[Cooker] Wine & Security upgrades: move it to contribs?

[Frederik Himpe]

It seems that even Wine is vulnerable to the dreaded WMF vulnerability
Windows suffered lately. Now, Wine in fact, is in main. So that means it
should get security updates too.

On the other hand, I can imagine that wine is such a moving target that
it's almost impossible to follow security issues and fix them, without
switching to a complete new version. Furthermore, Wine can be perfectly
fine for running some applications, but for a lot of Windows programs,
it is hardly usable. This makes me wonder: does Wine really belong in
Main? Seems like these characteristics make it much more suitable for
contribs...

I attached the patch which is included in Ubuntu's Wine 0.9.5 package
which fixes this vulnerability.
http://packages.ubuntu.com/dapper/otherosfs/wine
 
-- 
Frederik

--- wine-0.9.5.orig/dlls/gdi/metafile.c
+++ wine-0.9.5/dlls/gdi/metafile.c
@@ -863,6 +863,13 @@
         break;
 
     case META_ESCAPE:
+	switch (mr->rdParm[0]) {
+		case GETSCALINGFACTOR: /* get function ... would just NULL dereference */
+			return FALSE;
+		case SETABORTPROC:
+			FIXME("Filtering Escape(SETABORTPROC), possible virus?\n");
+		return FALSE;
+	}
         Escape(hdc, mr->rdParm[0], mr->rdParm[1], (LPCSTR)&mr->rdParm[2], NULL);
         break;