Bug 261945 - audio/libmysofa: Bump to latest commit as of 2022-02-14
Summary: audio/libmysofa: Bump to latest commit as of 2022-02-14
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Only Me
Assignee: Jason E. Hale
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2022-02-14 10:31 UTC by Daniel Engberg
Modified: 2022-02-20 13:24 UTC (History)
0 users

See Also:
jhale: maintainer-feedback+

Attachments
Patch for libmysofa (2.45 KB, patch)
2022-02-14 10:31 UTC, Daniel Engberg 		no flags Details | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Daniel Engberg freebsd_committer freebsd_triage 2022-02-14 10:31:02 UTC 
Created attachment 231813 [details]
Patch for libmysofa

This include various bug fixes including CVE-2021-3756 ( https://huntr.dev/bounties/7ca8d9ea-e2a6-4294-af28-70260bb53bc1/ )

These are also fixed:
https://www.huntr.dev/bounties/a6f4e4fe-f9e8-44fa-89aa-ce70bd29dadb/
https://www.huntr.dev/bounties/299abef4-0830-431b-964c-65b78260c264/
https://www.huntr.dev/bounties/c411000a-0190-4669-a676-4f1285cae135/

Compiled and tested on FreeBSD 13.0-STABLE #2 stable/13-n248607-93a95ebbf7c (amd64) (make, make check-plist, make test)
Poudriere testport OK 12.2-RELEASE (amd64)
Poudriere testport OK 13.0-RELEASE (i386)

Also tested with audio/openal-soft
Comment 1 commit-hook freebsd_committer freebsd_triage 2022-02-20 13:19:28 UTC 
A commit in branch main references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=a856b7b47e0e7141b2e93a2b5fbb83ed2127e40f

commit a856b7b47e0e7141b2e93a2b5fbb83ed2127e40f
Author:     Jason E. Hale <jhale@FreeBSD.org>
AuthorDate: 2022-02-20 13:06:04 +0000
Commit:     Jason E. Hale <jhale@FreeBSD.org>
CommitDate: 2022-02-20 13:18:29 +0000

    audio/libmysofa: Update to latest commit to address CVE-2021-3756

    PR:             261945
    Reported by:    diizzy
    MFH:            2022Q1
    Security:       4d763c65-9246-11ec-9aa3-4ccc6adda413

 audio/libmysofa/Makefile                                    |  3 ++-
 audio/libmysofa/distinfo                                    |  6 +++---
 audio/libmysofa/files/patch-tests_compare.sh (new)          | 13 +++++++++++++
 audio/libmysofa/files/patch-tests_compareIgnoreNew.sh (new) | 13 +++++++++++++
 audio/libmysofa/pkg-plist                                   |  2 +-
 5 files changed, 32 insertions(+), 5 deletions(-)
Comment 2 commit-hook freebsd_committer freebsd_triage 2022-02-20 13:23:29 UTC 
A commit in branch 2022Q1 references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=a9b902e698b9d26270f246a9b102c2e50fac13d4

commit a9b902e698b9d26270f246a9b102c2e50fac13d4
Author:     Jason E. Hale <jhale@FreeBSD.org>
AuthorDate: 2022-02-20 13:06:04 +0000
Commit:     Jason E. Hale <jhale@FreeBSD.org>
CommitDate: 2022-02-20 13:21:59 +0000

    audio/libmysofa: Update to latest commit to address CVE-2021-3756

    PR:             261945
    Reported by:    diizzy
    MFH:            2022Q1
    Security:       4d763c65-9246-11ec-9aa3-4ccc6adda413

    (cherry picked from commit a856b7b47e0e7141b2e93a2b5fbb83ed2127e40f)

 audio/libmysofa/Makefile                                    |  3 ++-
 audio/libmysofa/distinfo                                    |  6 +++---
 audio/libmysofa/files/patch-tests_compare.sh (new)          | 13 +++++++++++++
 audio/libmysofa/files/patch-tests_compareIgnoreNew.sh (new) | 13 +++++++++++++
 audio/libmysofa/pkg-plist                                   |  2 +-
 5 files changed, 32 insertions(+), 5 deletions(-)
Comment 3 Jason E. Hale freebsd_committer freebsd_triage 2022-02-20 13:24:34 UTC 
Committed, thanks!