lp:debian/jessie/libav

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related bugs

Related blueprints

60. By Sebastian Ramacher on 2016-09-24

* New upstream release.
* debian/upstream-signing-key.pgp: Update upstream signing key.
* debian/patches/mpegvideo_motion-Handle-edge-emulation-even-without-.patch:
  Fix NULL pointer dereference in put_no_rnd_pixels8_xy2_mmx. (CVE-2016-7424)

59. By Sebastian Ramacher on 2016-06-12

* New upstream release fixing a security issue.
  - mov: Check the entries value when parsing dref boxes (CVE-2016-3062)
* debian/patches/CVE-2016-2326.patch: Removed, included upstream.

58. By Sebastian Ramacher on 2016-03-02

* New upstream release fixing multiple security issues.
  - concat: disable by default (CVE-2016-1897, CVE-2016-1898)
  - aac_parser: add required padding for GetBitContext buffer
  - ac3_parser: add required padding for GetBitContext buffer
  - imc: add required padding for GetBitContext buffer
  - h263: Always check both dimensions
  - opusdec: properly handle mismatching configurations in multichannel
    streams
  - mov: Correctly allocate ctts_data
  - aac: Wait to know the channels before allocating frame
  - rtpdec_asf: Check memory allocation and free memory on error
  - jack: Check memory allocation
  - mov: Check memory allocation
  - mkv: Correctly report the latest packet had been flushed
  - aic: Fix slice size computation for widths multiples of 32 macroblocks
  - webp: Make sure enough bytes are available
  - g726: Do not crash on user mistake
  - bytestream2: set the reader to the end when reading more than available
  - vp7: bound checking in vp7_decode_frame_header
  - mux: Make sure that the data is actually written
  - file: properly forward errors from file_read() and file_write()
  - mmvideo: Make sure the rle does not write over the frame boundaries
  - opus: Buffer the samples from the correct offset
  - nut: Use the correct codec_tag when multiple are available
  - truemotion2: Fix the buffer check
  - mimic: Always return on failure
  - msnwc_tcp: Correctly report failure
  - rpza: Check the blocks left before processing one
  - dvdsubdec: Validate the RLE offsets
  - avi: Validate the stream-id for DV as well
  - mov: Use the correct type for size
* debian/confflags: Force --disable-protocol=concat.
* debian/patches/CVE-2016-2326.patch: avformat/asfenc: Check pts.
  (CVE-2016-2326)

57. By Sebastian Ramacher on 2015-06-01

[ Sebastian Ramacher ]
* New upstream release fixing multiple security issues.
  - h264: Make sure reinit failures mark the context as not initialized
    (CVE-2015-3417)
  - msrle: Use FFABS to determine the frame size in msrle_decode_pal4
    (CVE-2015-3395)
  - cavs: Remove an unneeded scratch buffer
  - configure: Disable i686 for i586 and lower CPUs (debian/783082)
  - mjpegenc: Fix JFIF header byte ordering (bug/808)
  - nut: Make sure to clean up on read_header failure
  - png: Set the color range as full range
  - avi: Validate sample_size
  - nut: Check chapter creation in decode_info_header
  - alac: Reject rice_limit 0 if compression is used
  - ape: Support _0000 files with nblock smaller than 64
  - mux: Do not leave stale side data pointers in ff_interleave_add_packet()
  - avresample: Reallocate the internal buffer to the correct size (bug/825)
  - mpegts: Update the PSI/SI table only if the version change
  - rtsp: Make sure we don't write too many transport entries into a
    fixed-size array
  - rtpenc_jpeg: Handle case of picture dimensions not dividing by 8
  - mov: Fix little endian audio detection
  - x86: Put COPY3_IF_LT under HAVE_6REGS (gentoo/541930)
  - roqvideoenc: set enc->avctx in roq_encode_init
  - mp3: Properly use AVCodecContext API
  - libvpx: Fix mixed use of av_malloc() and av_reallocp()
  - Revert "lavfi: always check av_expr_parse_and_eval() return value"
  - alsdec: only adapt order for positive max_order
  - alsdec: check sample pointer range in revert_channel_correlation
  - aacpsy: correct calculation of minath in psy_3gpp_init
  - alsdec: limit avctx->bits_per_raw_sample to 32
  - aasc: return correct buffer size from aasc_decode_frame
  - matroskadec: fix crash when parsing invalid mkv
  - avconv: do not overwrite the stream codec context for streamcopy
  - webp: ensure that each transform is only used once
  - h264_ps: properly check cropping parameters against overflow
  - hevc: zero the correct variables on invalid crop parameters
  - hevc: make the crop sizes unsigned

[ Reinhard Tartler]
* drop 01-configure-disable-i686-for-i586

56. By Sebastian Ramacher on 2015-05-05

* Fix use of illegal instruction on i586. (Closes: #783082)
  - debian/confflags: Pass correct value to --cpu. Thanks to Bernhard
    Übelacker for the patch.
  - debian/patches:
    + 01-configure-disable-i686-for-i586.patch: Upstream patch to disable
      i686 instructions on i586.
    + 02-configure-disable-ebx-gcc-4.9.patch: Workaround build failure with
      gcc 4.9 and newer by disabling the use of ebx in handwritten assembler
      code. Thanks to Bernhard Übelacker for the initial patch.

55. By Sebastian Ramacher on 2015-03-13

* New upstream release fixing multiple security issues.
  - utvideodec: Handle slice_height being zero (CVE-2014-9604)
  - adxdec: set avctx->channels in adx_read_header
  - rmenc: limit packet size
  - webp: validate the distance prefix code
  - rv10: check size of s->mb_width * s->mb_height
  - eamad: check for out of bounds read (CID/1257500)
  - mdec: check for out of bounds read (CID/1257501)
  - configure: Properly fail when libcdio/cdparanoia is not found
  - tiff: Check that there is no aliasing in pixel format selection (CVE-2014-8544)
  - aic: Fix decoding files with odd dimensions
  - vorbis: Check the vlc value in setup_classifs
  - arm: Suppress tags about used cpu arch and extensions
  - prores: Extend the padding check to 16bit
  - icecast: Do not use chunked post, allows feeding to icecast properly
  - img2dec: correctly use the parsed value from -start_number
  - h264_cabac: Break infinite loops
  - hevc_deblock: Fix compilation with nasm (libav #795)
  - h264: initialize H264Context.avctx in init_thread_copy
  - h264: Do not share rbsp_buffer across threads
  - h264: only ref cur_pic in update_thread_context if it is initialized
  - matroskadec: Fix read-after-free in matroska_read_seek() (chromium #427266)
  - log: Unbreak no-tty support on 256color terminals

54. By Sebastian Ramacher on 2015-01-17

* New upstream release fixing multiple security issues. (Closes: #773626)
  - h264: restore a block mistakenly removed in e10fd08a
  - on2avc: check number of channels (CVE-2014-8549)
  - smc: fix the bounds check (CVE-2014-8548)
  - gifdec: refactor interleave end handling (CVE-2014-8547)
  - mmvideo: check frame dimensions (CVE-2014-8543)
  - jvdec: check frame dimensions (CVE-2014-8542)
  - mjpegdec: check for pixel format changes (CVE-2014-8541)
  - mov: avoid a memleak when multiple stss boxes are present
  - vc1: Do not assume seek happens after decoding
  - avconv: Use the mpeg12 private option scan_offset (Closes: #773055)
  - xsub: Support DXSA subtitles
  - mp3dec: fix reading the Xing tag
  - matroskaenc: write correct Display{Width, Height} in stereo encoding
  - configure: Fix enabling memalign_hack automatically
  - mp3enc: fix a triggerable assert
  - latm: Do not give a score for a single instance
  - mp3: Tweak the probe scores
  - matroskaenc: write correct Display{Width, Height} in stereo encoding
  - coverity: Fix most of the reported warnings and issues
* debian/control: Add myself to Uploaders.

53. By Sebastian Ramacher on 2014-12-30

* Team upload.
* Upload to unstable.

52. By Reinhard Tartler on 2014-10-19

* add patches post v11 release, all of which will be included in the
  next point release:
   - 0001-apetag-Fix-APE-tag-size-check.patch
   - 0002-Update-default-FATE-URL-for-release-11.patch
   - 0003-h264-Always-invoke-the-get_format-callback.patch
   - 0004-mpeg12-Always-invoke-the-get_format-callback.patch
   - 0005-hevc-Initialize-mergecand_list-to-0.patch
   - 0006-h264-reset-ret-to-avoid-propagating-minor-failures.patch
   - 0007-hevc_mvs-initialize-the-temporal-MV-in-case-of-missi.patch
   - 0008-hevc_mvs-make-sure-to-always-initialize-the-temporal.patch
   - 0009-imc-fix-order-of-operations-in-coefficients-read.patch
   - 0010-resample-Avoid-off-by-1-errors-in-PTS-calcs.patch

51. By Reinhard Tartler on 2014-09-13

* Upload final 11 release
  - matroskadec: parse stereo mode on decoding (Closes: #757185)