lp:ubuntu/natty-updates/libav
- Get this branch:
- bzr branch lp:ubuntu/natty-updates/libav
Branch merges
Branch information
Recent revisions
- 5. By Marc Deslauriers
-
* Update to 0.7.6 to fix multiple security issues. (LP: #1012132)
- CVE-2011-3929
- CVE-2011-3936
- CVE-2011-3940
- CVE-2011-3945
- CVE-2011-3947
- CVE-2011-3951
- CVE-2011-3952
- CVE-2012-0850
- CVE-2012-0851
- CVE-2012-0852
- CVE-2012-0853
- CVE-2012-0858
- CVE-2012-0859
- CVE-2012-0947 - 4. By Marc Deslauriers
-
* Update to 0.6.4 to fix multiple security issues (LP: #911811):
- SECURITY UPDATE: denial of service and possible code execution via
malformed Matroska file
- CVE-2011-3504
- SECURITY UPDATE: denial of service and possible code execution via
malformed file containing QDM2 stream
- CVE-2011-4351
- SECURITY UPDATE: denial of service and possible code execution via
malformed file containing VP3 stream
- CVE-2011-4352
- SECURITY UPDATE: denial of service and possible code execution via
malformed file containing VP5 or VP6 streams
- CVE-2011-4353
- SECURITY UPDATE: denial of service and possible code execution via
malformed VMD file
- CVE-2011-4364
- SECURITY UPDATE: denial of service and possible code execution via
malformed file containing svq1 stream
- CVE-2011-4579
* Removed upstreamed patches:
- CVE-2011-1196.patch
- CVE-2011-1931.patch
- CVE-2011-3362.patch - 3. By Marc Deslauriers
-
* SECURITY UPDATE: denial of service and possible code execution via
malformed OGG file
- debian/patches/ CVE-2011- 1196.patch: revalidate index when necessary
in libavformat/oggdec. c.
- CVE-2011-1196
* SECURITY UPDATE: denial of service and possible code execution via
malformed AMV file
- debian/patches/ CVE-2011- 1931.patch: don't change flags in
libavcodec/sp5xdec. c.
- CVE-2011-1931
* SECURITY UPDATE: arbitrary code execution via malformed CAVS file
- debian/patches/ CVE-2011- 3362.patch: validate values in
libavcodec/cavsdec. c.
- CVE-2011-3362 - 2. By Reinhard Tartler
-
* Merge from debian. Remaining changes:
- don't build against libfaad, libdirac, librtmp and libopenjpeg
(all in universe)
- explicitly --enable-pic on powerpc, cf. LP #654666
- different arm configure bits that should probably better be
merged into debian
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/oneiric/libav