[Bug 207003] [patch update] net/libsrtp 1.5.2 -> 1.5.4, fixing CVE-2015-6360

Sun Feb 7 16:27:23 UTC 2016

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=207003

            Bug ID: 207003
           Summary: [patch update] net/libsrtp 1.5.2 -> 1.5.4, fixing
                    CVE-2015-6360
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Only Me
          Priority: ---
         Component: Individual Port(s)
          Assignee: freebsd-ports-bugs at FreeBSD.org
          Reporter: pi at FreeBSD.org
                CC: alexander at brovikov.ru
             Flags: maintainer-feedback?(alexander at brovikov.ru)
                CC: alexander at brovikov.ru

Created attachment 166711
  --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=166711&action=edit
patch

Testbuilds all fine, portlint all OK

Changes:
- Use BE byte ordering of RTCP trailer.
- Allow zero length payload on unprotect.
- Fix for CVE-2015-6360.
- Pull request 103 - Makefile.in: Don't hard-code ar.
- Pull request 99 - Various fixes for compiling with Visual Studio.
- Pull request 98 - Do not duplicate shared library when installing.

Please note that 2.0.0 was released recently.

-- 
You are receiving this mail because:
You are the assignee for the bug.