From 63823c93826b20d083c694ebf8f2bac3aaa500fb Mon Sep 17 00:00:00 2001
From: sthen <sthen@openbsd.org>
Date: Tue, 12 Apr 2011 22:40:20 +0000
Subject: [PATCH] Update comments in patch headers to include CVE details (no
 change to actual code). from Brad.

---
 x11/vlc/patches/patch-modules_codec_cdg_c                   | 6 ++----
 x11/vlc/patches/patch-modules_demux_mkv_demux_cpp           | 4 ++--
 .../patch-modules_demux_mkv_matroska_segment_parse_cpp      | 4 ++--
 x11/vlc/patches/patch-modules_demux_mkv_mkv_hpp             | 4 ++--
 x11/vlc/patches/patch-modules_demux_mp4_libmp4_c            | 4 ++--
 x11/vlc/patches/patch-modules_demux_real_c                  | 4 ++--
 x11/vlc/patches/patch-modules_meta_engine_taglib_cpp        | 6 ++++--
 7 files changed, 16 insertions(+), 16 deletions(-)

diff --git a/x11/vlc/patches/patch-modules_codec_cdg_c b/x11/vlc/patches/patch-modules_codec_cdg_c
index dbb9f652ea4..8e5d0887a51 100644
--- a/x11/vlc/patches/patch-modules_codec_cdg_c
+++ b/x11/vlc/patches/patch-modules_codec_cdg_c
@@ -1,8 +1,6 @@
-$OpenBSD: patch-modules_codec_cdg_c,v 1.1 2011/01/14 19:46:46 jasper Exp $
+$OpenBSD: patch-modules_codec_cdg_c,v 1.2 2011/04/12 22:40:20 sthen Exp $
 
-Fix heap overflows
-
-From upstream git commit: d11fca8bf9dc058bcdf67d81c04f84f8905ad8b4
+Fix multiple heap-based buffer overflows. CVE-2011-0021
 
 --- modules/codec/cdg.c.orig	Wed Jan 12 22:04:27 2011
 +++ modules/codec/cdg.c	Wed Jan 12 22:06:35 2011
diff --git a/x11/vlc/patches/patch-modules_demux_mkv_demux_cpp b/x11/vlc/patches/patch-modules_demux_mkv_demux_cpp
index 99f3b3f3b16..a056922ef89 100644
--- a/x11/vlc/patches/patch-modules_demux_mkv_demux_cpp
+++ b/x11/vlc/patches/patch-modules_demux_mkv_demux_cpp
@@ -1,6 +1,6 @@
-$OpenBSD: patch-modules_demux_mkv_demux_cpp,v 1.1 2011/02/02 09:34:23 ajacoutot Exp $
+$OpenBSD: patch-modules_demux_mkv_demux_cpp,v 1.2 2011/04/12 22:40:20 sthen Exp $
 
-Insufficient input validation in MKV demuxer (VideoLAN-SA-1102).
+Insufficient input validation in MKV demuxer. CVE-2011-0531
 
 --- modules/demux/mkv/demux.cpp.orig	Tue Feb  1 20:03:12 2011
 +++ modules/demux/mkv/demux.cpp	Tue Feb  1 20:03:46 2011
diff --git a/x11/vlc/patches/patch-modules_demux_mkv_matroska_segment_parse_cpp b/x11/vlc/patches/patch-modules_demux_mkv_matroska_segment_parse_cpp
index 331949ce810..e699baef1bc 100644
--- a/x11/vlc/patches/patch-modules_demux_mkv_matroska_segment_parse_cpp
+++ b/x11/vlc/patches/patch-modules_demux_mkv_matroska_segment_parse_cpp
@@ -1,6 +1,6 @@
-$OpenBSD: patch-modules_demux_mkv_matroska_segment_parse_cpp,v 1.1 2011/02/02 09:34:23 ajacoutot Exp $
+$OpenBSD: patch-modules_demux_mkv_matroska_segment_parse_cpp,v 1.2 2011/04/12 22:40:20 sthen Exp $
 
-Insufficient input validation in MKV demuxer (VideoLAN-SA-1102).
+Insufficient input validation in MKV demuxer. CVE-2011-0531
 
 --- modules/demux/mkv/matroska_segment_parse.cpp.orig	Tue Feb  1 20:03:56 2011
 +++ modules/demux/mkv/matroska_segment_parse.cpp	Tue Feb  1 20:04:53 2011
diff --git a/x11/vlc/patches/patch-modules_demux_mkv_mkv_hpp b/x11/vlc/patches/patch-modules_demux_mkv_mkv_hpp
index 43de8501c3d..ce3c684e9e4 100644
--- a/x11/vlc/patches/patch-modules_demux_mkv_mkv_hpp
+++ b/x11/vlc/patches/patch-modules_demux_mkv_mkv_hpp
@@ -1,6 +1,6 @@
-$OpenBSD: patch-modules_demux_mkv_mkv_hpp,v 1.2 2011/03/12 21:19:13 jakemsr Exp $
+$OpenBSD: patch-modules_demux_mkv_mkv_hpp,v 1.3 2011/04/12 22:40:20 sthen Exp $
 
-Insufficient input validation in MKV demuxer (VideoLAN-SA-1102).
+Insufficient input validation in MKV demuxer. CVE-2011-0531
 
 --- modules/demux/mkv/mkv.hpp.orig	Thu Apr 15 12:52:46 2010
 +++ modules/demux/mkv/mkv.hpp	Sun Feb 27 02:00:13 2011
diff --git a/x11/vlc/patches/patch-modules_demux_mp4_libmp4_c b/x11/vlc/patches/patch-modules_demux_mp4_libmp4_c
index 981344d06d3..54457bc6464 100644
--- a/x11/vlc/patches/patch-modules_demux_mp4_libmp4_c
+++ b/x11/vlc/patches/patch-modules_demux_mp4_libmp4_c
@@ -1,6 +1,6 @@
-$OpenBSD: patch-modules_demux_mp4_libmp4_c,v 1.1 2011/04/11 15:11:28 sthen Exp $
+$OpenBSD: patch-modules_demux_mp4_libmp4_c,v 1.2 2011/04/12 22:40:20 sthen Exp $
 
-Fix heap-based buffer overflow.
+Fix heap-based buffer overflow. VideoLAN-SA-1103
 
 --- modules/demux/mp4/libmp4.c.orig	Sat Apr  9 21:52:45 2011
 +++ modules/demux/mp4/libmp4.c	Sat Apr  9 21:54:23 2011
diff --git a/x11/vlc/patches/patch-modules_demux_real_c b/x11/vlc/patches/patch-modules_demux_real_c
index 69860ad9020..65db43696d8 100644
--- a/x11/vlc/patches/patch-modules_demux_real_c
+++ b/x11/vlc/patches/patch-modules_demux_real_c
@@ -1,6 +1,6 @@
-$OpenBSD: patch-modules_demux_real_c,v 1.1 2010/12/31 06:58:44 ajacoutot Exp $
+$OpenBSD: patch-modules_demux_real_c,v 1.2 2011/04/12 22:40:20 sthen Exp $
 
-- Fix heap buffer overflow (CVE-2010-3907).
+- Fix heap buffer overflow. CVE-2010-3907
 - Fix potential division by 0.
 
 --- modules/demux/real.c.orig	Sun Mar  7 13:38:01 2010
diff --git a/x11/vlc/patches/patch-modules_meta_engine_taglib_cpp b/x11/vlc/patches/patch-modules_meta_engine_taglib_cpp
index b10b03ff1b2..523cfe44c80 100644
--- a/x11/vlc/patches/patch-modules_meta_engine_taglib_cpp
+++ b/x11/vlc/patches/patch-modules_meta_engine_taglib_cpp
@@ -1,5 +1,7 @@
-$OpenBSD: patch-modules_meta_engine_taglib_cpp,v 1.1 2010/09/29 11:30:03 landry Exp $
-Fix for http://www.videolan.org/security/sa1004.html
+$OpenBSD: patch-modules_meta_engine_taglib_cpp,v 1.2 2011/04/12 22:40:20 sthen Exp $
+
+Fix insufficient input validation. CVE-2010-2937
+
 --- modules/meta_engine/taglib.cpp.orig	Tue Sep 28 19:24:18 2010
 +++ modules/meta_engine/taglib.cpp	Tue Sep 28 19:25:44 2010
 @@ -120,6 +120,8 @@ static void ReadMetaFromId3v2( ID3v2::Tag* tag, demux_