-
libav (6:11.4-2) unstable; urgency=medium
* debian/*.lintian-overrides: Use architecture specific overrides to fix
arch-dependent files in M-A: same package. (Closes: #787406)
* debian/changelog: Wrap some lines at 80 characters to make lintian happy.
-- Sebastian Ramacher <email address hidden> Wed, 03 Jun 2015 22:31:27 +0200
-
libav (6:11.4-1) unstable; urgency=high
[ Reinhard Tartler ]
* Bumped urgency because of two security patches, see below
* Imported Upstream version 11.4
- h264: Make sure reinit failures mark the context as not initialized (CVE-2015-3417)
- msrle: Use FFABS to determine the frame size in msrle_decode_pal4 (CVE-2015-3395)
- cavs: Remove an unneeded scratch buffer
- configure: Disable i686 for i586 and lower CPUs (debian/783082)
- mjpegenc: Fix JFIF header byte ordering (bug/808)
- nut: Make sure to clean up on read_header failure
- png: Set the color range as full range
- avi: Validate sample_size
- nut: Check chapter creation in decode_info_header
- alac: Reject rice_limit 0 if compression is used
- ape: Support _0000 files with nblock smaller than 64
- mux: Do not leave stale side data pointers in ff_interleave_add_packet()
- avresample: Reallocate the internal buffer to the correct size (bug/825)
- mpegts: Update the PSI/SI table only if the version change
- rtsp: Make sure we don't write too many transport entries into a fixed-size array
- rtpenc_jpeg: Handle case of picture dimensions not dividing by 8
- mov: Fix little endian audio detection
- x86: Put COPY3_IF_LT under HAVE_6REGS (gentoo/541930)
- roqvideoenc: set enc->avctx in roq_encode_init
- mp3: Properly use AVCodecContext API
- libvpx: Fix mixed use of av_malloc() and av_reallocp()
- Revert "lavfi: always check av_expr_parse_and_eval() return value"
- alsdec: only adapt order for positive max_order
- alsdec: check sample pointer range in revert_channel_correlation
- aacpsy: correct calculation of minath in psy_3gpp_init
- alsdec: limit avctx->bits_per_raw_sample to 32
- aasc: return correct buffer size from aasc_decode_frame
- matroskadec: fix crash when parsing invalid mkv
- avconv: do not overwrite the stream codec context for streamcopy
- webp: ensure that each transform is only used once
- h264_ps: properly check cropping parameters against overflow
- hevc: zero the correct variables on invalid crop parameters
- hevc: make the crop sizes unsigned
* drop 01-configure-disable-i686-for-i586
[ Sebastian Ramacher ]
* debian/control:
- Remove obsolete Breaks, Replaces and Conflicts.
- Fix description to make lintian happy.
* debian/rules:
- Remove dh_builddeb compression override. This is the default since dpkg
1.17.0.
- Use dh_installdocs to install documentation.
- Use dh_minstallman to install manpages.
* debian/{libav-tools.links,rules}: De-duplicate documentation
* debian/*.lintian-overrides:
- Install non-fpic code lintian overrides only for i386 packages.
* debian/source/lintian-overrides: Removed obsolete lintian override.
* debian/*.doc-base: Add more doc-base registrations
* debian/copyright:
- Remove files that do no longer exist.
- Update some copyright years.
-- Reinhard Tartler <email address hidden> Sun, 31 May 2015 13:11:50 -0400
-
libav (6:11.3-3) unstable; urgency=medium
* Fix use of illegal instruction on i586. (Closes: #783082)
- debian/confflags: Pass correct value to --cpu. Thanks to Bernhard
Übelacker for the patch.
- debian/patches:
+ 01-configure-disable-i686-for-i586.patch: Upstream patch to disable
i686 on instructions on i586.
+ 02-configure-disable-ebx-gcc-4.9.patch: Workaround build failure with
gcc 4.9 and newer by disabling the use of ebx in handwritten assembler
code. Thanks to Bernhard Übelacker for the initial patch.
-- Sebastian Ramacher <email address hidden> Tue, 05 May 2015 21:38:02 +0200
-
libav (6:11.3-2) unstable; urgency=medium
* debian/control:
- Bump Standards-Version to 3.9.6.
- libav-tools: Add x264 to Suggests. (Closes: #779097)
- Build-Depend on libx265-dev.
* debian/libav-tools.maintscript: Remove /etc/avserver.conf. (Closes:
#760763)
* debian/confflags: Enable x265 encoder. (Closes: #780796)
* debian/rules: Use matching version in shlibs. (LP: #1407103)
-- Sebastian Ramacher <email address hidden> Mon, 20 Apr 2015 20:47:32 +0200
-
libav (6:11.3-1) unstable; urgency=medium
* New upstream release fixing multiple security issues.
- utvideodec: Handle slice_height being zero (CVE-2014-9604)
- adxdec: set avctx->channels in adx_read_header
- rmenc: limit packet size
- webp: validate the distance prefix code
- rv10: check size of s->mb_width * s->mb_height
- eamad: check for out of bounds read (CID/1257500)
- mdec: check for out of bounds read (CID/1257501)
- configure: Properly fail when libcdio/cdparanoia is not found
- tiff: Check that there is no aliasing in pixel format selection (CVE-2014-8544)
- aic: Fix decoding files with odd dimensions
- vorbis: Check the vlc value in setup_classifs
- arm: Suppress tags about used cpu arch and extensions
- prores: Extend the padding check to 16bit
- icecast: Do not use chunked post, allows feeding to icecast properly
- img2dec: correctly use the parsed value from -start_number
- h264_cabac: Break infinite loops
- hevc_deblock: Fix compilation with nasm (libav #795)
- h264: initialize H264Context.avctx in init_thread_copy
- h264: Do not share rbsp_buffer across threads
- h264: only ref cur_pic in update_thread_context if it is initialized
- matroskadec: Fix read-after-free in matroska_read_seek() (chromium #427266)
- log: Unbreak no-tty support on 256color terminals
-- Sebastian Ramacher <email address hidden> Fri, 13 Mar 2015 23:27:25 +0100
-
libav (6:11.2-1) unstable; urgency=medium
* New upstream release fixing multiple security issues. (Closes: #773626)
- h264: restore a block mistakenly removed in e10fd08a
- on2avc: check number of channels (CVE-2014-8549)
- smc: fix the bounds check (CVE-2014-8548)
- gifdec: refactor interleave end handling (CVE-2014-8547)
- mmvideo: check frame dimensions (CVE-2014-8543)
- jvdec: check frame dimensions (CVE-2014-8542)
- mjpegdec: check for pixel format changes (CVE-2014-8541)
- mov: avoid a memleak when multiple stss boxes are present
- vc1: Do not assume seek happens after decoding
- avconv: Use the mpeg12 private option scan_offset (Closes: #773055)
- xsub: Support DXSA subtitles
- mp3dec: fix reading the Xing tag
- matroskaenc: write correct Display{Width, Height} in stereo encoding
- configure: Fix enabling memalign_hack automatically
- mp3enc: fix a triggerable assert
- latm: Do not give a score for a single instance
- mp3: Tweak the probe scores
- matroskaenc: write correct Display{Width, Height} in stereo encoding
- coverity: Fix most of the reported warnings and issues
* debian/control: Add myself to Uploaders.
-- Sebastian Ramacher <email address hidden> Sat, 17 Jan 2015 20:56:19 +0100
-
libav (6:11.1-1) unstable; urgency=medium
* Team upload.
* Upload to unstable.
-- Sebastian Ramacher <email address hidden> Tue, 30 Dec 2014 17:08:42 +0100
-
libav (6:11-2) unstable; urgency=medium
* add patches post v11 release, all of which will be included in the
next point release:
- 0001-apetag-Fix-APE-tag-size-check.patch
- 0002-Update-default-FATE-URL-for-release-11.patch
- 0003-h264-Always-invoke-the-get_format-callback.patch
- 0004-mpeg12-Always-invoke-the-get_format-callback.patch
- 0005-hevc-Initialize-mergecand_list-to-0.patch
- 0006-h264-reset-ret-to-avoid-propagating-minor-failures.patch
- 0007-hevc_mvs-initialize-the-temporal-MV-in-case-of-missi.patch
- 0008-hevc_mvs-make-sure-to-always-initialize-the-temporal.patch
- 0009-imc-fix-order-of-operations-in-coefficients-read.patch
- 0010-resample-Avoid-off-by-1-errors-in-PTS-calcs.patch
-- Reinhard Tartler <email address hidden> Sun, 19 Oct 2014 16:18:48 -0400
-
libav (6:11-1) unstable; urgency=low
* Upload final 11 release
- matroskadec: parse stereo mode on decoding (Closes: #757185)
-- Reinhard Tartler <email address hidden> Sat, 13 Sep 2014 15:36:38 -0400
-
libav (6:11~beta1-3) unstable; urgency=low
* Add post-release upstream patches
* Remove unapplied patches
* Remove /etc/avserver.conf (Closes: #760763)
-- Reinhard Tartler <email address hidden> Sat, 13 Sep 2014 07:58:42 -0400
-
libav (6:11~beta1-2) unstable; urgency=medium
[ Reinhard Tartler ]
* Make libavcodec-dev depend on libavresample-dev
[ Rico Tzschichholz ]
* Some fixes and leftovers from soname bumps
-- Reinhard Tartler <email address hidden> Sat, 30 Aug 2014 11:02:45 -0400
-
libav (6:10.4-1) unstable; urgency=medium
* New Upstream Release v10.3
- mpegts: Do not try to write a PMT larger than SECTION_SIZE
(CVE-2014-2263)
- mpegts: Define the section length with a constant
- ffv1dec: check that global parameters do not change in version 0/1
(CVE-2013-7020)
- h264: fix interpretation of interleaved stereo modes
- svq1: do not modify the input packet
- cdgraphics: do not return 0 from the decode function
- cdgraphics: switch to bytestream2 (CVE-2013-3674)
- jpeg2000: enable 4 component pixel formats
- stereo3d: add missing include guards
- huffyuvdec: check width size for yuv422p (CVE-2013-0848)
- mmvideo: check horizontal coordinate too (CVE-2013-3672)
- wmalosslessdec: fix mclms_coeffs* array size (CVE-2014-2098)
* build against libgnutls28-dev (Closes: #758447)
-- Reinhard Tartler <email address hidden> Sun, 17 Aug 2014 21:55:47 -0400
-
libav (6:10.3-1) unstable; urgency=medium
* New Upstream Release v10.3
- huffyuv: Check and propagate function return values (CVE-2013-0868)
- h264: prevent theoretical infinite loop in SEI parsing (CVE-2011-3946)
- pgssubdec: Check RLE size before copying (CVE-2013-0852)
- video4linux2: Avoid a floating point exception
- vf_select: Drop a debug av_log with an unchecked double to enum conversion
- librtmp: Don't free the temp url at the end of rtmp_open
- arm: Avoid using the 'setend' instruction on ARMv7 and newer
- avplay: Handle pixel aspect ratio properly
- eamad: use the bytestream2 API instead of AV_RL (CVE-2013-0851)
- pg2meet: allow size changes within original sizes
- af_compand: make sure request_frame always outputs at least one frame
-- Reinhard Tartler <email address hidden> Sun, 03 Aug 2014 22:30:41 -0400
-
libav (6:10.2-2) unstable; urgency=low
[ Reinhard Tartler ]
* Fixed typo in debian/NEWS (Closes: #753453)
[ Stefan Lippers-Hollmann ]
* libavcodec-extra: declare as Section: metapackages (Closes: #747921)
-- Reinhard Tartler <email address hidden> Sun, 20 Jul 2014 14:57:15 -0400
-
libav (6:10.2-1) unstable; urgency=high
* Bumping severity for critical LZO security issue.
* New Upstream Release v10.2
- aarch64: Use the correct syntax for relocations (Closes: #751856,
- LP: #1323144)
- ppc: Fix compilation for ppc64le (ELFv2) (LP: #1263802)
- avconv: make -shortest work with streamcopy
- lzo: Handle integer overflow (Reported by Don A. Bailey)
- Check if an mp3 header is using a reserved sample rate.
- Check mp3 header before calling avpriv_mpegaudio_decode_header().
- jpeg2000: fix dereferencing invalid pointers during cleanup
- avpacket: fix copying side data in av_packet_copy_props()
- oggenc: Set the right AVOption size for the pref_duration option
- adpcm: Avoid reading out of bounds in the IMA QT trellis encoder
- adpcm: Write the proper predictor in trellis mode in IMA QT
* No longer build avserver (Closes: #734335)
* Clarify licensing in debian/copyright (Closes: #698019)
-- Reinhard Tartler <email address hidden> Fri, 27 Jun 2014 22:23:32 -0400
-
libav (6:10.1-1) unstable; urgency=low
* New upstream release 10:
- pcm-dvd: Fix 20bit decoding (bug/592)
- avi: Improve non-interleaved detection (bug/666)
- arm: hpeldsp: fix put_pixels8_y2_{,no_rnd_}armv6
- arm: hpeldsp: prevent overreads in armv6 asm (bug/646)
- avfilter: Add missing emms_c when needed
- rtmpproto: Check the buffer sizes when copying app/playpath strings
- swscale: Fix an undefined behaviour
- vp9: Read the frame size as unsigned
- dcadec: Use correct channel count in stereo downmix check
- dcadec: Do not decode the XCh extension when downmixing to stereo
- matroska: add the Opus mapping
- matroskadec: read the CodecDelay element
- rtmpproto: Make sure to pass on the error code if read_connect failed
- lavr: allocate the resampling buffer with a positive size
- mp3enc: Properly write bitrate value in XING header (Closes: #736088)
- golomb: Fix the implementation of get_se_golomb_long
* Drop debian/libav-tools.maintscript. ffserver is no longer found in
stable, and this seems to cause other problems today (Closes: #742676)
-- Reinhard Tartler <email address hidden> Sun, 11 May 2014 12:28:45 -0400
-
libav (6:9.13-1) unstable; urgency=medium
* New upstream release 9.13:
- swscale: Fix an undefined behaviour
- matroska: add the Opus mapping
- mp3enc: Properly write bitrate value in XING header (Closes: #736088)
- origin/pu/9 oggdec: add support for Opus in Ogg demuxing
(Fixes: libav/603, Closes: #720563)
- apedec: do not buffer decoded samples over AVPackets (Closes: #744901)
- isom: lpcm in mov default to big endian
- movdec: handle 0x7fff langcode as macintosh per the specs
- h264: reset next_output_pic earlier in start_frame()
(Fixes: libav/672, Closes: #741240, LP: #1288206)
- rtmpproto: Make sure to pass on the error code if read_connect failed
- lavr: allocate the resampling buffer with a positive size
- tiffdec: use bytestream2 to simplify overread/overwrite protection
- resample: fix avresample_get_delay() return value
- avi: Improve non-interleaved detection (Fixes: libav/666)
- af_channelmap: fix ONE_STR mapping mode
- movenc: allow override of "writing application" tag
- matroskaenc: allow override of "writing application" tag
- avfilter: Add missing emms_c when needed
- build: Use pkg-config for openjpeg (Fixes: libav/387)
- mpeg12: check scantable indices in all decode_block functions
- sgidec: fix buffer size check in expand_rle_row()
- adx: check that the offset is not negative
- mpegvideo: set reference/pict_type on generated reference frames
- h264: Fix various crashes found in samples pointed by Mateusz
"j00ru" Jurczyk and Gynvael Coldwind - Thanks!
* Rebuild is reported to fix vaapi, Closes: #745655
* Fix invocation of dpkg-maintscript helper, LP: #1315672
* cleanup leftovers of the former libav-source package
* Simplify listing packages with dh_listpackage
* Drop transitional arch:all -extra- packages
* Bump standards version to 3.9.5, no changes needed
-- Reinhard Tartler <email address hidden> Sun, 04 May 2014 16:11:03 -0400
-
libav (6:9.11-3) unstable; urgency=low
* Add upstream patch to enable PIC on s390(x), Closes: #726733
-- Reinhard Tartler <email address hidden> Wed, 05 Mar 2014 02:49:52 +0000
-
libav (6:9.11-2) unstable; urgency=low
* Avoid the use of pipes to not cover segfaulting libavcodecs (cf. #726733)
* refactor call_and_install_avconv_dump functionality
* Rebuild against libfreetype 2.5.1 (closes: #731307)
* i386 shared builds must be optimized for 586, (closes: 728928, #688384)
-- Reinhard Tartler <email address hidden> Sat, 22 Feb 2014 14:34:54 +0000
-
libav (6:9.11-1) unstable; urgency=low
* Imported Upstream version 9.11
- drop patch mathematics-remove-asserts-from-av_rescale_rnd.patch,
merged upstream
- mathematics: remove asserts from av_rescale_rnd, (Closes: #718805)
* Support Opus in Ogg containers (Closes: #733884, 720563)
* Refactor conffile moving
* No longer build-depend on libtiff4-dev. Closes: #736020
* Disable opencv filter because of #737584
* Check upstream OpenPGP signatures (Closes: #723692)
-- Reinhard Tartler <email address hidden> Wed, 05 Feb 2014 00:24:42 +0000
-
libav (6:9.10-2) unstable; urgency=low
[ Fabian Greffrath ]
* Fix upstream changelog link in previous changelog entry.
* Transition from the "texi2html" utility to the "makeinfo" utility from the
texinfo package, fixes build-depends-on-obsolete-package lintian error and
addresses <https://lists.debian.org/debian-devel/2013/05/msg01516.html>.
* debhelper (>= 9) is now available in stable and old-bpo.
* Use "set -e" in the body of the libav-tools maintainer scripts.
* Fix vcs-field-not-canonical lintian warning.
* Set executable permissions for qt-faststart, fixes unstripped-binary-or-object
lintian warning.
* Fix some spelling errors detected by lintian.
[ Reinhard Tartler ]
* compile against libtiff5-dev
* Drop some special code paths for building the ubuntu flavor
(no longer necessary over there)
-- Reinhard Tartler <email address hidden> Sun, 03 Nov 2013 08:35:04 -0500
-
libav (6:9.10-1) unstable; urgency=medium
* New upstream release 9.10
* Too many security related upstream changes to list here, please cf. to
upstream changelog:
http://git.libav.org/?p=libav.git;a=blob;f=Changelog;hb=refs/tags/v9.9
* Urgency set to medium because new upstream release fixes many security issues.
* Do not accidentally overwrite installed binaries from different flavors.
Thanks to Fabian Greffrath for the patch (Closes: #725956)
-- Reinhard Tartler <email address hidden> Thu, 10 Oct 2013 10:53:54 -0400
-
libav (6:9.8-2) unstable; urgency=low
* Upload to unstable
* Weaken dependencies on libx264, opencv and frei0r for now to allow
compilation. This dependency will be tightened as soon as the
libraries have been updated in unstable.
-- Reinhard Tartler <email address hidden> Tue, 13 Aug 2013 15:10:05 +0200
-
libav (6:0.8.8-1) unstable; urgency=low
* Imported Upstream version 0.8.7, new releases fixes a number of
security relevant patches.
* backport patch from upstream to make samplefmt auto-aling buffers
(Closes: #713856)
-- Reinhard Tartler <email address hidden> Fri, 12 Jul 2013 22:00:28 +0200
-
libav (6:0.8.7-1) unstable; urgency=medium
* Imported Upstream version 0.8.7, new releases fixes:
- wav: Always seek to an even offset, Bug #500, LP: #1174737
- A number of further security relevant patches.
-- Reinhard Tartler <email address hidden> Mon, 20 May 2013 11:04:00 +0200
-
libav (6:0.8.6-1) unstable; urgency=low
* Imported Upstream version 0.8.6, new releases fixes:
- h264: check for luma and chroma bit depth being equal (CVE-2013-2277)
- iff: validate CMAP palette size (CVE-2013-2495)
- msrledec: convert to bytestream2 API and add proper bounds checking (CVE-2013-2496)
- vorbisdec: Error on bark_map_size equal to 0 (CVE-2013-0894)
- Thus, closes: #703200
-- Reinhard Tartler <email address hidden> Sun, 24 Mar 2013 07:35:51 +0100
-
libav (6:0.8.5-1) unstable; urgency=low
* New upstream security/bugfix release. New releases fixes
(bug numbers reference http://bugzilla.libav.org, Closes: #694483)
- Indeo 4 (CVE-2012-2791)
- VP5/VP6 (CVE-2012-2783)
- Indeo 3 (CVE-2012-2804)
- MPEG-1/2 (CVE-2012-2803)
- MP3 (CVE-2012-2797)
- AAC (CVE-2012-5144)
- AC-3 (CVE-2012-2802)
- AVS (CVE-2012-2801)
- DFA (CVE-2012-2798)
- ID3v2 (Bug 395)
- Serious Memory leaks on broken Ogg files
* drop recordshow script. This clearly undermaintained script has
unclear copyright status and is unlikely to work properly anyways.
-- Reinhard Tartler <email address hidden> Sun, 13 Jan 2013 11:56:59 +0100
-
libav (6:0.8.4-1) unstable; urgency=low
* New upstream security/bugfix release. New release fixes:
(bug numbers reference http://bugzilla.libav.org, Closes: #688847)
- h264 (Bug 118), vc1dec (CVE-2012-2796), sipr, bmpdec (bug 367), alsdec
(CVE-2012-2775), rv34/rv40 (CVE-2012-2772), indeo3/indeo4
(CVE-2012-2776, CVE-2012-2779, CVE-2012-2787, CVE-2012-2794,
CVE-2012-2800), vorbisenc, vorbisdec (Bug 277), snow, ac3dec
(CVE-2012-2802), avsdec (CVE-2012-2801), dfa (CVE-2012-2786,
CVE-2012-2798), lagrith (CVE-2012-2793), wmaprodec (CVE-2012-2789 &
Bug 327), avidec (CVE-2012-2788, CVE-2012-2790), cavsdec
(CVE-2012-2777, CVE-2012-2784), wav (Bug 379), yuff4mpeg (Bug 373),
mpegaudio, tiffenc, smacker (Bug 265).
- smaller bug fixes in avconv (Bug 352)
- fix lt() and lte() in function evaluator
- fix segfault in avformat_open_input()
- fix segfault in golomb decoder (bug 310)
- fix segfault (double free) in libavfilter
- convert dfa decoder to bytestream2 API to protect from overreads
- bugfix in vf_pad/scale filter (Bug 203 & 245)
- lavc: remove stats_out and stats_in from the options table.
(Bug 380, Closes: #690726)
* Drop patches applied upstream.
-- Reinhard Tartler <email address hidden> Mon, 22 Oct 2012 20:57:08 +0200
-
libav (6:0.8.3-7) unstable; urgency=low
[ Fabian Greffrath ]
* Fix generation of shlibs file not only for libavcodec*, but for all the
other library packages as well. Really closes: #679542
* Use xz compression for binary packages, thanks Ansgar Burchardt
(Closes: #683895).
[ Reinhard Tartler ]
* use EPOCH macro in SHLIBS_VERSION
* Drop the package 'libav-regular-dbg'. It was not included in squeeze.
-- Reinhard Tartler <email address hidden> Sat, 25 Aug 2012 11:08:48 +0200
-
libav (6:0.8.3-6) unstable; urgency=low
* Clarify the changes in the 6:0.8.3-5 upload, as discussed in bug
#683247.
* Make ffmpeg-dbg 'arch: all' for consistency with the libav-extra-dbg
package.
* Fix generation of shlibs file. (Closes: #679542)
Wrong make variables where used for the shlibs generation.
-- Reinhard Tartler <email address hidden> Sat, 04 Aug 2012 09:03:54 +0200
-
libav (6:0.8.3-5) unstable; urgency=low
[ Reinhard Tartler ]
* Bug fix: "Multi-Arch: foreign libraries", thanks to Stepan Golosunov.
Make the transitional libavfoo-extra-NN packages arch: all
to avoid that the dependency can be satisfied by packages of other
architectures, which would break applications. Closes: #680613
[ Fabian Greffrath ]
* Mention qt-faststart in the long description (Closes: #681491).
* Install all debug symbols into libav-dbg (Closes: #680602).
* Do not run doxygen if it is not installed.
-- Reinhard Tartler <email address hidden> Sun, 15 Jul 2012 23:13:42 +0200
-
libav (6:0.8.3-4) unstable; urgency=low
* Declare a 'Breaks' relationship against mplayer, Closes: #671934
-- Reinhard Tartler <email address hidden> Tue, 26 Jun 2012 08:46:42 +0200
-
libav (6:0.8.3-3) unstable; urgency=low
* Install the shared flavor last; the binaries from the optimized flavor(s)
would overwrite the ones from the shared baseline flavor causing SIGILL;
closes: #657885.
* control/Uploaders: update my email address
-- Loïc Minier <email address hidden> Mon, 25 Jun 2012 21:21:24 +0200
-
libav (6:0.8.3-1) unstable; urgency=medium
[ Andres Mejia ]
* Update libav-doc doc base. (Closes: #674139)
[ Reinhard Tartler ]
* New upstream release 0.8.3:
- Several bugs and crashes have been fixed in the following codecs: PNG,
Electronic Arts TQI, H.264 (CVE-2012-0851) and H.263 (CVE-2011-3937)
* Raising severity because of security issues.
-- Reinhard Tartler <email address hidden> Sat, 09 Jun 2012 13:25:31 +0200
-
libav (6:0.8.2-2) unstable; urgency=low
* Revert "temporarily disable opencv to work around dependency troubles"
* Simplify internal dependencies (Closes: #672791)
-- Reinhard Tartler <email address hidden> Mon, 14 May 2012 21:37:59 +0200
-
libav (6:0.8.2-1) unstable; urgency=medium
* New upstream release:
- Several bugs and crashes have been fixed in the following codecs: AAC,
APE, H.263, H.264, Indeo 4, Mimic, MJPEG, Motion Pixels Video, RAW,
TTA, VC1, VQA, WMA Voice, vqavideo (CVE-2012-0947).
- Several bugs and crashes have been fixed in the following formats:
ASF, ID3v2, MOV, xWMA
- This release additionally updates the following codecs to the
bytestream2 API, and therefore benefit from additional overflow
checks: truemotion2, utvideo, vqavideo
* drop 02-fix-avpreset-extension.patch, applied upstream
* Revert "Revert "temporarily disable opencv to work around dependency
troubles"" (Closes: #671302)
* Bumped urgency because of security issue.
-- Reinhard Tartler <email address hidden> Sat, 05 May 2012 11:08:44 +0200
-
libav (6:0.8.1-7) unstable; urgency=low
* Fix build for hurd. Thanks to Samuel Thibault for patch. (Closes: #613034)
(Closes: #671038)
* Properly migrate /etc/ffserver.conf to /etc/avserver.conf.
(Closes: #660786)
* Renable opencv support.
-- Andres Mejia <email address hidden> Tue, 01 May 2012 21:33:13 -0400
-
libav (6:0.8.1-6) unstable; urgency=low
* Fix epoch in strict internal dependencies. Closes: #670861
* Temporarily disable opencv to work around dependency trouble
-- Reinhard Tartler <email address hidden> Mon, 30 Apr 2012 08:14:20 +0200
-
libav (6:0.8.1-5) unstable; urgency=low
[ Andres Mejia ]
* Fix issue with file not being multiarch compatible. (Closes: #669988)
[ Reinhard Tartler ]
* Bump epoch to fix messed upload to unstable (Closes: #670762)
-- Reinhard Tartler <email address hidden> Sun, 29 Apr 2012 10:30:26 +0200
-
libav (5:0.8.1-4) unstable; urgency=low
* Use a Provides field to provide transitional packages instead of Conflicts.
(Closes: #666401)
* Have both libavcodec and libavcodec-extra package conflict with each other.
-- Andres Mejia <email address hidden> Fri, 30 Mar 2012 10:15:50 -0400
-
libav (5:0.8.1-3) unstable; urgency=low
* Separate the ffmpeg program into the transitional package.
* Change ffmpeg warning so that it's clearer the program is
deprecated (LP: #939863)
-- Andres Mejia <email address hidden> Thu, 29 Mar 2012 13:13:01 -0400
-
libav (4:0.8.1-1) unstable; urgency=medium
[ Reinhard Tartler ]
* Bump shlibs (Closes: #662793)
* force upgrades of older libavcodec-extra-53 packages
* drop all post-0.8 patches, applied upstream
* bump standards version, no changes needed
* Imported Upstream version 0.8.1
* Bumped urgency to medium because of included security fixes:
CVE-2012-0848, CVE-2012-0853, CVE-2012-0858, CVE-2011-3929,
CVE-2011-3936, CVE-2011-3937, CVE-2011-3940, CVE-2011-3945,
CVE-2011-3947, CVE-2011-3951, CVE-2011-3952
[ Andres Mejia ]
* Enable frei0r support.
* Enable tls support through gnutls.
* Enable libcdio support.
* Enable opencv support.
* Enable pulse support.
* Enable vaapi for all architectures.
-- Reinhard Tartler <email address hidden> Mon, 19 Mar 2012 08:39:18 +0100
-
libav (4:0.8-2) unstable; urgency=low
[ Reinhard Tartler ]
* confflags: use --enable-pic instead of manually messing with cflags
* Import post 0.8 patches
* Bugfix: expects wrong preset file extension (Closes: #660978)
Thanks to Laurento <email address hidden> for spotting this.
[ Alessio Treglia ]
* Fix maintainer's name.
[ Fabian Greffrath ]
* Enable hardened build flags through dpkg-buildflags (Closes: #658929).
* Fix format string vulnerability detected by -Wformat-security.
* Filter out system-wide setting of -Bsymbolic-functions to avoid FTBFS.
* Set CPPFLAGS separately.
-- Reinhard Tartler <email address hidden> Mon, 05 Mar 2012 19:47:54 +0100
-
libav (4:0.8-1) unstable; urgency=medium
[ Fabian Greffrath ]
* Remove the last remainders of explicit quilt usage in
pre-3.0 source formats.
* Urgency bumped to medium because of RC bugs and unfixed security
issues in testing.
* Imported Upstream version 0.8
- Bug fix: "Segfaults when using vaapi", thanks to Andrey Rahmatullin
(Closes: #656572). That crash is most likely caused by auto-enabling
multi-threading. This behavior got reverted just before this release.
* Drop post-0.8b2 patches
* Bump shlibs for addition of new audio encoding API
* Extend package descriptions to include a note what libav actually is
* debian/watch: fix mangling of '_' characters.
* drop unused lintian override in debian/control
* provide compatibility links for ffserver, ffplay and ffprobe
(Closes: #655683)
-- Reinhard Tartler <email address hidden> Sun, 22 Jan 2012 21:24:22 +0100
-
libav (4:0.8~beta2-3) unstable; urgency=low
[ Fabian Greffrath ]
* Fix debian/*.install file generation on archs (e.g. armel) that build
more than only one optimized shared library (Closes: #656184).
[ Reinhard Tartler ]
* add additional post-0.8b2 patches
-- Reinhard Tartler <email address hidden> Tue, 17 Jan 2012 22:31:32 +0100
-
libav (4:0.8~beta2-2) unstable; urgency=low
[ Fabian Greffrath ]
* Properly set the library paths for multiarch and shared libs in
debian/*.install instead of using brace expansion and asterisks.
[ Reinhard Tartler ]
* Fix upgrade path from earlier versions of the 'ffmpeg' package
(Closes: #655917)
* Sync post v0.8b2 commits
* extend package description to include a note what libav actuall is
* place transitional packages in oldlibs/extra section to assist package
managers
* drop unused lintian override in debian/control
-- Reinhard Tartler <email address hidden> Sun, 15 Jan 2012 16:19:41 +0100
-
libav (4:0.8~beta2-1) unstable; urgency=low
* New Upstream version 0.8~beta2:
- Confirm that this release does not inhibit the following security issues:
- DoS in MKV demuxer,
- CVE-2011-3893, Closes: #654572
- Double free vuln in the Theora decoder,
- CVE-2011-3892, Closes: #654571
- heap-based buffer overflow in vorbis decoder:
- CVE-2011-3895, Closes: #654573
- Closes: #654534
- Bug fix: "libswscale crashes when upscaling pictures using
hyscale_fast2, MMX variant on amd64 with gcc-4.6 and later",
thanks to Harald Dunkel (Closes: #647824).
- Clarify that libavutil/avutil.h doesn't include mathematics.h any more in
APIchanges documentation. Thanks: Jonathan Nieder <email address hidden>,
Closes: #654303
* Disable configuration mismatch warnings (Closes: #619530)
* Rename package libav to libav-tools (Closes: #654984)
* Refresh patches
-- Reinhard Tartler <email address hidden> Wed, 11 Jan 2012 16:45:28 +0100
-
libav (4:0.7.3-2) unstable; urgency=low
* forcefully disable v4l on kfreebsd, fixes an FTBFS on kFreeBSD
-- Reinhard Tartler <email address hidden> Mon, 26 Dec 2011 10:50:36 +0100
-
libav (4:0.7.3-1) unstable; urgency=high
* New upstream version. Includes fixes for:
- VP3 decoder (CVE-2011-4352)
- svq1 decoder (CVE-2011-4579)
- DoS in the VP5/VP6 decoders (CVE-2011-4353)
- QDM2 decoder (CVE-2011-4351)
- Sierra VMD decoder (CVE-2011-4364)
* Bumped urgency.
* Enable drawtext filter (Closes: #647132)
* Imported Upstream version 0.7.3
* Bump shlibs for backported avcodec_open2() API
-- Reinhard Tartler <email address hidden> Sun, 25 Dec 2011 22:04:54 +0100
-
libav (4:0.7.2-1) unstable; urgency=low
* New upstream release: 0.7.2
- Security focused release
- Includes Matroska reallocation checks, Closes: #643859
* Drop all post 0.7.1 patches, included upstream.
-- Reinhard Tartler <email address hidden> Fri, 30 Sep 2011 21:01:25 +0200
-
libav (4:0.7.1-7) unstable; urgency=medium
* Add 63 (!) additional post 0.7.1 patches
- all scheduled for next upstream point release
- Fix missing CAVS boundary checks, Closes: #641478, Fixes: CVE-2011-3362
* Medium urgency for fixing a security issue
* Drop debian/patches/03-fix-movrel.patch, better patch upstream
* prefer libtiff4 over libtiff5 for now
-- Reinhard Tartler <email address hidden> Mon, 26 Sep 2011 22:24:47 +0200
-
libav (4:0.7.1-6) unstable; urgency=low
* Convert package to include multiarch support.
-- Andres Mejia <email address hidden> Fri, 23 Sep 2011 22:03:39 -0400
-
libav (4:0.7.1-5) unstable; urgency=low
* sync patches with upstream release branch
* Fix segmentation fault on ppc32, Closes: #639948
-- Reinhard Tartler <email address hidden> Mon, 05 Sep 2011 07:25:06 +0200
-
libav (4:0.7.1-4) unstable; urgency=low
* upload to unstable
-- Reinhard Tartler <email address hidden> Thu, 01 Sep 2011 22:45:43 +0200
-
libav (4:0.6.2-5) unstable; urgency=medium
* Include post 0.6.2 patches from upstream: - fixes crashes with gcc 4.6 (Closes: #635695, #635324) * Build against libx264. Closes: #418228, #440681 * Build against xvidcore to enable xvid encoding * ignore lintian warning: "dbg-package-missing-depends ffmpeg-dbg" * Add additional debhelper specific ${misc:Depends} substvars * build against libmp3lame. Closes: #587904 -- Reinhard Tartler <email address hidden> Fri, 29 Jul 2011 11:36:43 +0200
-
libav (4:0.6.2-4) unstable; urgency=low
[ Reinhard Tartler ] * Fix migration path with mencoder from squeeze, Closes: #625284 * Use proper architecture wildcards for Linux-only dependencies, Closes: #634460 * disable jackd output support on the hurd * no longer generate 'snapshot_version' * Pass --arch to configure * Bump Standards-Version * (temporarily) build depend on libtiff4 to avoid dependency on the package from experimental [ Andres Mejia ] * Update to my @debian.org email. [ Arnout Engelen ] * libavformat-dev depends on libavutil-dev [ Jonathan Nieder ] * debian/rules: allow clean as non-root -- Reinhard Tartler <email address hidden> Thu, 21 Jul 2011 14:52:34 +0200
-
libav (4:0.6.2-3) unstable; urgency=high
[ Reinhard Tartler ] * syncronize configuration flags with Ubuntu * exclude more cruft from libav-source tarball * reenable AAC codec on ia64 * compile with "-marm -fPIC -DPIC" on armel [ Fabian Greffrath ] * Add libjack-dev to Build-Depends. [ Reinhard Tartler ] * update upstream site to libav * disable warning about library configuration mismatch * relax dependencies of transitional package ffmpeg-dbg * severity set to high because of added security patches: - fix possibly expoitable bug in AMV decoder, Closes: #624339 - fix misdetected fps in mkv and mp4 files - fix races in default av_log handler -- Reinhard Tartler <email address hidden> Sat, 30 Apr 2011 11:56:03 +0200
-
libav (4:0.6.2-1) unstable; urgency=medium
[ Reinhard Tartler ] * Imported Upstream version 0.6.2 - include security fixes (Closes: #611495) * rename source package to libav * Switch to libav packages * copy in changelog entries from the 0.5 packaging branch (Closes: #616190) * update version numbering * make buildlogs verbose * Introduce 'libav-source', which contains the patched sources of libav * rename source package to libav [ Fabian Greffrath ] * Fix cp of doxy documentation fails with "Argument list too long" (Closes: #618679) -- Reinhard Tartler <email address hidden> Sat, 19 Mar 2011 08:13:46 +0100