From owner-svn-ports-branches@freebsd.org Sun Jan 17 10:56:55 2016 Return-Path: Delivered-To: svn-ports-branches@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 2AD64A6D052; Sun, 17 Jan 2016 10:56:55 +0000 (UTC) (envelope-from riggs@FreeBSD.org) Received: from repo.freebsd.org (repo.freebsd.org [IPv6:2610:1c1:1:6068::e6a:0]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 05E361AA9; Sun, 17 Jan 2016 10:56:54 +0000 (UTC) (envelope-from riggs@FreeBSD.org) Received: from repo.freebsd.org ([127.0.1.37]) by repo.freebsd.org (8.15.2/8.15.2) with ESMTP id u0HAus2T056552; Sun, 17 Jan 2016 10:56:54 GMT (envelope-from riggs@FreeBSD.org) Received: (from riggs@localhost) by repo.freebsd.org (8.15.2/8.15.2/Submit) id u0HAur2s056547; Sun, 17 Jan 2016 10:56:53 GMT (envelope-from riggs@FreeBSD.org) Message-Id: <201601171056.u0HAur2s056547@repo.freebsd.org> X-Authentication-Warning: repo.freebsd.org: riggs set sender to riggs@FreeBSD.org using -f From: Thomas Zander Date: Sun, 17 Jan 2016 10:56:53 +0000 (UTC) To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-branches@freebsd.org Subject: svn commit: r406299 - in branches/2016Q1/multimedia: mencoder mplayer X-SVN-Group: ports-branches MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-BeenThere: svn-ports-branches@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: SVN commit messages for all the branches of the ports tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 17 Jan 2016 10:56:55 -0000 Author: riggs Date: Sun Jan 17 10:56:53 2016 New Revision: 406299 URL: https://svnweb.freebsd.org/changeset/ports/406299 Log: MFH: r406295 Build with ffmpeg-2.8.5; fix zero-day remote vulnerability Both mentioned CVE IDs refer to vulnerabilities where a remote attacker can read arbitrary files by using the subfile protocol in an HTTP Live Streaming (HLS) M3U8 file. Building with 2.8.5 fixes those. Security: CVE-2016-1897 CVE-2016-1898 Approved by: ports-secteam (miwi) Modified: branches/2016Q1/multimedia/mencoder/Makefile branches/2016Q1/multimedia/mencoder/distinfo branches/2016Q1/multimedia/mplayer/Makefile branches/2016Q1/multimedia/mplayer/Makefile.common branches/2016Q1/multimedia/mplayer/distinfo Directory Properties: branches/2016Q1/ (props changed) Modified: branches/2016Q1/multimedia/mencoder/Makefile ============================================================================== --- branches/2016Q1/multimedia/mencoder/Makefile Sun Jan 17 10:29:27 2016 (r406298) +++ branches/2016Q1/multimedia/mencoder/Makefile Sun Jan 17 10:56:53 2016 (r406299) @@ -3,7 +3,7 @@ PORTNAME= mencoder PORTVERSION= ${MPLAYER_PORT_VERSION} -PORTREVISION= 1 +PORTREVISION= 2 CATEGORIES= multimedia audio MAINTAINER= riggs@FreeBSD.org Modified: branches/2016Q1/multimedia/mencoder/distinfo ============================================================================== --- branches/2016Q1/multimedia/mencoder/distinfo Sun Jan 17 10:29:27 2016 (r406298) +++ branches/2016Q1/multimedia/mencoder/distinfo Sun Jan 17 10:56:53 2016 (r406299) @@ -1,4 +1,4 @@ -SHA256 (ffmpeg-2.8.4.tar.bz2) = 83cc8136a7845546062a43cda9ae3cf0a02f43ef5e434d2f997f055231a75f8e -SIZE (ffmpeg-2.8.4.tar.bz2) = 8579383 +SHA256 (ffmpeg-2.8.5.tar.bz2) = 3b6d9951533323ee64a21d0aa7667a780b3470bfe4e0fb7c1b33307ce290615a +SIZE (ffmpeg-2.8.5.tar.bz2) = 8580755 SHA256 (mplayer-1.2.20151219.tar.xz) = f11d1100a1c37ec9e3e19c7698baf77871ae305ae431ec4a3dc187ca9316e4a2 SIZE (mplayer-1.2.20151219.tar.xz) = 5167716 Modified: branches/2016Q1/multimedia/mplayer/Makefile ============================================================================== --- branches/2016Q1/multimedia/mplayer/Makefile Sun Jan 17 10:29:27 2016 (r406298) +++ branches/2016Q1/multimedia/mplayer/Makefile Sun Jan 17 10:56:53 2016 (r406299) @@ -3,7 +3,7 @@ PORTNAME= mplayer PORTVERSION= ${MPLAYER_PORT_VERSION} -PORTREVISION= 1 +PORTREVISION= 2 CATEGORIES= multimedia audio MAINTAINER= riggs@FreeBSD.org Modified: branches/2016Q1/multimedia/mplayer/Makefile.common ============================================================================== --- branches/2016Q1/multimedia/mplayer/Makefile.common Sun Jan 17 10:29:27 2016 (r406298) +++ branches/2016Q1/multimedia/mplayer/Makefile.common Sun Jan 17 10:56:53 2016 (r406299) @@ -6,7 +6,7 @@ MPLAYER_SNAPSHOT_DATE= 2015-12-19 MPLAYER_PORT_VERSION= 1.2.r${MPLAYER_SNAPSHOT_DATE:S/-//g} -FFMPEG_VERSION= 2.8.4 +FFMPEG_VERSION= 2.8.5 MASTER_SITES= LOCAL/riggs/mplayer:local \ http://ffmpeg.org/releases/:ffmpeg DISTFILES+= ffmpeg-${FFMPEG_VERSION}.tar.bz2:ffmpeg \ Modified: branches/2016Q1/multimedia/mplayer/distinfo ============================================================================== --- branches/2016Q1/multimedia/mplayer/distinfo Sun Jan 17 10:29:27 2016 (r406298) +++ branches/2016Q1/multimedia/mplayer/distinfo Sun Jan 17 10:56:53 2016 (r406299) @@ -1,4 +1,4 @@ -SHA256 (ffmpeg-2.8.4.tar.bz2) = 83cc8136a7845546062a43cda9ae3cf0a02f43ef5e434d2f997f055231a75f8e -SIZE (ffmpeg-2.8.4.tar.bz2) = 8579383 +SHA256 (ffmpeg-2.8.5.tar.bz2) = 3b6d9951533323ee64a21d0aa7667a780b3470bfe4e0fb7c1b33307ce290615a +SIZE (ffmpeg-2.8.5.tar.bz2) = 8580755 SHA256 (mplayer-1.2.20151219.tar.xz) = f11d1100a1c37ec9e3e19c7698baf77871ae305ae431ec4a3dc187ca9316e4a2 SIZE (mplayer-1.2.20151219.tar.xz) = 5167716