-
libav (6:0.8.17-2) wheezy-security; urgency=medium
* debian/confflags: Build with --disable-protocol=concat as this is the only
real fix for CVE-2016-1897 and CVE-2016-1898.
* debian/patches/CVE-2016-2326.patch: avformat/asfenc: Check pts
(CVE-2016-2326).
-- Sebastian Ramacher <email address hidden> Wed, 02 Mar 2016 23:22:59 +0100
-
libav (6:0.8.17-1) wheezy-security; urgency=medium
* New upstream release fixing multiple security issues.
- utvideodec: Handle slice_height being zero (CVE-2014-9604)
- tiff: Check that there is no aliasing in pixel format selection (CVE-2014-8544)
- rmenc: limit packet size
- eamad: check for out of bounds read (CID/1257500)
- h264_cabac: Break infinite loops
- matroskadec: Fix read-after-free in matroska_read_seek() (chromium/427266)
- gifdec: refactor interleave end handling (CVE-2014-8547)
- smc: fix the bounds check (CVE-2014-8548)
- mmvideo: check frame dimensions (CVE-2014-8543)
- jvdec: check frame dimensions (CVE-2014-8542)
- mov: avoid a memleak when multiple stss boxes are present
- apetag: Fix APE tag size check
- x86: Only use optimizations with cmov if the CPU supports the instruction
- x86: Add CPU flag for the i686 cmov instruction
-- Sebastian Ramacher <email address hidden> Sat, 14 Mar 2015 21:57:29 +0100
-
libav (6:0.8.16-1) stable-security; urgency=low
* Imported Upstream version 0.8.16, new releases fixes:
- avcodec: Add more missing #includes for ff_get_buffer()
(Fixes: CVE-2013-7020)
- ffv1dec: check that global parameters do not change in version 0/113
- arm: dsputil: fix overreads in put/avg_pixels functions
- arm: dsputil: prettify some conditional instructions in put_pixels macros
- arm/neon: dsputil: use correct size specifiers on vld1/vst1
- vp8: avoid race condition on segment map.
- nutdec: Remove unused and broken debug function stub
- h264_refs: Fix debug tprintf argument types
- swscale: Remove two bogus asserts
- elbg: Fix an assert
- mpegvideo: remove last_picture_ptr / h264 assert.
- parser: Don't use pc as context for av_dlog
- h264: Remove an assert on current_picture_ptr being null
- svq1enc: Set picture_structure correctly
- adpcmenc: Calculate the IMA_QT predictor without overflow
- ffmpeg: Clarify wording of ffmpeg --> avconv deprecation message
- doc: Fix syntax and logical errors in avconv stream combination example
* Refresh and update quilt patches
-- Reinhard Tartler <email address hidden> Tue, 16 Sep 2014 22:29:19 -0400
-
libav (6:0.8.12-1) stable-security; urgency=low
* Imported Upstream version 0.8.12, new releases fixes:
- h264: set parameters from SPS whenever it changes
- alac: Limit max_samples_per_frame
- swscale: Fix an undefined behaviour
- apedec: do not buffer decoded samples over AVPackets (debian/744901)
- isom: lpcm in mov default to big endian
- movdec: handle 0x7fff langcode as macintosh per the specs
- avi: Improve non-interleaved detection (libav/666)
- h264: reset next_output_pic earlier in start_frame() (libav/672, debian/741240, ubuntu/1288206)
- tiffdec: use bytestream2 to simplify overread/overwrite protection
- bytestream: add bytestream2_copy_buffer() functions
- bytestream: add functions for accessing size of buffer
- movenc: allow override of "writing application" tag
- matroskaenc: allow override of "writing application" tag
- avfilter: Add missing emms_c when needed
- mpeg12: check scantable indices in all decode_block functions
- sgidec: fix buffer size check in expand_rle_row()
- adx: check that the offset is not negative
- mpegvideo: set reference/pict_type on generated reference frames
- h264: reset data partitioning at the beginning of each decode call
- h264: reset ref count if decoding the slice header fails
- h264: reset first_field if frame_start() fails for missing refs
- h264: limit allowed pred modes in ff_h264_check_intra_pred_mode() to 3
- h264: reject mismatching luma/chroma bit depths during sps parsing
- h264: check that execute_decode_slices() is not called too many times
- h264: do not use 422 functions for monochrome
- h264: reset data_partitioning if decoding the slice header for NAL_DPA fails
- h264_refs: make sure not to write over the bounds of the default ref list
- h264: check buffer size before accessing it
- configure: use utilities from /usr/xpg4/bin if it exists
- cmdutils: update copyright year to 2014.
- ituh263: reject b-frame with pp_time = 0
-- Reinhard Tartler <email address hidden> Sun, 01 Jun 2014 16:57:11 -0400
-
libav (6:0.8.10-1) stable-security; urgency=low
* Imported Upstream version 0.8.9, new releases fixes:
- CVE-2013-0855, CVE-2013-0856, CVE-2013-0865, CVE-2013-4358,
CVE-2013-7010, CVE-2013-7014
* Too many security related upstream changes to list here, please cf. to
upstream changelog:
http://git.libav.org/?p=libav.git;a=blob;f=Changelog;hb=refs/tags/v0.8.9
-- Reinhard Tartler <email address hidden> Tue, 04 Feb 2014 20:09:57 -0500
-
libav (6:0.8.9-1) stable-security; urgency=low
* Imported Upstream version 0.8.9, new releases fixes:
- x86: fft: Remove 3DNow! optimizations, they break FATE
- x86: ac3dsp: Drop mmx variant of ac3_max_msb_abs_int16
- aac: Check init_get_bits return value
- aac: return meaningful errors
- dsicinav: K&R formatting cosmetics
- mov: Seek back if overreading an individual atom
- vcr1: add sanity checks
- pictordec: pass correct context to avpriv_request_sample
- dsicinav: Clip the source size to the expected maximum
- alsdec: Clean up error paths
- ogg: Fix potential infinite discard loop
- nuv: check rtjpeg_decode_frame_yuv420 return value
- nuv: Reset the frame on resize
- nuv: Use av_fast_realloc
- nuv: return meaningful error codes.
- nuv: Pad the lzo outbuf
- nuv: Do not ignore lzo decompression failures
- oma: correctly mark and decrypt partial packets
- oma: check geob tag boundary
- oma: refactor seek function
- 8bps: Bound-check the input buffer
- rtmp: Do not misuse memcmp
- rtmp: rename data_size to size
- lavc: set the default rc_initial_buffer_occupancy
- 4xm: Reject not a multiple of 16 dimension
- 4xm: do not overread the prestream buffer
- 4xm: validate the buffer size before parsing it
- indeo: Do not reference mismatched tiles
- indeo: Sanitize ff_ivi_init_planes fail paths
- indeo: Bound-check before applying motion compensation
- indeo: Bound-check before applying transform
- indeo: reject negative array indexes
- indeo: Cosmetic formatting
- indeo: Refactor ff_ivi_init_tiles and ivi_decode_blocks
- indeo: Refactor ff_ivi_dec_huff_desc
- lavf: fix the comparison in an overflow check
- dv: Add a guard to not overread the ppcm array
- mpegvideo: Avoid 32-bit wrapping of linesize multiplications
- mjpegb: Detect changing number of planes in interlaced video
- matroskadec: Check that .lang was allocated and set before reading it
- ape demuxer: check for EOF in potentially long loops
- lavf: avoid integer overflow when estimating bitrate
- pictordec: break out of both decoding loops when y drops below 0
- ac3: Return proper error codes
- ac3: Clean up the error paths
- ac3: Do not clash with normal AVERROR
- dxa: Make sure the reference frame exists
- h261: check the mtype index
- segafilm: Error out on impossible packet size
- ogg: Always alloc the private context in vorbis_header
- vc1: check mb_height validity.
- vc1: check the source buffer in vc1_mc functions
- bink: Bound check the quantization matrix.
- xl: Make sure the width is valid
- alsdec: Fix the clipping range
- dsicinav: Bound-check the source buffer when needed
- mov: Do not allow updating the time scale after it has been set
- ac3dec: Don't consume more data than the actual input packet size
- indeo: Reject impossible FRAMETYPE_NULL
- indeo5: return proper error codes
- indeo4: Validate scantable dimension
- indeo4: Check the quantization matrix index
- indeo4: Do not access missing reference MV
- adpcm: Unbreak ima-dk4
- ac3dec: validate channel output mode against channel count
- dca: Respect the current limits in the downmixing capabilities
- dca: Error out on missing DSYNC
- pcm: always use codec->id instead of codec_id
- mlpdec: Do not set invalid context in read_restart_header
- pcx: Do not overread source buffer in pcx_rle_decode
- wmavoice: conceal clearly corrupted blocks
- iff: Do not read over the source buffer
- qdm2: Conceal broken samples
- qdm2: refactor joined stereo support
- adpcm: Write the correct number of samples for ima-dk4
- imc: Catch a division by zero
- atrac3: Error on impossible encoding/channel combinations
- atrac3: set the getbits context the right buffer_end
- atrac3: fix error handling
- qdm2: check and reset dithering index per channel
- westwood_vqa: do not free extradata on error in read_header
- vqavideo: check the version
- rmdec: Use the AVIOContext given as parameter in rm_read_metadata()
- avio: Handle AVERROR_EOF in the same way as the return value 0
- wtv: Mark attachment with a negative stream id
- avidec: Let the inner dv demuxer take care of discarding
- swfdec: do better validation of tag length
version 0.8.8:
- kmvc: Clip pixel position to valid range
- kmvc: use fixed sized arrays in the context
- indeo: use a typedef for the mc function pointer
- lavc: check for overflow in init_get_bits
- mjpegdec: properly report unsupported disabled features
- jpegls: return meaningful errors
- jpegls: factorize return paths
- jpegls: check the scan offset
- wavpack: validate samples size parsed in wavpack_decode_block
- ljpeg: use the correct number of components in yuv
- mjpeg: Validate sampling factors
- mjpegdec: validate parameters in mjpeg_decode_scan_progressive_ac
- wavpack: check packet size early
- wavpack: return meaningful errors
- apetag: use int64_t for filesize
- tiff: do not overread the source buffer
- Prepare for 0.8.8 Release
- smacker: fix an off by one in huff.length computation
- smacker: check the return value of smacker_decode_tree
- smacker: pad the extradata allocation
- smacker: check frame size validity
- vmdav: convert to bytestream2
- 4xm: don't rely on get_buffer() initializing the frame.
- 4xm: check the return value of read_huffman_tables().
- 4xm: use the correct logging context
- 4xm: reject frames not compatible with the declared version
- 4xm: check bitstream_size boundary before using it
- 4xm: do not overread the source buffer in decode_p_block
version 0.8.7:
- avfiltergraph: check for sws opts being non-NULL before using them
- bmv: check for len being valid in bmv_decode_frame()
- dfa: check for invalid access in decode_wdlt()
- indeo3: check motion vectors
- indeo3: fix data size check
- indeo3: switch parsing the header to bytestream2
- lavf: make sure stream probe data gets freed.
- oggdec: fix faulty cleanup prototype
- oma: Validate sample rates
- qdm2: check that the FFT size is a power of 2
- rv10: check that extradata is large enough
- xmv: check audio track parameters validity
- xmv: do not leak memory in the error paths in xmv_read_header()
- aac: check the maximum number of channels
- indeo3: fix off by one in MV validity check, Bug #503
- id3v2: check for end of file while unescaping tags
- wav: Always seek to an even offset, Bug #500, LP: #1174737
- proresdec: support mixed interlaced/non-interlaced content
-- Reinhard Tartler <email address hidden> Sat, 02 Nov 2013 19:36:44 -0400
-
libav (6:0.8.6-1) unstable; urgency=low
* Imported Upstream version 0.8.6, new releases fixes:
- h264: check for luma and chroma bit depth being equal (CVE-2013-2277)
- iff: validate CMAP palette size (CVE-2013-2495)
- msrledec: convert to bytestream2 API and add proper bounds checking (CVE-2013-2496)
- vorbisdec: Error on bark_map_size equal to 0 (CVE-2013-0894)
- Thus, closes: #703200
-- Reinhard Tartler <email address hidden> Sun, 24 Mar 2013 07:35:51 +0100
-
libav (6:0.8.5-1) unstable; urgency=low
* New upstream security/bugfix release. New releases fixes
(bug numbers reference http://bugzilla.libav.org, Closes: #694483)
- Indeo 4 (CVE-2012-2791)
- VP5/VP6 (CVE-2012-2783)
- Indeo 3 (CVE-2012-2804)
- MPEG-1/2 (CVE-2012-2803)
- MP3 (CVE-2012-2797)
- AAC (CVE-2012-5144)
- AC-3 (CVE-2012-2802)
- AVS (CVE-2012-2801)
- DFA (CVE-2012-2798)
- ID3v2 (Bug 395)
- Serious Memory leaks on broken Ogg files
* drop recordshow script. This clearly undermaintained script has
unclear copyright status and is unlikely to work properly anyways.
-- Reinhard Tartler <email address hidden> Sun, 13 Jan 2013 11:56:59 +0100
-
libav (6:0.8.4-1) unstable; urgency=low
* New upstream security/bugfix release. New release fixes:
(bug numbers reference http://bugzilla.libav.org, Closes: #688847)
- h264 (Bug 118), vc1dec (CVE-2012-2796), sipr, bmpdec (bug 367), alsdec
(CVE-2012-2775), rv34/rv40 (CVE-2012-2772), indeo3/indeo4
(CVE-2012-2776, CVE-2012-2779, CVE-2012-2787, CVE-2012-2794,
CVE-2012-2800), vorbisenc, vorbisdec (Bug 277), snow, ac3dec
(CVE-2012-2802), avsdec (CVE-2012-2801), dfa (CVE-2012-2786,
CVE-2012-2798), lagrith (CVE-2012-2793), wmaprodec (CVE-2012-2789 &
Bug 327), avidec (CVE-2012-2788, CVE-2012-2790), cavsdec
(CVE-2012-2777, CVE-2012-2784), wav (Bug 379), yuff4mpeg (Bug 373),
mpegaudio, tiffenc, smacker (Bug 265).
- smaller bug fixes in avconv (Bug 352)
- fix lt() and lte() in function evaluator
- fix segfault in avformat_open_input()
- fix segfault in golomb decoder (bug 310)
- fix segfault (double free) in libavfilter
- convert dfa decoder to bytestream2 API to protect from overreads
- bugfix in vf_pad/scale filter (Bug 203 & 245)
- lavc: remove stats_out and stats_in from the options table.
(Bug 380, Closes: #690726)
* Drop patches applied upstream.
-- Reinhard Tartler <email address hidden> Mon, 22 Oct 2012 20:57:08 +0200
-
libav (6:0.8.3-7) unstable; urgency=low
[ Fabian Greffrath ]
* Fix generation of shlibs file not only for libavcodec*, but for all the
other library packages as well. Really closes: #679542
* Use xz compression for binary packages, thanks Ansgar Burchardt
(Closes: #683895).
[ Reinhard Tartler ]
* use EPOCH macro in SHLIBS_VERSION
* Drop the package 'libav-regular-dbg'. It was not included in squeeze.
-- Reinhard Tartler <email address hidden> Sat, 25 Aug 2012 11:08:48 +0200
-
libav (6:0.8.3-6) unstable; urgency=low
* Clarify the changes in the 6:0.8.3-5 upload, as discussed in bug
#683247.
* Make ffmpeg-dbg 'arch: all' for consistency with the libav-extra-dbg
package.
* Fix generation of shlibs file. (Closes: #679542)
Wrong make variables where used for the shlibs generation.
-- Reinhard Tartler <email address hidden> Sat, 04 Aug 2012 09:03:54 +0200
-
libav (6:0.8.3-4) unstable; urgency=low
* Declare a 'Breaks' relationship against mplayer, Closes: #671934
-- Reinhard Tartler <email address hidden> Tue, 26 Jun 2012 08:46:42 +0200
-
libav (6:0.8.3-1) unstable; urgency=medium
[ Andres Mejia ]
* Update libav-doc doc base. (Closes: #674139)
[ Reinhard Tartler ]
* New upstream release 0.8.3:
- Several bugs and crashes have been fixed in the following codecs: PNG,
Electronic Arts TQI, H.264 (CVE-2012-0851) and H.263 (CVE-2011-3937)
* Raising severity because of security issues.
-- Reinhard Tartler <email address hidden> Sat, 09 Jun 2012 13:25:31 +0200
-
libav (6:0.8.2-2) unstable; urgency=low
* Revert "temporarily disable opencv to work around dependency troubles"
* Simplify internal dependencies (Closes: #672791)
-- Reinhard Tartler <email address hidden> Mon, 14 May 2012 21:37:59 +0200
-
libav (6:0.8.2-1) unstable; urgency=medium
* New upstream release:
- Several bugs and crashes have been fixed in the following codecs: AAC,
APE, H.263, H.264, Indeo 4, Mimic, MJPEG, Motion Pixels Video, RAW,
TTA, VC1, VQA, WMA Voice, vqavideo (CVE-2012-0947).
- Several bugs and crashes have been fixed in the following formats:
ASF, ID3v2, MOV, xWMA
- This release additionally updates the following codecs to the
bytestream2 API, and therefore benefit from additional overflow
checks: truemotion2, utvideo, vqavideo
* drop 02-fix-avpreset-extension.patch, applied upstream
* Revert "Revert "temporarily disable opencv to work around dependency
troubles"" (Closes: #671302)
* Bumped urgency because of security issue.
-- Reinhard Tartler <email address hidden> Sat, 05 May 2012 11:08:44 +0200
-
libav (5:0.8.1-4) unstable; urgency=low
* Use a Provides field to provide transitional packages instead of Conflicts.
(Closes: #666401)
* Have both libavcodec and libavcodec-extra package conflict with each other.
-- Andres Mejia <email address hidden> Fri, 30 Mar 2012 10:15:50 -0400
-
libav (4:0.8.1-1) unstable; urgency=medium
[ Reinhard Tartler ]
* Bump shlibs (Closes: #662793)
* force upgrades of older libavcodec-extra-53 packages
* drop all post-0.8 patches, applied upstream
* bump standards version, no changes needed
* Imported Upstream version 0.8.1
* Bumped urgency to medium because of included security fixes:
CVE-2012-0848, CVE-2012-0853, CVE-2012-0858, CVE-2011-3929,
CVE-2011-3936, CVE-2011-3937, CVE-2011-3940, CVE-2011-3945,
CVE-2011-3947, CVE-2011-3951, CVE-2011-3952
[ Andres Mejia ]
* Enable frei0r support.
* Enable tls support through gnutls.
* Enable libcdio support.
* Enable opencv support.
* Enable pulse support.
* Enable vaapi for all architectures.
-- Reinhard Tartler <email address hidden> Mon, 19 Mar 2012 08:39:18 +0100
-
libav (4:0.8-2) unstable; urgency=low
[ Reinhard Tartler ]
* confflags: use --enable-pic instead of manually messing with cflags
* Import post 0.8 patches
* Bugfix: expects wrong preset file extension (Closes: #660978)
Thanks to Laurento <email address hidden> for spotting this.
[ Alessio Treglia ]
* Fix maintainer's name.
[ Fabian Greffrath ]
* Enable hardened build flags through dpkg-buildflags (Closes: #658929).
* Fix format string vulnerability detected by -Wformat-security.
* Filter out system-wide setting of -Bsymbolic-functions to avoid FTBFS.
* Set CPPFLAGS separately.
-- Reinhard Tartler <email address hidden> Mon, 05 Mar 2012 19:47:54 +0100
-
libav (4:0.8-1) unstable; urgency=medium
[ Fabian Greffrath ]
* Remove the last remainders of explicit quilt usage in
pre-3.0 source formats.
* Urgency bumped to medium because of RC bugs and unfixed security
issues in testing.
* Imported Upstream version 0.8
- Bug fix: "Segfaults when using vaapi", thanks to Andrey Rahmatullin
(Closes: #656572). That crash is most likely caused by auto-enabling
multi-threading. This behavior got reverted just before this release.
* Drop post-0.8b2 patches
* Bump shlibs for addition of new audio encoding API
* Extend package descriptions to include a note what libav actually is
* debian/watch: fix mangling of '_' characters.
* drop unused lintian override in debian/control
* provide compatibility links for ffserver, ffplay and ffprobe
(Closes: #655683)
-- Reinhard Tartler <email address hidden> Sun, 22 Jan 2012 21:24:22 +0100
-
libav (4:0.7.3-2) unstable; urgency=low
* forcefully disable v4l on kfreebsd, fixes an FTBFS on kFreeBSD
-- Reinhard Tartler <email address hidden> Mon, 26 Dec 2011 10:50:36 +0100
-
libav (4:0.7.2-1) unstable; urgency=low
* New upstream release: 0.7.2
- Security focused release
- Includes Matroska reallocation checks, Closes: #643859
* Drop all post 0.7.1 patches, included upstream.
-- Reinhard Tartler <email address hidden> Fri, 30 Sep 2011 21:01:25 +0200
-
libav (4:0.7.1-5) unstable; urgency=low
* sync patches with upstream release branch
* Fix segmentation fault on ppc32, Closes: #639948
-- Reinhard Tartler <email address hidden> Mon, 05 Sep 2011 07:25:06 +0200
-
libav (4:0.6.2-5) unstable; urgency=medium
* Include post 0.6.2 patches from upstream: - fixes crashes with gcc 4.6 (Closes: #635695, #635324) * Build against libx264. Closes: #418228, #440681 * Build against xvidcore to enable xvid encoding * ignore lintian warning: "dbg-package-missing-depends ffmpeg-dbg" * Add additional debhelper specific ${misc:Depends} substvars * build against libmp3lame. Closes: #587904 -- Reinhard Tartler <email address hidden> Fri, 29 Jul 2011 11:36:43 +0200
-
libav (4:0.6.2-3) unstable; urgency=high
[ Reinhard Tartler ] * syncronize configuration flags with Ubuntu * exclude more cruft from libav-source tarball * reenable AAC codec on ia64 * compile with "-marm -fPIC -DPIC" on armel [ Fabian Greffrath ] * Add libjack-dev to Build-Depends. [ Reinhard Tartler ] * update upstream site to libav * disable warning about library configuration mismatch * relax dependencies of transitional package ffmpeg-dbg * severity set to high because of added security patches: - fix possibly expoitable bug in AMV decoder, Closes: #624339 - fix misdetected fps in mkv and mp4 files - fix races in default av_log handler -- Reinhard Tartler <email address hidden> Sat, 30 Apr 2011 11:56:03 +0200
-
libav (4:0.6.2-1) unstable; urgency=medium
[ Reinhard Tartler ] * Imported Upstream version 0.6.2 - include security fixes (Closes: #611495) * rename source package to libav * Switch to libav packages * copy in changelog entries from the 0.5 packaging branch (Closes: #616190) * update version numbering * make buildlogs verbose * Introduce 'libav-source', which contains the patched sources of libav * rename source package to libav [ Fabian Greffrath ] * Fix cp of doxy documentation fails with "Argument list too long" (Closes: #618679) -- Reinhard Tartler <email address hidden> Sat, 19 Mar 2011 08:13:46 +0100
