lp:~medibuntu-maintainers/ffmpeg/medibuntu.hardy

Created by Lionel Le Folgoc on 2009-02-14 and last modified on 2011-04-08
Get this branch:
bzr branch lp:~medibuntu-maintainers/ffmpeg/medibuntu.hardy
Members of Medibuntu Packaging Team can upload to this branch. Log in for directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
Medibuntu Packaging Team
Project:
FFmpeg
Status:
Mature

Recent revisions

18. By Gauvain Pocentek <gauvain@images> on 2011-04-08

debian/control: add myself to uploaders

17. By Gauvain Pocentek <gauvain@images> on 2011-04-08

* Merged from Ubuntu, remaining Medibuntu changes:
  - debian/rules: enable DEB_BUILD_OPTIONS=risky
  - debian/control: add "risky" Build-Depends (liblame-dev, libfaad2-dev,
    libfaac-dev, libxvidcore-dev, libx264-dev)
  - debian/control: update description to clearly warn people this package
    comes from us.
  - Enable amr support:
    + debian/rules: enable amr_nb and amr_wb in confflags for support of amr
      (Adaptative MultiRate)
    + debian/rules: download needed sources for amr support on buils target
    + debian/control: update description to add the amr support warning
    + debian/patents.txt: add an explanation about the AMR audio compression
      format.
  - Enable a52 support:
    + debian/control: b-d on liba52-dev
    + debian/rules: pass --enable-liba52.
  - Add Vcs-* field
  - debian/patches/999_faadbin_fix_dynamic_linking.diff: use proper naming
    for faad 2.5+. LP: #225060
* debian/control: update our Vcs-* fields.
* SECURITY UPDATE: arbitrary code execution via crafted flic file
  - debian/patches/CVE-2010-3429.patch: add checks to
    libavcodec/flicvideo.c.
  - CVE-2010-3429
* SECURITY UPDATE: arbitrary code execution via crafted wmv file
  (LP: #690169)
  - debian/patches/CVE-2010-3908.patch: properly calculate size in
    libavcodec/utils.c.
  - CVE-2010-3908
* SECURITY UPDATE: denial of service via crafted .ogg file
  - debian/patches/CVE-2010-4704.patch: validate codebook in
    libavcodec/vorbis.c.
  - CVE-2010-4704
* SECURITY UPDATE: denial of service and possible code execution via
  crafted WebM file
  - debian/patches/CVE-2011-0480.patch: check rangebits in
    libavcodec/vorbis.c.
  - CVE-2011-0480
* SECURITY UPDATE: denial of service and possible code execution via
  crafted VC1 file (LP: #690169)
  - debian/patches/CVE-2011-0723.patch: fix invalid reads in
    libavcodec/vc1dec.c.
  - CVE-2011-0723

16. By Lionel Le Folgoc on 2010-05-01

* Merged from Ubuntu, remaining Medibuntu changes:
  - debian/rules: enable DEB_BUILD_OPTIONS=risky
  - debian/control: add "risky" Build-Depends (liblame-dev, libfaad2-dev,
    libfaac-dev, libxvidcore-dev, libx264-dev)
  - debian/control: update description to clearly warn people this package
    comes from us.
  - Enable amr support:
    + debian/rules: enable amr_nb and amr_wb in confflags for support of amr
      (Adaptative MultiRate)
    + debian/rules: download needed sources for amr support on buils target
    + debian/control: update description to add the amr support warning
    + debian/patents.txt: add an explanation about the AMR audio compression
      format.
  - Enable a52 support:
    + debian/control: b-d on liba52-dev
    + debian/rules: pass --enable-liba52.
  - Add Vcs-* field
  - debian/patches/999_faadbin_fix_dynamic_linking.diff: use proper naming
    for faad 2.5+. LP: #225060
* debian/control: update our Vcs-* fields.
* debian/patches/CVE-2009-46XX/security-issue22.patch: removed this
  patch as it was causing a regression. (LP: #567913)
* SECURITY UPDATE: Fix a multitude of security issues
  - debian/patches/CVE-2009-46XX/security-issue03.patch: check stream
    existence before assignment
  - debian/patches/CVE-2009-46XX/security-issue04.patch: check submap
    indexes
  - debian/patches/CVE-2009-46XX/security-issue05.patch: check classbook
    value
  - debian/patches/CVE-2009-46XX/security-issue06.patch: add checks for
    per-packet mode indexes and per-header mode mapping indexes
  - debian/patches/CVE-2009-46XX/security-issue07.patch: check masterbook
    index and subclass book index.
  - debian/patches/CVE-2009-46XX/security-issue08.patch: check
    res_setup->books
  - debian/patches/CVE-2009-46XX/security-issue09.patch: check
    begin/end/partition_size
  - debian/patches/CVE-2009-46XX/security-issue10.patch: check validity
    of channels & samplerate
  - debian/patches/CVE-2009-46XX/security-issue11.patch: fix book_idx
    check
  - debian/patches/CVE-2009-46XX/security-issue12.patch: sanity checks
    for magnitude and angle
  - debian/patches/CVE-2009-46XX/security-issue13.patch: fix = -> == typo
  - debian/patches/CVE-2009-46XX/security-issue14.patch: check dimensions
    against 0 too
  - debian/patches/CVE-2009-46XX/security-issue17.patch: make sure that
    all memory allocations succeed
  - debian/patches/CVE-2009-46XX/security-issue19.patch: set data_size to
    0 to avoid having it uninitialized
  - debian/patches/CVE-2009-46XX/security-issue22.patch: check codec_id
    and codec_type, make sure priv_data is freed and codec is set to NULL
  - CVE-2009-4633
  - CVE-2009-4634
  - CVE-2009-4635
  - CVE-2009-4637
  - CVE-2009-4639
  - CVE-2009-4640

15. By Lionel Le Folgoc on 2009-03-17

releasing version 3:0.cvs20070307-5ubuntu7.3+medibuntu1

14. By Lionel Le Folgoc on 2009-03-17

reduce delta.

13. By Lionel Le Folgoc on 2009-03-17

* Merged from Ubuntu, remaining Medibuntu changes:
  - debian/rules: enable DEB_BUILD_OPTIONS=risky
  - debian/control: add "risky" Build-Depends (liblame-dev, libfaad2-dev,
    libfaac-dev, libxvidcore-dev, libx264-dev)
  - debian/control: update description to clearly warn people this package
    comes from us.
  - Enable amr support:
    + debian/rules: enable amr_nb and amr_wb in confflags for support of amr
      (Adaptative MultiRate)
    + debian/rules: download needed sources for amr support on buils target
    + debian/control: update description to add the amr support warning
    + debian/patents.txt: add an explanation about the AMR audio compression
      format.
  - Enable a52 support:
    + debian/control: b-d on liba52-dev
    + debian/rules: pass --enable-liba52.
  - Add Vcs-* field
  - debian/patches/999_faadbin_fix_dynamic_linking.diff: use proper naming
    for faad 2.5+. LP: #225060
* SECURITY UPDATE: denial of service via a malformed Ogg Media (OGM) file
  - debian/patches/100_security_CVE-2008-4610.diff: properly check return
    codes in libavcodec/vp3.c.
  - CVE-2008-4610
* SECURITY UPDATE: buffer overflow caused by an incorrect DCA_MAX_FRAME_SIZE
  value
  - debian/patches/101_security_CVE-2008-4867.diff: set DCA_MAX_FRAME_SIZE to
    a correct value in libavcodec/dca.c.
  - CVE-2008-4867
* SECURITY UPDATE: arbitrary code execution via a malformed 4X movie file
  (LP: #323620)
  - debian/patches/102_security_CVE-2009-0385.diff: validate current_track
    value in libavformat/4xm.c.
  - CVE-2009-0385

12. By Lionel Le Folgoc on 2009-02-14

debian/control: update our Vcs-* fields.

11. By Lionel Le Folgoc on 2009-01-24

Set merge mode.

10. By Lionel Le Folgoc on 2008-07-29

Merge with lionel's branch.

9. By Lionel Le Folgoc on 2008-07-16

Fix dynamic faad linkage; upload to hardy. LP: #225060

Branch metadata

Branch format:
Branch format 6
Repository format:
Bazaar pack repository format 1 (needs bzr 0.92)
This branch contains Public information 
Everyone can see this information.