From 82f4404c9eac4b9d05b8026076cd99ceb65ea1fe Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?J=C3=BCrgen=20Buchm=C3=BCller?= <pullmoll@t-online.de>
Date: Sun, 25 Oct 2015 14:58:04 +0100
Subject: [PATCH] miniupnpc: security fix for CVE-2015-6031

---
 .../patches/security-CVE-2015-6031.patch         | 16 ++++++++++++++++
 srcpkgs/miniupnpc/template                       |  2 +-
 2 files changed, 17 insertions(+), 1 deletion(-)
 create mode 100644 srcpkgs/miniupnpc/patches/security-CVE-2015-6031.patch

diff --git a/srcpkgs/miniupnpc/patches/security-CVE-2015-6031.patch b/srcpkgs/miniupnpc/patches/security-CVE-2015-6031.patch
new file mode 100644
index 00000000000..374bb777f1f
--- /dev/null
+++ b/srcpkgs/miniupnpc/patches/security-CVE-2015-6031.patch
@@ -0,0 +1,16 @@
+This patch is equivalent to the original git commit
+https://github.com/miniupnp/miniupnp/commit/79cca974a4c2ab1199786732a67ff6d898051b78
+
+The released version with this fix contains a so revbump.
+
+--- igd_desc_parse.c	2011-04-11 11:19:37.000000000 +0200
++++ igd_desc_parse.c	2015-10-25 14:53:40.348424486 +0100
+@@ -15,6 +15,8 @@
+ void IGDstartelt(void * d, const char * name, int l)
+ {
+ 	struct IGDdatas * datas = (struct IGDdatas *)d;
++	if (l >= MINIUPNPC_URL_MAXSIZE)
++		l = MINIUPNPC_URL_MAXSIZE-1;
+	memcpy( datas->cureltname, name, l);
+ 	datas->cureltname[l] = '\0';
+ 	datas->level++;
diff --git a/srcpkgs/miniupnpc/template b/srcpkgs/miniupnpc/template
index a62df93eb66..bcd8f0f4a33 100644
--- a/srcpkgs/miniupnpc/template
+++ b/srcpkgs/miniupnpc/template
@@ -1,7 +1,7 @@
 # Template file for 'miniupnpc'
 pkgname=miniupnpc
 version=1.9
-revision=2
+revision=3
 short_desc="A small UPnP client library/tool to access Internet Gateway Devices"
 maintainer="Juan RP <xtraeme@voidlinux.eu>"
 homepage="http://miniupnp.free.fr"