sjoerd Simons; closes: #412851.
+
+ -- Loic Minier <lool at dooz.org>  Wed, 28 Feb 2007 17:52:13 +0100
+
+libmms (0.3-1) unstable; urgency=low
+
+  * New upstream release; closes: #392233.
+    - Merges all Debian changes.
+
+ -- Loic Minier <lool at dooz.org>  Wed, 11 Oct 2006 11:17:00 +0200
+
+libmms (0.2-7) unstable; urgency=high
+
+  * SECURITY: CVE-2006-2200: buffer overflows in mms / mmsh parsers:
+    additional fixes thanks to Matthias Hopf:
+    - even more checks on "packet_length" / "packet_len" in src/mms.c and
+      src/mmsh.c
+    - fix memset() calls in the two string_utf16() implementations in
+      src/mms.c to clear all bytes in dest, "len" is the UTF-16 length of the
+      string in wide chars, so the memset should use "2 * len".
+
+ -- Loic Minier <lool at dooz.org>  Tue, 11 Jul 2006 13:11:11 +0200
+
+libmms (0.2-6) unstable; urgency=low
+
+  * SECURITY: CVE-2006-2200: buffer overflows in mms / mmsh parsers: fix an
+    error that crept in the previous fix and use start < end instead of start
+    > end in src/mms.c and src/mmsh.c, thanks Martin Pitt.
+
+ -- Loic Minier <lool at dooz.org>  Wed,  5 Jul 2006 18:13:36 +0200
+
+libmms (0.2-5) unstable; urgency=high
+
+  * SECURITY: CVE-2006-2200: buffer overflows in mms / mmsh parsers: apply
+    memset() range fixes adapted from #374577 by Wesley J. Landaker.
+
+ -- Loic Minier <lool at dooz.org>  Thu, 22 Jun 2006 20:53:44 +0200
+
+libmms (0.2-4) unstable; urgency=low
+
+  * Apply patch from Wesley J. Landaker for the headers to be usable from C++.
+    (Closes: #362662)
+    [src/mms.h, src/mmsh.h, src/mmsio.h]
+
+ -- Loic Minier <lool at dooz.org>  Mon,  5 Jun 2006 16:33:29 +0200
+
+libmms (0.2-3) unstable; urgency=low
+
+  * Add a libglib2.0-dev dependency to libmms-dev.
+    [debian/control]
+  * Bump up Standards Version to 3.7.2.
+    [debian/control]
+  * Drop references to PKG_CFLAGS and PKG_LIBS and use GLIB_LIBS instead as it
+    seems these were not properly renamed and relibtoolize. (Closes: #362666)
+    [src/Makefile.am, libmms-0.2/Makefile.in, libmms-0.2/src/Makefile.in,
+     libmms-0.2/pkgconfig/Makefile.in]
+
+ -- Loic Minier <lool at dooz.org>  Mon, 22 May 2006 18:11:10 +0200
+
+libmms (0.2-2) unstable; urgency=low
+
+  * Fix shlibs to use parenthesis.
+    [debian/rules]
+
+ -- Loic Minier <lool at dooz.org>  Mon, 16 Jan 2006 22:00:16 +0100
+
+libmms (0.2-1) unstable; urgency=low
+
+  * New upstream release.
+    - Bump shlibs to libmms0 >= 0.2.
+      [debian/rules]
+
+ -- Loic Minier <lool at dooz.org>  Mon, 16 Jan 2006 21:19:46 +0100
+
+libmms (0.1-1) unstable; urgency=low
+
+  * Initial upload for Debian based on the Ubuntu package in version
+    0.1-0ubuntu1. (Closes: #330355)
+  * Clarify copyright status and license.  [debian/copyright]
+  * Clean up package descriptions. [debian/control]
+  * Inherit CFLAGS. [debian/rules]
+  * Remove useless files. [debian/dirs, libmms0.dirs, libmms-dev.dirs]
+
+ -- Loic Minier <lool at dooz.org>  Thu, 29 Sep 2005 21:52:44 +0200
+
+libmms (0.1-0ubuntu1) breezy; urgency=low
+
+  * Initial release
+
+ -- Søren Hansen <sh at warma.dk>  Thu, 15 Sep 2005 16:56:05 +0200 

Added: unstable/libmms/debian/compat
URL: http://svn.debian.org/wsvn/pkg-multimedia/unstable/libmms/debian/compat?rev=735&op=file
==============================================================================
--- unstable/libmms/debian/compat (added)
+++ unstable/libmms/debian/compat Fri Mar 30 09:35:07 2007
@@ -1,0 +1,1 @@
+4

Added: unstable/libmms/debian/control
URL: http://svn.debian.org/wsvn/pkg-multimedia/unstable/libmms/debian/control?rev=735&op=file
==============================================================================
--- unstable/libmms/debian/control (added)
+++ unstable/libmms/debian/control Fri Mar 30 09:35:07 2007
@@ -1,0 +1,28 @@
+Source: libmms
+Priority: optional
+Maintainer: Loic Minier <lool at dooz.org>
+Build-Depends: debhelper (>= 4.0.0), autotools-dev, libglib2.0-dev, quilt
+Standards-Version: 3.7.2
+Section: libs
+
+Package: libmms-dev
+Section: libdevel
+Architecture: any
+Depends: libmms0 (= ${Source-Version}), libglib2.0-dev
+Description: MMS stream protocol library - development files
+ LibMMS is a common library for parsing mms:// and mmsh:// type network
+ streams.  These are commonly used to stream Windows Media Video content
+ over the web.  LibMMS itself is only for receiving MMS stream, it
+ doesn't handle sending at all.
+ .
+ These package holds the development files.
+
+Package: libmms0
+Section: libs
+Architecture: any
+Depends: ${shlibs:Depends}, ${misc:Depends}
+Description: MMS stream protocol library
+ LibMMS is a common library for parsing mms:// and mmsh:// type network
+ streams.  These are commonly used to stream Windows Media Video content
+ over the web.  LibMMS itself is only for receiving MMS stream, it
+ doesn't handle sending at all.

Added: unstable/libmms/debian/copyright
URL: http://svn.debian.org/wsvn/pkg-multimedia/unstable/libmms/debian/copyright?rev=735&op=file
==============================================================================
--- unstable/libmms/debian/copyright (added)
+++ unstable/libmms/debian/copyright Fri Mar 30 09:35:07 2007
@@ -1,0 +1,45 @@
+This package was debianized by Søren Hansen <sh at warma.dk> on
+Wed, 14 Sep 2005 19:44:38 +0200.
+
+It was downloaded from Ubuntu and uploaded to Debian with some modifications
+by Loic Minier <lool at dooz.org> on Wed, 28 Sep 2005 21:56:25 +0200.
+
+It was downloaded from <http://sourceforge.net/projects/libmms/>.
+
+
+Current developers:
+        Maciej Katafiasz (Mathrick) <mathrick at users.sourceforge.net>
+        SÃren Hansen (shawarma) <sh at warma.dk>
+Original implementation:
+        Major MMS <http://www.geocities.com/majormms/>
+Other authors:
+        the Xine project <http://xine.sf.net>
+Enhanced and maintained by Xine project at http://xine.sf.net
+
+License:
+
+   (Some of the upstream sources have Xine headers and are copyrighted under
+   the  GPL, and some newer files have LGPL headers.  However, this snipsets
+   were relicensed by their authors as claimed at:
+     <http://marc.theaimsgroup.com/?l=xine-devel&m=107261185004445&w=2>
+     <http://marc.theaimsgroup.com/?l=xine-devel&m=110376804906666&w=2>
+   )
+
+
+    This package is free software; you can redistribute it and/or
+    modify it under the terms of the GNU Lesser General Public
+    License as published by the Free Software Foundation; either
+    version 2 of the License, or (at your option) any later version.
+
+    This package is distributed in the hope that it will be useful,
+    but WITHOUT ANY WARRANTY; without even the implied warranty of
+    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
+    Lesser General Public License for more details.
+
+    You should have received a copy of the GNU Lesser General Public
+    License along with this package; if not, write to the Free Software
+    Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301 USA
+
+On Debian systems, the complete text of the GNU Lesser General
+Public License can be found in `/usr/share/common-licenses/LGPL'.
+

Added: unstable/libmms/debian/docs
URL: http://svn.debian.org/wsvn/pkg-multimedia/unstable/libmms/debian/docs?rev=735&op=file
==============================================================================
--- unstable/libmms/debian/docs (added)
+++ unstable/libmms/debian/docs Fri Mar 30 09:35:07 2007
@@ -1,0 +1,2 @@
+README
+TODO

Added: unstable/libmms/debian/libmms-dev.install
URL: http://svn.debian.org/wsvn/pkg-multimedia/unstable/libmms/debian/libmms-dev.install?rev=735&op=file
==============================================================================
--- unstable/libmms/debian/libmms-dev.install (added)
+++ unstable/libmms/debian/libmms-dev.install Fri Mar 30 09:35:07 2007
@@ -1,0 +1,6 @@
+usr/include/*
+usr/lib/lib*.a
+usr/lib/lib*.so
+usr/lib/pkgconfig/*
+usr/lib/*.la
+usr/share/pkgconfig/*

Added: unstable/libmms/debian/libmms0.install
URL: http://svn.debian.org/wsvn/pkg-multimedia/unstable/libmms/debian/libmms0.install?rev=735&op=file
==============================================================================
--- unstable/libmms/debian/libmms0.install (added)
+++ unstable/libmms/debian/libmms0.install Fri Mar 30 09:35:07 2007
@@ -1,0 +1,1 @@
+usr/lib/lib*.so.*

Added: unstable/libmms/debian/patches/10_asf-header-size.patch
URL: http://svn.debian.org/wsvn/pkg-multimedia/unstable/libmms/debian/patches/10_asf-header-size.patch?rev=735&op=file
==============================================================================
--- unstable/libmms/debian/patches/10_asf-header-size.patch (added)
+++ unstable/libmms/debian/patches/10_asf-header-size.patch Fri Mar 30 09:35:07 2007
@@ -1,0 +1,41 @@
+--- libmms-0.3.orig/src/mms.c
++++ libmms-0.3/src/mms.c
+@@ -80,7 +80,7 @@
+ #define CMD_PREFIX_LEN    8
+ #define CMD_BODY_LEN   1024
+ 
+-#define ASF_HEADER_LEN 8192
++#define ASF_HEADER_LEN (8192 * 2)
+ 
+ 
+ #define MMS_PACKET_ERR        0
+@@ -680,7 +680,8 @@
+       case MMS_PACKET_ASF_PACKET:
+         if (header.packet_len + this->asf_header_len > ASF_HEADER_LEN) {
+             lprintf( "***LOG:*** -- "
+-                     "libmms: asf packet too large\n");
++                     "libmms: asf packet too large: %d\n", 
++                     header.packet_len + this->asf_header_len);
+             return 0;
+         }
+         len = io_read(io,  this->s,
+--- libmms-0.3.orig/src/mmsh.c
++++ libmms-0.3/src/mmsh.c
+@@ -79,7 +79,7 @@
+ #define CHUNK_TYPE_END         0x4524
+ #define CHUNK_TYPE_ASF_HEADER  0x4824
+ #define CHUNK_SIZE              65536  /* max chunk size */
+-#define ASF_HEADER_SIZE          8192  /* max header size */
++#define ASF_HEADER_SIZE     (8192 * 2)  /* max header size */
+ 
+ #define SCRATCH_SIZE             1024
+ 
+@@ -462,7 +462,7 @@
+   /* read chunk header */
+   read_len = io_read(io, this->s, chunk_header, CHUNK_HEADER_LENGTH);
+   if (read_len != CHUNK_HEADER_LENGTH) {
+-    lprintf ("chunk header read failed, %d != %d\n", len, CHUNK_HEADER_LENGTH);
++    lprintf ("chunk header read failed, %d != %d\n", read_len, CHUNK_HEADER_LENGTH);
+     return 0;
+   }
+   this->chunk_type       = LE_16 (&chunk_header[0]);

Added: unstable/libmms/debian/patches/series
URL: http://svn.debian.org/wsvn/pkg-multimedia/unstable/libmms/debian/patches/series?rev=735&op=file
==============================================================================
--- unstable/libmms/debian/patches/series (added)
+++ unstable/libmms/debian/patches/series Fri Mar 30 09:35:07 2007
@@ -1,0 +1,1 @@
+10_asf-header-size.patch

Added: unstable/libmms/debian/rules
URL: http://svn.debian.org/wsvn/pkg-multimedia/unstable/libmms/debian/rules?rev=735&op=file
==============================================================================
--- unstable/libmms/debian/rules (added)
+++ unstable/libmms/debian/rules Fri Mar 30 09:35:07 2007
@@ -1,0 +1,91 @@
+#!/usr/bin/make -f
+
+# Uncomment this to turn on verbose mode.
+#export DH_VERBOSE=1
+
+# These are used for cross-compiling and for saving the configure script
+# from having to guess our platform (since we know it already)
+DEB_HOST_GNU_TYPE   ?= $(shell dpkg-architecture -qDEB_HOST_GNU_TYPE)
+DEB_BUILD_GNU_TYPE  ?= $(shell dpkg-architecture -qDEB_BUILD_GNU_TYPE)
+
+PATCH_DIR := debian/patches
+
+CFLAGS += -Wall -g
+
+ifneq (,$(findstring noopt,$(DEB_BUILD_OPTIONS)))
+	CFLAGS += -O0
+else
+	CFLAGS += -O2
+endif
+
+config.status: configure patch-stamp
+	dh_testdir
+	CFLAGS="$(CFLAGS)" ./configure --host=$(DEB_HOST_GNU_TYPE) --build=$(DEB_BUILD_GNU_TYPE) --prefix=/usr --mandir=\$${prefix}/share/man --infodir=\$${prefix}/share/info
+
+patch-stamp:
+	dh_testdir
+	# apply patches
+	QUILT_PATCHES=$(PATCH_DIR) quilt --quiltrc /dev/null push -a || test $$? = 2
+	# backup the original (potentially patched) files to restore them in
+	# the clean target
+	-test -r config.sub && cp config.sub config.sub.orig
+	-test -r config.guess && cp config.guess config.guess.orig
+	-test -r /usr/share/misc/config.sub && \
+		cp -f /usr/share/misc/config.sub config.sub
+	-test -r /usr/share/misc/config.guess && \
+		cp -f /usr/share/misc/config.guess config.guess
+	touch $@
+
+
+build: build-stamp
+build-stamp: config.status
+	dh_testdir
+	$(MAKE)
+
+	touch build-stamp
+
+clean:
+	dh_testdir
+	dh_testroot
+	-$(MAKE) distclean
+	# restore files from backup (before unpatching)
+	-test -r config.sub.orig && mv -f config.sub.orig config.sub
+	-test -r config.guess.orig && mv -f config.guess.orig config.guess
+	# unapply patches, if any
+	QUILT_PATCHES=$(PATCH_DIR) quilt --quiltrc /dev/null pop -a -R || test $$? = 2
+	rm -rf .pc
+	rm -f patch-stamp
+	rm -f build-stamp
+	dh_clean
+
+install: build
+	dh_testdir
+	dh_testroot
+	dh_clean -k
+	dh_installdirs
+	$(MAKE) install DESTDIR=$(CURDIR)/debian/tmp
+
+
+binary-indep: build install
+
+binary-arch: build install
+	dh_testdir
+	dh_testroot
+	dh_installchangelogs ChangeLog
+	dh_installdocs
+	dh_installexamples
+	dh_install --sourcedir=debian/tmp
+	dh_installman
+	dh_link
+	dh_strip
+	dh_compress
+	dh_fixperms
+	dh_makeshlibs -V 'libmms0 (>= 0.2)'
+	dh_installdeb
+	dh_shlibdeps
+	dh_gencontrol
+	dh_md5sums
+	dh_builddeb
+
+binary: binary-indep binary-arch
+.PHONY: build clean binary-indep binary-arch binary install

Propchange: unstable/libmms/debian/rules
------------------------------------------------------------------------------
    svn:executable = *




More information about the pkg-multimedia-commits mailing list