lp:ubuntu/vivid-proposed/libav

Branch merges

Propose for merging

No branches dependent on this one.

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related bugs

Related blueprints

56. By Sebastian Ramacher on 2015-01-17

* New upstream release fixing multiple security issues. (Closes: #773626)
  - h264: restore a block mistakenly removed in e10fd08a
  - on2avc: check number of channels (CVE-2014-8549)
  - smc: fix the bounds check (CVE-2014-8548)
  - gifdec: refactor interleave end handling (CVE-2014-8547)
  - mmvideo: check frame dimensions (CVE-2014-8543)
  - jvdec: check frame dimensions (CVE-2014-8542)
  - mjpegdec: check for pixel format changes (CVE-2014-8541)
  - mov: avoid a memleak when multiple stss boxes are present
  - vc1: Do not assume seek happens after decoding
  - avconv: Use the mpeg12 private option scan_offset (Closes: #773055)
  - xsub: Support DXSA subtitles
  - mp3dec: fix reading the Xing tag
  - matroskaenc: write correct Display{Width, Height} in stereo encoding
  - configure: Fix enabling memalign_hack automatically
  - mp3enc: fix a triggerable assert
  - latm: Do not give a score for a single instance
  - mp3: Tweak the probe scores
  - matroskaenc: write correct Display{Width, Height} in stereo encoding
  - coverity: Fix most of the reported warnings and issues
* debian/control: Add myself to Uploaders.

55. By Sebastian Ramacher on 2014-12-30

* Team upload.
* Upload to unstable.

54. By Reinhard Tartler on 2014-10-19

* add patches post v11 release, all of which will be included in the
  next point release:
   - 0001-apetag-Fix-APE-tag-size-check.patch
   - 0002-Update-default-FATE-URL-for-release-11.patch
   - 0003-h264-Always-invoke-the-get_format-callback.patch
   - 0004-mpeg12-Always-invoke-the-get_format-callback.patch
   - 0005-hevc-Initialize-mergecand_list-to-0.patch
   - 0006-h264-reset-ret-to-avoid-propagating-minor-failures.patch
   - 0007-hevc_mvs-initialize-the-temporal-MV-in-case-of-missi.patch
   - 0008-hevc_mvs-make-sure-to-always-initialize-the-temporal.patch
   - 0009-imc-fix-order-of-operations-in-coefficients-read.patch
   - 0010-resample-Avoid-off-by-1-errors-in-PTS-calcs.patch

53. By Reinhard Tartler on 2014-09-13

* Upload final 11 release
  - matroskadec: parse stereo mode on decoding (Closes: #757185)

52. By Reinhard Tartler on 2014-08-30

[ Reinhard Tartler ]
* Make libavcodec-dev depend on libavresample-dev

[ Rico Tzschichholz ]
* Some fixes and leftovers from soname bumps

51. By Reinhard Tartler on 2014-08-17

* New Upstream Release v10.3
  - mpegts: Do not try to write a PMT larger than SECTION_SIZE
            (CVE-2014-2263)
  - mpegts: Define the section length with a constant
  - ffv1dec: check that global parameters do not change in version 0/1
             (CVE-2013-7020)
  - h264: fix interpretation of interleaved stereo modes
  - svq1: do not modify the input packet
  - cdgraphics: do not return 0 from the decode function
  - cdgraphics: switch to bytestream2 (CVE-2013-3674)
  - jpeg2000: enable 4 component pixel formats
  - stereo3d: add missing include guards
  - huffyuvdec: check width size for yuv422p (CVE-2013-0848)
  - mmvideo: check horizontal coordinate too (CVE-2013-3672)
  - wmalosslessdec: fix mclms_coeffs* array size (CVE-2014-2098)
* build against libgnutls28-dev (Closes: #758447)

50. By Dimitri John Ledkov on 2014-08-15

No change rebuild against gnutls28.

49. By Reinhard Tartler on 2014-08-03

* New Upstream Release v10.3
  - huffyuv: Check and propagate function return values (CVE-2013-0868)
  - h264: prevent theoretical infinite loop in SEI parsing (CVE-2011-3946)
  - pgssubdec: Check RLE size before copying (CVE-2013-0852)
  - video4linux2: Avoid a floating point exception
  - vf_select: Drop a debug av_log with an unchecked double to enum conversion
  - librtmp: Don't free the temp url at the end of rtmp_open
  - arm: Avoid using the 'setend' instruction on ARMv7 and newer
  - avplay: Handle pixel aspect ratio properly
  - eamad: use the bytestream2 API instead of AV_RL (CVE-2013-0851)
  - pg2meet: allow size changes within original sizes
  - af_compand: make sure request_frame always outputs at least one frame

48. By Reinhard Tartler on 2014-07-20

[ Reinhard Tartler ]
* Fixed typo in debian/NEWS (Closes: #753453)

[ Stefan Lippers-Hollmann ]
* libavcodec-extra: declare as Section: metapackages (Closes: #747921)

47. By Reinhard Tartler on 2014-06-27

* Bumping severity for critical LZO security issue.
* New Upstream Release v10.2
  - aarch64: Use the correct syntax for relocations (Closes: #751856,
  - LP: #1323144)
  - ppc: Fix compilation for ppc64le (ELFv2) (LP: #1263802)
  - avconv: make -shortest work with streamcopy
  - lzo: Handle integer overflow (Reported by Don A. Bailey)
  - Check if an mp3 header is using a reserved sample rate.
  - Check mp3 header before calling avpriv_mpegaudio_decode_header().
  - jpeg2000: fix dereferencing invalid pointers during cleanup
  - avpacket: fix copying side data in av_packet_copy_props()
  - oggenc: Set the right AVOption size for the pref_duration option
  - adpcm: Avoid reading out of bounds in the IMA QT trellis encoder
  - adpcm: Write the proper predictor in trellis mode in IMA QT
* No longer build avserver (Closes: #734335)
* Clarify licensing in debian/copyright (Closes: #698019)