This patch was downloaded from https://sourceforge.net/p/mpg321/bugs/51/ and
fixes CVE-2019-14247.

Description: Handle illegal bitrate value
Author: Chrysostomos Nanakos <cnanakos@debian.org>
Bug-Debian: https://bugs.debian.org/870406
Bug-Debian: https://bugs.debian.org/887057

--- mpg321-0.3.2.orig/mad.c
+++ mpg321-0.3.2/mad.c
@@ -574,6 +574,12 @@ void scan(void const *ptr, ssize_t len,
 
     if (!is_vbr)
     {
+	if (header.bitrate <= 0)                                                
+        {                                                                       
+            fprintf(stderr, "Illegal bit allocation value\n");                                                                              
+            return;                                                             
+        }    
+
         double time = (len * 8.0) / (header.bitrate); /* time in seconds */
         double timefrac = (double)time - ((long)(time));
         long nsamples = 32 * MAD_NSBSAMPLES(&header); /* samples per frame */
a><a href='/guix/'>summary</a><a href='/guix/refs/?id=c302b7a5966908b3a5db1ef3ccd3af460b847675'>refs</a><a class='active' href='/guix/log/nix/boost'>log</a><a href='/guix/tree/nix/boost?id=c302b7a5966908b3a5db1ef3ccd3af460b847675'>tree</a><a href='/guix/commit/nix/boost?id=c302b7a5966908b3a5db1ef3ccd3af460b847675'>commit</a><a href='/guix/diff/nix/boost?id=c302b7a5966908b3a5db1ef3ccd3af460b847675'>diff</a></td><td class='form'><form class='right' method='get' action='/guix/log/nix/boost'>
<input type='hidden' name='id' value='c302b7a5966908b3a5db1ef3ccd3af460b847675'/><select name='qt'>
<option value='grep'>log msg</option>
<option value='author'>author</option>
<option value='committer'>committer</option>
<option value='range'>range</option>
</select>
<input class='txt' type='search' size='10' name='q' value=''/>
<input type='submit' value='search'/>
</form>
</td></tr></table>
<div class='path'>path: <a href='/guix/log/?id=c302b7a5966908b3a5db1ef3ccd3af460b847675'>root</a>/<a href='/guix/log/nix?id=c302b7a5966908b3a5db1ef3ccd3af460b847675'>nix</a>/<a href='/guix/log/nix/boost?id=c302b7a5966908b3a5db1ef3ccd3af460b847675'>boost</a></div><div class='content'><table class='list nowrap'><tr class='nohover'><th class='left'>Age</th><th class='left'>Commit message (<a href='/guix/log/nix/boost?id=c302b7a5966908b3a5db1ef3ccd3af460b847675&amp;showmsg=1'>Expand</a>)</th><th class='left'>Author</th></tr>
<tr><td><span title='2020-06-24 19:55:22 +0100'>2020-06-24</span></td><td><a href='/guix/commit/nix/boost?id=cd43b55da7ab51c996a7a3449c78f2a493616106'>nix: Tweak .gitignore files.</a><span class='msg-avail'>...<span class='msg-tooltip'>Remove .gitignore entries where they match source files that are tracked in
Git.  This is relevant to me at least, as some code searching tools use
.gitignore files and will ignore matched files.
</span></span></td><td>Christopher Baines</td></tr>