lp:ubuntu/hardy-updates/gst-plugins-good0.10

Branch merges

Propose for merging

No branches dependent on this one.

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related bugs

Related blueprints

41. By Marc Deslauriers on 2009-06-16

* SECURITY UPDATE: denial of service and possible code execution from
  multiple integer overflows.
  - debian/patches/99_SECURITY_CVE-2009-1932.patch: make sure
    pngdec->height and pngdec->rowbytes round up and multiplication
    doesn't overflow.
  - CVE-2009-1932

40. By Marc Deslauriers on 2009-03-10

* SECURITY UPDATE: Remote code execution via crafted Composition Time To
  Sample (ctts) atom data in quicktime demuxer (LP: #325261)
  - debian/patches/99_SECURITY_CVE-2009-0386-0387-0397.patch: make sure j
    never goes past stream->n_samples in gst/qtdemux/qtdemux.c.
  - CVE-2009-0386
* SECURITY UPDATE: Remote code execution via crafted Sync Sample (aka stss)
  atom data in quicktime demuxer (LP: #325261)
  - debian/patches/99_SECURITY_CVE-2009-0386-0387-0397.patch: make sure index
    never goes past stream->n_samples in gst/qtdemux/qtdemux.c.
  - CVE-2009-0387
* SECURITY UPDATE: Remote code execution via crafted Time-to-sample (aka stts)
  atom data in quicktime demuxer (LP: #325261)
  - debian/patches/99_SECURITY_CVE-2009-0386-0387-0397.patch: make sure i and
    index never go past stream->n_samples in gst/qtdemux/qtdemux.c.
  - CVE-2009-0397

39. By Jamie Strandboge on 2008-05-07

* SECURITY UPDATE: array index vulnerability (LP: #218652)
* debian/patches/99_SECURITY_CVE-2008-1686.patch: fix for
  ext/speex/gstspeexdec.c to properly validate its input
* References
  CVE-2008-1686

38. By Sjoerd Simons on 2008-03-22

* debian/patches/05_speexenc_double_unref.patch:
  + Added. Don't unref a buffer twice when hitting a not-negotiated error
  in speexenc (from upstream CVS) (Closes: #472096)

37. By Sebastian Dröge on 2008-03-11

* debian/patches/02_v4l2_default.patch:
  + Patch by Mario Limonciello to use v4l2 as default video source instead
    of the nowadays deprecated v4l (Closes: #468073).
* debian/patches/75_build_docs_without_python_xml.patch,
  debian/build-deps.in:
  Stop using pyxml for building the docs (Closes: #468630).

36. By Mario Limonciello on 2008-02-28

* Add debian/patches/02_v4l2_default.patch:
  - Default to V4L2 as the sink. configure script is broken
    and doesn't allow environment variables to set the default
    video sink. (LP: #195914) (Closes: #468073)

35. By Sebastian Dröge on 2008-02-21

* New upstream release, "Red Door Black":
  + debian/patches/01_linking-fixes.patch:
    - Dropped, merged upstream.

34. By Sebastian Dröge on 2008-02-19

* New upstream pre-release.
* debian/patches/99_ltmain_as-needed.patch,
  debian/rules:
  + Add -Wl,-z,defs -Wl,-O1 -Wl,--as-needed to LDFLAGS to remove some
    unnecessary dependencies on various packages.
* debian/patches/01_linking-fixes.patch:
  + Link gstalpha with libgstbase.
* debian/build-deps.in:
  + Build depend on libxv-dev to get Xv support in ximagsink.

33. By Sebastian Dröge on 2008-02-14

* New upstream pre-release.
* debian/build-deps.in:
  + Build depend on gstreamer0.10-plugins-base for the unit tests.
* debian/patches/80_unit-tests.patch:
  + Disable gconfaudiosrc for the generic/states unit test.

32. By Sebastien Bacher on 2007-11-27

Run control update rule to fix the build