File taglib-CVE-2012-1108.patch of Package taglib.495
Index: taglib/ogg/xiphcomment.cpp =================================================================== --- taglib/ogg/xiphcomment.cpp.orig +++ taglib/ogg/xiphcomment.cpp @@ -287,7 +287,7 @@ void Ogg::XiphComment::parse(const ByteV int pos = 0; - int vendorLength = data.mid(0, 4).toUInt(false); + uint vendorLength = data.mid(0, 4).toUInt(false); pos += 4; d->vendorID = String(data.mid(pos, vendorLength), String::UTF8);