lp:debian/jessie/libav
- Get this branch:
- bzr branch lp:debian/jessie/libav
Branch information
- Owner:
- Ubuntu branches
- Status:
- Development
Recent revisions
- 60. By Sebastian Ramacher
-
* New upstream release.
* debian/upstream- signing- key.pgp: Update upstream signing key.
* debian/patches/ mpegvideo_ motion- Handle- edge-emulation- even-without- .patch:
Fix NULL pointer dereference in put_no_rnd_pixels8_ xy2_mmx. (CVE-2016-7424) - 59. By Sebastian Ramacher
-
* New upstream release fixing a security issue.
- mov: Check the entries value when parsing dref boxes (CVE-2016-3062)
* debian/patches/ CVE-2016- 2326.patch: Removed, included upstream. - 58. By Sebastian Ramacher
-
* New upstream release fixing multiple security issues.
- concat: disable by default (CVE-2016-1897, CVE-2016-1898)
- aac_parser: add required padding for GetBitContext buffer
- ac3_parser: add required padding for GetBitContext buffer
- imc: add required padding for GetBitContext buffer
- h263: Always check both dimensions
- opusdec: properly handle mismatching configurations in multichannel
streams
- mov: Correctly allocate ctts_data
- aac: Wait to know the channels before allocating frame
- rtpdec_asf: Check memory allocation and free memory on error
- jack: Check memory allocation
- mov: Check memory allocation
- mkv: Correctly report the latest packet had been flushed
- aic: Fix slice size computation for widths multiples of 32 macroblocks
- webp: Make sure enough bytes are available
- g726: Do not crash on user mistake
- bytestream2: set the reader to the end when reading more than available
- vp7: bound checking in vp7_decode_frame_header
- mux: Make sure that the data is actually written
- file: properly forward errors from file_read() and file_write()
- mmvideo: Make sure the rle does not write over the frame boundaries
- opus: Buffer the samples from the correct offset
- nut: Use the correct codec_tag when multiple are available
- truemotion2: Fix the buffer check
- mimic: Always return on failure
- msnwc_tcp: Correctly report failure
- rpza: Check the blocks left before processing one
- dvdsubdec: Validate the RLE offsets
- avi: Validate the stream-id for DV as well
- mov: Use the correct type for size
* debian/confflags: Force --disable-protocol= concat.
* debian/patches/ CVE-2016- 2326.patch: avformat/asfenc: Check pts.
(CVE-2016-2326) - 57. By Sebastian Ramacher
-
[ Sebastian Ramacher ]
* New upstream release fixing multiple security issues.
- h264: Make sure reinit failures mark the context as not initialized
(CVE-2015-3417)
- msrle: Use FFABS to determine the frame size in msrle_decode_pal4
(CVE-2015-3395)
- cavs: Remove an unneeded scratch buffer
- configure: Disable i686 for i586 and lower CPUs (debian/783082)
- mjpegenc: Fix JFIF header byte ordering (bug/808)
- nut: Make sure to clean up on read_header failure
- png: Set the color range as full range
- avi: Validate sample_size
- nut: Check chapter creation in decode_info_header
- alac: Reject rice_limit 0 if compression is used
- ape: Support _0000 files with nblock smaller than 64
- mux: Do not leave stale side data pointers in ff_interleave_add_packet( )
- avresample: Reallocate the internal buffer to the correct size (bug/825)
- mpegts: Update the PSI/SI table only if the version change
- rtsp: Make sure we don't write too many transport entries into a
fixed-size array
- rtpenc_jpeg: Handle case of picture dimensions not dividing by 8
- mov: Fix little endian audio detection
- x86: Put COPY3_IF_LT under HAVE_6REGS (gentoo/541930)
- roqvideoenc: set enc->avctx in roq_encode_init
- mp3: Properly use AVCodecContext API
- libvpx: Fix mixed use of av_malloc() and av_reallocp()
- Revert "lavfi: always check av_expr_parse_and_ eval() return value"
- alsdec: only adapt order for positive max_order
- alsdec: check sample pointer range in revert_channel_ correlation
- aacpsy: correct calculation of minath in psy_3gpp_init
- alsdec: limit avctx->bits_per_ raw_sample to 32
- aasc: return correct buffer size from aasc_decode_frame
- matroskadec: fix crash when parsing invalid mkv
- avconv: do not overwrite the stream codec context for streamcopy
- webp: ensure that each transform is only used once
- h264_ps: properly check cropping parameters against overflow
- hevc: zero the correct variables on invalid crop parameters
- hevc: make the crop sizes unsigned[ Reinhard Tartler]
* drop 01-configure-disable- i686-for- i586 - 56. By Sebastian Ramacher
-
* Fix use of illegal instruction on i586. (Closes: #783082)
- debian/confflags: Pass correct value to --cpu. Thanks to Bernhard
Übelacker for the patch.
- debian/patches:
+ 01-configure-disable- i686-for- i586.patch: Upstream patch to disable
i686 instructions on i586.
+ 02-configure-disable- ebx-gcc- 4.9.patch: Workaround build failure with
gcc 4.9 and newer by disabling the use of ebx in handwritten assembler
code. Thanks to Bernhard Übelacker for the initial patch. - 55. By Sebastian Ramacher
-
* New upstream release fixing multiple security issues.
- utvideodec: Handle slice_height being zero (CVE-2014-9604)
- adxdec: set avctx->channels in adx_read_header
- rmenc: limit packet size
- webp: validate the distance prefix code
- rv10: check size of s->mb_width * s->mb_height
- eamad: check for out of bounds read (CID/1257500)
- mdec: check for out of bounds read (CID/1257501)
- configure: Properly fail when libcdio/cdparanoia is not found
- tiff: Check that there is no aliasing in pixel format selection (CVE-2014-8544)
- aic: Fix decoding files with odd dimensions
- vorbis: Check the vlc value in setup_classifs
- arm: Suppress tags about used cpu arch and extensions
- prores: Extend the padding check to 16bit
- icecast: Do not use chunked post, allows feeding to icecast properly
- img2dec: correctly use the parsed value from -start_number
- h264_cabac: Break infinite loops
- hevc_deblock: Fix compilation with nasm (libav #795)
- h264: initialize H264Context.avctx in init_thread_copy
- h264: Do not share rbsp_buffer across threads
- h264: only ref cur_pic in update_thread_ context if it is initialized
- matroskadec: Fix read-after-free in matroska_read_seek( ) (chromium #427266)
- log: Unbreak no-tty support on 256color terminals - 54. By Sebastian Ramacher
-
* New upstream release fixing multiple security issues. (Closes: #773626)
- h264: restore a block mistakenly removed in e10fd08a
- on2avc: check number of channels (CVE-2014-8549)
- smc: fix the bounds check (CVE-2014-8548)
- gifdec: refactor interleave end handling (CVE-2014-8547)
- mmvideo: check frame dimensions (CVE-2014-8543)
- jvdec: check frame dimensions (CVE-2014-8542)
- mjpegdec: check for pixel format changes (CVE-2014-8541)
- mov: avoid a memleak when multiple stss boxes are present
- vc1: Do not assume seek happens after decoding
- avconv: Use the mpeg12 private option scan_offset (Closes: #773055)
- xsub: Support DXSA subtitles
- mp3dec: fix reading the Xing tag
- matroskaenc: write correct Display{Width, Height} in stereo encoding
- configure: Fix enabling memalign_hack automatically
- mp3enc: fix a triggerable assert
- latm: Do not give a score for a single instance
- mp3: Tweak the probe scores
- matroskaenc: write correct Display{Width, Height} in stereo encoding
- coverity: Fix most of the reported warnings and issues
* debian/control: Add myself to Uploaders. - 52. By Reinhard Tartler
-
* add patches post v11 release, all of which will be included in the
next point release:
- 0001-apetag-Fix-APE- tag-size- check.patch
- 0002-Update-default- FATE-URL- for-release- 11.patch
- 0003-h264-Always- invoke- the-get_ format- callback. patch
- 0004-mpeg12-Always- invoke- the-get_ format- callback. patch
- 0005-hevc-Initialize- mergecand_ list-to- 0.patch
- 0006-h264-reset-ret- to-avoid- propagating- minor-failures. patch
- 0007-hevc_mvs-initialize- the-temporal- MV-in-case- of-missi. patch
- 0008-hevc_mvs-make- sure-to- always- initialize- the-temporal. patch
- 0009-imc-fix-order- of-operations- in-coefficients -read.patch
- 0010-resample-Avoid-off- by-1-errors- in-PTS- calcs.patch - 51. By Reinhard Tartler
-
* Upload final 11 release
- matroskadec: parse stereo mode on decoding (Closes: #757185)
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:debian/libav