Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
SUSE:SLE-15-SP7:GA
ffmpeg.35105
ffmpeg.changes
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File ffmpeg.changes of Package ffmpeg.35105
------------------------------------------------------------------- Tue Jul 2 12:26:28 UTC 2024 - Cliff Zhao <qzhao@suse.com> - Add ffmpeg-CVE-2024-32230.patch: Backporting 96449cfe from upstream, Fix 1 line and one column images. (CVE-2024-32230, bsc#1227296) ------------------------------------------------------------------- Wed May 29 07:10:02 UTC 2024 - Xiaoguang Wang <xiaoguang.wang@suse.com> - Add ffmpeg-CVE-2023-51794.patch: Fix heap buffer overflow at libavfilter (CVE-2023-51794, bsc#1223437). ------------------------------------------------------------------- Tue Apr 27 11:38:35 UTC 2024 - Cliff Zhao <qzhao@suse.com> - Add ffmpeg-CVE-2023-50010.patch: Backporting e4d2666b from upstream, fixes the out of array access. (CVE-2023-50010 bsc#1223256) ------------------------------------------------------------------- Fri Apr 19 18:05:28 UTC 2024 - Cliff Zhao <qzhao@suse.com> - Add ffmpeg-CVE-2024-31578.patch: Backporting ab0fdaed from upstream, Fix heap use after free when vulkan_frames_init failed. (CVE-2024-31578 bsc#1223070) ------------------------------------------------------------------- Wed Apr 10 10:21:12 UTC 2024 - Cliff Zhao <qzhao@suse.com> - Add ffmpeg-CVE-2023-49502.patch Backporting 737ede40 from upstream, Adjusts the logic to consider the chroma planes and makes the change to all three bwdif implementations. (CVE-2023-49502 bsc#1223235) ------------------------------------------------------------------- Tue Feb 6 09:45:43 UTC 2024 - Marcus Meissner <meissner@suse.com> - ffmpeg-fix-new-binutils.patch: fix build with new binutils ------------------------------------------------------------------- Wed Aug 30 00:25:10 UTC 2023 - Jonathan Kang <songchuan.kang@suse.com> - Add ffmpeg-CVE-2021-28429.patch: Fix Integer overflow vulnerability in av_timecode_make_string in libavutil/timecode.c (bsc#1214246, CVE-2021-28429). ------------------------------------------------------------------- Thu Apr 27 08:10:51 UTC 2023 - Alynx Zhou <alynx.zhou@suse.com> - Add ffmpeg-CVE-2022-48434.patch: Backport from upstream to fix use after free in libavcodec/pthread_frame.c (bsc#1209934). ------------------------------------------------------------------- Fri Jan 20 08:29:11 UTC 2023 - Alynx Zhou <alynx.zhou@suse.com> - Add ffmpeg-CVE-2022-3341.patch: Backport from upstream to fix null pointer dereference in decode_main_header() in libavformat/nutdec.c (bsc#1206778). ------------------------------------------------------------------- Wed Jan 18 03:41:33 UTC 2023 - Alynx Zhou <alynx.zhou@suse.com> - Add ffmpeg-CVE-2019-13390.patch: Backport from upstream to fix division by zero at adx_write_trailer in libavformat/rawenc.c (bsc#1140754). ------------------------------------------------------------------- Mon Dec 26 07:07:26 UTC 2022 - Alynx Zhou <alynx.zhou@suse.com> - Add ffmpeg-CVE-2022-3109.patch: Backport from upstream to fix null pointer dereference in vp3_decode_frame() (bsc#1206442). ------------------------------------------------------------------- Thu Oct 14 07:24:49 UTC 2021 - Alynx Zhou <alynx.zhou@suse.com> - Add ffmpeg-CVE-2021-38094.patch: Backport from upstream to fix integer overflow vulnerability in function filter_sobel in libavfilter/vf_convolution.c (bsc#1190735, bsc#1190734, bsc#1190733, bsc#1190724, bsc#1190731, bsc#1190732, CVE-2021-38094, CVE-2021-38093, CVE-2021-38092, CVE-2020-20898, CVE-2021-38090, CVE-2021-38091). - Add ffmpeg-CVE-2020-22037.patch: Backport from upstream to fix denial of service vulnerability exists due to a memory leak in avcodec_alloc_context3 at options.c (bsc#1186756). - Add ffmpeg-CVE-2021-3566.patch: Backport from upstream to fix exposure of sensitive information on ffmpeg version prior to 4.3 (bsc#1189166). - Add ffmpeg-CVE-2020-35965.patch: Backport from upstream to fix out-of-bounds write in decode_frame in libavcodec/exr.c (bsc#1187852). - Add ffmpeg-CVE-2020-20892.patch: Backport from upstream to fix an issue was discovered in function filter_frame in libavfilter/vf_lenscorrection.c (bsc#1190719). - Add ffmpeg-CVE-2020-20891.patch: Backport from upstream to fix buffer overflow vulnerability in function config_input in libavfilter/vf_gblur.c (bsc#1190718). - Add ffmpeg-CVE-2020-20895.patch: Backport from upstream to fix buffer overflow vulnerability in function filter_vertically_##name in libavfilter/vf_avgblur.c (bsc#1190722). - Add ffmpeg-CVE-2020-20896.patch: Backport from upstream to fix an issue was discovered in function latm_write_packet in libavformat/latmenc.c (bsc#1190723). - Add ffmpeg-CVE-2020-20899.patch: Backport from upstream to fix buffer overflow vulnerability in function config_props in libavfilter/vf_bwdif.c (bsc#1190726). - Add ffmpeg-CVE-2020-20902.patch: Backport from upstream to fix out-of-bounds read vulnerability exists in long_term_filter function in g729postfilter.c (bsc#1190729). ------------------------------------------------------------------- Mon Sep 27 01:30:10 UTC 2021 - Alynx Zhou <alynx.zhou@suse.com> - Add ffmpeg-CVE-2020-22042.patch: Backport from upstream to fix denial of service vulnerability exists due to a memory leak is affected by: memory leak in the link_filter_inouts function in libavfilter/graphparser.c (bsc#1186761). ------------------------------------------------------------------- Wed Sep 1 05:42:35 UTC 2021 - Alynx Zhou <alynx.zhou@suse.com> - Add ffmpeg-CVE-2021-38171.patch: Backport from upstream to fix adts_decode_extradata in libavformat/adtsenc.c in FFmpeg 4.4 does not check the init_get_bits return value (bsc#1189724). ------------------------------------------------------------------- Thu Aug 12 02:31:23 UTC 2021 - Alynx Zhou <alynx.zhou@suse.com> - Add ffmpeg-CVE-2020-21688.patch: Backport from upstream to fix a heap-use-after-free in the av_freep function in libavutil/mem.c of FFmpeg 4.2 allows attackers to execute arbitrary code (bsc#1189348). - Add ffmpeg-CVE-2020-21697.patch: Backport from upstream to fix a heap-use-after-free in the mpeg_mux_write_packet function in libavformat/mpegenc.c of FFmpeg 4.2 allows to cause a denial of service (DOS) via a crafted avi file (bsc#1189350). - Add ffmpeg-CVE-2021-38114.patch: Backport from upstream to fix the return value of the init_vlc function is not checked (bsc#1189142). ------------------------------------------------------------------- Wed Jul 7 01:56:18 UTC 2021 - Alynx Zhou <alynx.zhou@suse.com> - Add ffmpeg-CVE-2019-9721.patch: Backport from upstream to fix denial of service in the subtitle decoder in handle_open_brace from libavcodec/htmlsubtitles.c (bsc#1129714). - Add ffmpeg-CVE-2020-22046.patch: Backport from upstream to fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the avpriv_float_dsp_allocl function in libavutil/float_dsp.c (bsc#1186849). - Add ffmpeg-CVE-2020-22048.patch: Backport from upstream to fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the ff_frame_pool_get function in framepool.c (bsc#1186859). - Add ffmpeg-CVE-2020-22049.patch: Backport from upstream to fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the wtvfile_open_sector function in wtvdec.c (bsc#1186861). - Add ffmpeg-CVE-2020-22054.patch: Backport from upstream to fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the av_dict_set function in dict.c (bsc#1186863). ------------------------------------------------------------------- Fri Jun 25 07:32:55 UTC 2021 - Alynx Zhou <alynx.zhou@suse.com> - Add ffmpeg-CVE-2020-13904.patch: Backport from upstream to fix use-after-free via a crafted EXTINF duration in an m3u8 file (bsc#1172640). - Add ffmpeg-CVE-2020-21041.patch: Backport from upstream to fix buffer overflow vulnerability via apng_do_inverse_blend in libavcodec/pngenc.c (bsc#1186406). - Add ffmpeg-CVE-2019-17539.patch: Backport from upstream to fix NULL pointer dereference in avcodec_open2 in libavcodec/utils.c (bsc# 1154065). - Add ffmpeg-CVE-2020-22026.patch: Backport from upstream to fix buffer overflow vulnerability exists in config_input() at libavfilter/af_tremolo.c (bsc#1186583). - Add ffmpeg-CVE-2020-22021.patch: Backport from upstream to fix buffer overflow vulnerability in filter_edges function in libavfilter/vf_yadif.c (bsc#1186586). - Add ffmpeg-CVE-2020-22020.patch: Backport from upstream to fix buffer overflow vulnerability in build_diff_map() in libavfilter/vf_fieldmatch.c (bsc#1186587). - Add ffmpeg-CVE-2020-22015.patch: Backport from upstream to fix buffer overflow vulnerability in mov_write_video_tag() due to the out of bounds in libavformat/movenc.c (bsc#1186596). - Add ffmpeg-CVE-2020-22016.patch: Backport from upstream to fix a heap-based Buffer Overflow vulnerability at libavcodec/get_bits.h when writing .mov files (bsc#1186598). - Add ffmpeg-CVE-2020-22017.patch: Backport from upstream to fix a heap-based Buffer Overflow vulnerability exists in ff_fill_rectangle() in libavfilter/drawutils.c (bsc#1186600). - Add ffmpeg-CVE-2020-22022.patch: Backport from upstream to fix a heap-based Buffer Overflow vulnerability exists in filter_frame at libavfilter/vf_fieldorder.c (bsc#1186603, bsc#1190728, CVE-2020-22022, CVE-2020-20901). - Add ffmpeg-CVE-2020-22023.patch: Backport from upstream to fix a heap-based Buffer Overflow vulnerability exists in filter_frame at libavfilter/vf_bitplanenoise.c (bsc#1186604) - Add ffmpeg-CVE-2020-22025.patch: Backport from upstream to fix a heap-based Buffer Overflow vulnerability exists in gaussian_blur at libavfilter/vf_edgedetect.c (bsc#1186605, bsc#1190721, CVE-2020-22025, CVE-2020-20894). - Add ffmpeg-CVE-2020-22031.patch: Backport from upstream to fix a heap-based Buffer Overflow vulnerability exists at libavfilter/vf_w3fdif.c in filter16_complex_low() (bsc#1186613). - Add ffmpeg-CVE-2020-22032.patch: Backport from upstream to fix a heap-based Buffer Overflow vulnerability exists at libavfilter/vf_edgedetect.c in gaussian_blur() (bsc#1186614, bsc#1190727, CVE-2020-22032, CVE-2020-20900). - Add ffmpeg-CVE-2020-22033.patch: Backport from upstream to fix a heap-based Buffer Overflow Vulnerability exists at libavfilter/vf_vmafmotion.c in convolution_y_8bit() (CVE-2020-22033) and buffer overflow vulnerability in convolution_y_10bit() in libavfilter/vf_vmafmotion.c (CVE-2020-22019) (bsc#1186615, bsc#1186597). - Add ffmpeg-CVE-2020-22034.patch: Backport from upstream to fix a heap-based Buffer Overflow vulnerability exists at libavfilter/vf_floodfill.c (bsc#1186616). - Add ffmpeg-CVE-2020-20451.patch: Backport from upstream to fix denial of service issue due to resource management errors via fftools/cmdutils.c (bsc#1186658). - Add ffmpeg-CVE-2020-20448.patch: Backport from upstream to fix divide by zero issue via libavcodec/ratecontrol.c (bsc#1186660). - Add ffmpeg-CVE-2020-22038.patch: Backport from upstream to fix denial of service vulnerability exists due to a memory leak in the ff_v4l2_m2m_create_context function in v4l2_m2m.c (bsc#1186757). - Add ffmpeg-CVE-2020-22039.patch: Backport from upstream to fix denial of service vulnerability exists due to a memory leak in the inavi_add_ientry function (bsc#1186758). - Add ffmpeg-CVE-2020-22043.patch: Backport from upstream to fix denial of service vulnerability exists due to a memory leak at the fifo_alloc_common function in libavutil/fifo.c (bsc#1186762). - Add ffmpeg-CVE-2020-22044.patch: Backport from upstream to fix denial of service vulnerability exists due to a memory leak in the url_open_dyn_buf_internal function in libavformat/aviobuf.c (bsc#1186763). ------------------------------------------------------------------- Tue Nov 19 11:06:31 UTC 2019 - Cliff Zhao <qzhao@suse.com> - Add ffmpeg-CVE-2019-17542.patch: Backport from upstream to fix a heap-based buffer overflow problem in vqa_decode_chunk (bnc#1154064 CVE-2019-17542). ------------------------------------------------------------------- Mon Jul 8 02:09:11 UTC 2019 - Cliff Zhao <qzhao@suse.com> - Add ffmpeg-CVE-2018-13301.patch: Backport from upstream to fix a NULL pointer dereference while converting a crafted AVI file to MPEG4 in the ff_mpeg4_decode_picture_header function in libavcodec/mpeg4videodec.c(bnc#1100352). ------------------------------------------------------------------- Wed Jun 12 02:47:40 UTC 2019 - Qiang Zheng <qzheng@suse.com> - Add ffmpeg-CVE-2019-9718.patch: Make backport from commit 1f00c97 to fix a denial of service issue (CVE-2019-9718, boo#1129715). ------------------------------------------------------------------- Mon Jun 10 03:17:17 UTC 2019 - Qiang Zheng <qzheng@suse.com> - Add ffmpeg-CVE-2019-12730.patch: Make backport from commit ed188f6 to check for scanf() failure (CVE-2019-12730, bsc#1137526). ------------------------------------------------------------------- Thu Nov 15 06:43:25 UTC 2018 - qzheng@suse.com - Add ffmpeg-CVE-2018-14394.patch: Make backport from commit 3a2d21b to fix a divide-by-zero issue (CVE-2018-14394, boo#1101888). ------------------------------------------------------------------- Thu Nov 15 01:40:17 UTC 2018 - qzheng@suse.com - Add ffmpeg-CVE-2018-14395.patch: Make backport from commit fa19fbc to fix a divide-by-zero issue (CVE-2018-14395, boo#1101889). ------------------------------------------------------------------- Tue Oct 23 05:53:16 UTC 2018 - qzheng@suse.com - Add ffmpeg-CVE-2018-13305.patch to add a missing check for negative values of the mqaunt variable (CVE-2018-13305, bsc#1100345). - Rename cve-2017-17555.diff to ffmpeg-CVE-2017-17555.diff. ------------------------------------------------------------------- Tue Oct 23 01:58:26 UTC 2018 - qzheng@suse.com - Add ffmpeg-CVE-2018-12458.patch: Make backport from commit e1182fa to fix an improper integer type (CVE-2018-12458, bsc#1097983). ------------------------------------------------------------------- Mon Sep 17 23:57:29 UTC 2018 - qzheng@suse.com - Add ffmpeg-CVE-2018-13300.patch: Make backport from commit 95556e2 to fix an out-of-array read (CVE-2018-13300, boo#1100348). ------------------------------------------------------------------- Fri Sep 14 06:49:08 UTC 2018 - qzheng@suse.com - Add ffmpeg-CVE-2018-15822.patch: Make backport from commit 6b67d7f to fix an assertion failure (CVE-2018-15822, boo#1105869). ------------------------------------------------------------------- Fri Jul 27 13:14:22 UTC 2018 - kbabioch@suse.com - Added ffmpeg-CVE-2018-1999010.patch: Fixed multiple out of array access vulnerabilities in the mms protocol that could result in accessing out of bound data via specially crafted input files (CVE-2018-1999010 bnc#1102899). - Added ffmpeg-CVE-2018-1999011.patch: Fixed a heap buffer overflow in asf_o format demuxer that could result in remote code execution (CVE-2018-1999011 bnc#1102689) - Added ffmpeg-CVE-2018-1999012.patch: Fix an inifnite loop vulnerability in pva format demuxer that can result in excessive amount of ressource allocation like CPU an RAM (CVE-2018-1999012 bnc#1102688). - Added ffmpeg-CVE-2018-1999013.patch: Fix an use-after-free vulnerability in the realmedia demuxer that can result in vulnerability, which allowed attackers to read heap memory (CVE-2018-1999013, bnc#1102687). ------------------------------------------------------------------- Fri Jul 20 09:31:17 UTC 2018 - qzheng@suse.com - Add ffmpeg-CVE-2018-13302.patch: Make backport from commit ed22dc2 to fix out of array access issue (bnc#1100356, CVE-2018-13302). ------------------------------------------------------------------- Fri Mar 23 10:54:48 UTC 2018 - alarrosa@suse.com - Create a new package ffmpeg-private-devel which contains some headers under /usr/include/ffmpeg/private that were not installed by upstream. Those headers are needed by the libav package in order to build avconv and other tools using the libav* libraries generated by ffmpeg instead of its own. No other package should require ffmpeg-private-devel. ------------------------------------------------------------------- Wed Mar 21 16:04:32 UTC 2018 - alarrosa@suse.com - Build and install also the sidxindex tool ------------------------------------------------------------------- Tue Feb 20 21:27:19 UTC 2018 - bjorn.lie@gmail.com - Enable mpeg1video and mpeg2video in enable_decoders, and remove it from disable-decoders call given to configure, mpeg2 now available in openSUSE. ------------------------------------------------------------------- Tue Feb 13 14:39:31 UTC 2018 - nico.kruber@gmail.com - enable video stabilization/deshaking via libvidstab (optional) ------------------------------------------------------------------- Mon Feb 12 11:55:47 UTC 2018 - jengelh@inai.de - Update to new bugfix release 3.4.2 * Fix integer overflows, multiplication overflows, undefined shifts, and verify buffer lengths. * avfilter/vf_transpose: Fix used plane count [boo#1078488, CVE-2018-6392] * avcodec/utvideodec: Fix bytes left check in decode_frame() [boo#1079368, CVE-2018-6621] - Enable use of libzvbi for displaying teletext subtitles. - Fixed a DoS in swri_audio_convert(), added cve-2017-17555.diff [boo#1072366, CVE-2017-17555]. ------------------------------------------------------------------- Mon Dec 11 11:24:03 UTC 2017 - jengelh@inai.de - Update to new bugfix release 3.4.1 * Fixed integer overflows, division by zero, illegal bit shifts * Fixed the gmc_mmx function which failed to validate width and height [boo#1070762, CVE-2017-17081] * Fixed out-of-bounds in VC-2 encoder [boo#1069407, CVE-2017-16840] * ffplay: use SDL2 audio API - Removed 0001-avcodec-x86-mpegvideodsp-Fix-signedness-bug-in-need_.patch (upstreamed). ------------------------------------------------------------------- Fri Dec 1 10:55:08 UTC 2017 - jengelh@inai.de - Add 0001-avcodec-x86-mpegvideodsp-Fix-signedness-bug-in-need_.patch [boo#1070762] ------------------------------------------------------------------- Thu Nov 30 07:07:49 UTC 2017 - jslaby@suse.com - install also doc/ffserver.conf ------------------------------------------------------------------- Tue Oct 31 17:35:25 UTC 2017 - jengelh@inai.de - Get rid of ffmpeg-pkgconfig-version.patch. ------------------------------------------------------------------- Mon Oct 16 11:16:16 UTC 2017 - jengelh@inai.de - Update to new upstream release 3.4 * New video filters: deflicker, doublewave, lumakey, pixscope, oscilloscope, robterts, limiter, libvmaf, unpremultiply, tlut2, floodifll, pseudocolor, despill, convolve, vmafmotion. * New audio filters: afir, crossfeed, surround, headphone, superequalizer, haas. * Some video filters with several inputs now use a common set of options: blend, libvmaf, lut3d, overlay, psnr, ssim. They must always be used by name. * librsvg support for svg rasterization * spec-compliant VP9 muxing support in MP4 * Remove the libnut and libschroedinger muxer/demuxer wrappers * drop deprecated qtkit input device (use avfoundation instead) * SUP/PGS subtitle muxer * VP9 tile threading support * KMS screen grabber * CUDA thumbnail filter * V4L2 mem2mem HW assisted codecs * Rockchip MPP hardware decoding * (Not in openSUSE builds, only original ones:) * Gremlin Digital Video demuxer and decoder * Additional frame format support for Interplay MVE movies * Dolby E decoder and SMPTE 337M demuxer * raw G.726 muxer and demuxer, left- and right-justified * NewTek NDI input/output device * FITS demuxer, muxer, decoder and encoder - Fixed a double free in huffyuv [boo#1064577, CVE-2017-15186] - Fixed an out-of-bounds in ffv1dec [boo#1066428, CVE-2017-15672] - Fixed a denial of service in rtmppkt [boo#1082335, CVE-2017-11665] ------------------------------------------------------------------- Tue Sep 12 10:57:37 UTC 2017 - jengelh@inai.de - Update to new upstream release 3.3.4. * avutil/pixdesc: fixed NULL deref in av_color_primaries_name [CVE-2017-14225] [boo#1058018] * avformat/asfdec: Fix DoS in asf_build_simple_index [CVE-2017-14223] [boo#1058019] * avformat/mov: Fix DoS in read_tfra [CVE-2017-14222] [boo#1058020]. - Dropped integrated patches: D 0001-avformat-hls-Fix-DoS-due-to-infinite-loop.patch D 0001-avformat-nsvdec-Fix-DoS-due-to-lack-of-eof-check-in-.patch D 0002-avformat-asfdec-Fix-DoS-due-to-lack-of-eof-check.patch D 0002-avformat-mxfdec-Fix-DoS-issues-in-mxf_read_index_ent.patch D 0003-avformat-cinedec-Fix-DoS-due-to-lack-of-eof-check.patch D 0003-avformat-mxfdec-Fix-Sign-error-in-mxf_read_primer_pa.patch D 0004-avformat-rmdec-Fix-DoS-due-to-lack-of-eof-check.patch D 0005-avformat-rl2-Fix-DoS-due-to-lack-of-eof-check.patch D 0006-avformat-mvdec-Fix-DoS-due-to-lack-of-eof-check.patch ------------------------------------------------------------------- Thu Sep 7 08:33:20 UTC 2017 - jengelh@inai.de - Add 0001-avformat-nsvdec-Fix-DoS-due-to-lack-of-eof-check-in-.patch [CVE-2017-14171] [boo#1057539], 0002-avformat-mxfdec-Fix-DoS-issues-in-mxf_read_index_ent.patch [CVE-2017-14170] [boo#1057537], 0003-avformat-mxfdec-Fix-Sign-error-in-mxf_read_primer_pa.patch [CVE-2017-14169] [boo#1057536] ------------------------------------------------------------------- Mon Sep 4 20:19:07 UTC 2017 - jengelh@inai.de - Add 0001-avformat-hls-Fix-DoS-due-to-infinite-loop.patch [CVE-2017-14058] [boo#1056762], 0002-avformat-asfdec-Fix-DoS-due-to-lack-of-eof-check.patch [CVE-2017-14057] [boo#1056761], 0003-avformat-cinedec-Fix-DoS-due-to-lack-of-eof-check.patch [CVE-2017-14059] [boo#1056763], 0004-avformat-rmdec-Fix-DoS-due-to-lack-of-eof-check.patch [CVE-2017-14054] [boo#1056765], 0005-avformat-rl2-Fix-DoS-due-to-lack-of-eof-check.patch (code not enabled in openSUSE, though in packman) [CVE-2017-14056] [boo#1056760], 0006-avformat-mvdec-Fix-DoS-due-to-lack-of-eof-check.patch [CVE-2017-14055] [boo#1056766] ------------------------------------------------------------------- Sat Aug 26 14:56:44 UTC 2017 - jengelh@inai.de - Unconditionalize celt, ass, openjpeg, webp, netcdf, libva, vdpau. ------------------------------------------------------------------- Fri Aug 25 06:34:58 UTC 2017 - olaf@aepfle.de - Build unconditionally with lame and twolame ------------------------------------------------------------------- Sun Jul 30 23:07:52 UTC 2017 - jengelh@inai.de - Update to maintenance release 3.3.3 * Various fixes for integer overflows, too-large bit shifts and buffer length checks. - Drop 0001-avcodec-apedec-Fix-integer-overflow.patch (included upstream) ------------------------------------------------------------------- Tue Jul 18 08:47:03 UTC 2017 - jengelh@inai.de - Add 0001-avcodec-apedec-Fix-integer-overflow.patch to address CVE-2017-11399 [boo#1049095] ------------------------------------------------------------------- Fri Jun 23 12:14:07 UTC 2017 - davejplater@gmail.com - Enabled cuda and cuvid for unrestricted build. - Fixed typos in devel package descriptions. ------------------------------------------------------------------- Wed Jun 7 10:48:54 UTC 2017 - jengelh@inai.de - Update to new upstream release 3.3.2 * Various fixes for integer overflows and too-large bit shifts ------------------------------------------------------------------- Wed May 31 11:41:10 UTC 2017 - davejplater@gmail.com - Disable cuda support to fix boo#1041794: ffmpeg 3.3. enablement of cuda prevents H264/avc1.4d400d videos from playing on Youtube - Refreshed patches: ffmpeg-codec-choice.diff ffmpeg-libcdio_cdda-pkgconfig.patch ffmpeg-pkgconfig-version.patch and ffmpeg-new-coder-errors.diff ------------------------------------------------------------------- Wed May 31 00:18:31 UTC 2017 - jengelh@inai.de - Add additional checks to ensure MPEG is off ------------------------------------------------------------------- Fri May 19 17:57:00 UTC 2017 - jengelh@inai.de - Update to new upstream release 3.3.1 * Fix uninitialized variables, signed integer overflow, excess shift operations. Add boundary checks. ------------------------------------------------------------------- Tue Apr 18 13:43:51 UTC 2017 - jengelh@inai.de - Enable ac3 per request from idonmez ------------------------------------------------------------------- Fri Apr 14 14:02:24 UTC 2017 - jengelh@inai.de - Update to new upstream release 3.3 * EBU R128 implementation now within ffmpeg, not relying on external library anymore * New video filters "premultiply", "readeia608", "threshold", "midequalizer" * Support for spherical videos * New decoders: 16.8 and 24.0 floating point PCM, XPM * New demuxers: MIDI Sample Dump Standard, Sample Dump eXchange demuxer * MJPEG encoding uses Optimal Huffman tables now * Native Opus encoder * Support .mov with multiple sample description tables * Removed the legacy X11 screen grabber, use XCB instead * Removed asyncts filter (use af_aresample instead) * resolved CVE-2016-10190 [boo#1022920], CVE-2016-10191 [boo#1022921], CVE-2016-10192 [boo#1022922], CVE-2017-7859 [boo#1034183], CVE-2017-7862 [boo#1034181], CVE-2017-7863 [boo#1034179], CVE-2017-7865 [boo#1034177], CVE-2017-7866 [boo#1034176] ------------------------------------------------------------------- Thu Apr 13 13:33:35 UTC 2017 - idonmez@suse.com - Enable mp3 decoding ------------------------------------------------------------------- Sat Feb 18 14:22:15 UTC 2017 - dimstar@opensuse.org - Have libavcodec57 additionally provide libavcodec57(unrestricted) when building unrestricted: allow third party packages to require the unrestricted codec. The existing -full provides is not suitable as it can be provided by multiple libavcodec* packages, whereas we require a specific ABI version. ------------------------------------------------------------------- Sat Feb 11 11:31:55 UTC 2017 - jengelh@inai.de - Update to new upstream release 3.2.4 * lavf/mov.c: Avoid heap allocation wrap in mov_read_hdlr * lavf/mov.c: Avoid OOB in mov_read_udta_string() * lavf/mov.c: Avoid heap allocation wraps in mov_read_{senc,saiz}() ------------------------------------------------------------------- Sat Feb 11 09:13:02 UTC 2017 - olaf@aepfle.de - Make sure each subpkg comes from the same src.rpm ------------------------------------------------------------------- Tue Feb 7 13:47:05 UTC 2017 - jengelh@inai.de - Update to new upstream release 3.2.3 * Maintenance release with bugfixes * ffplay: fix sws_scale possible out of bounds array access - Drop version number from patch: ffmpeg-2.4.5-arm6l.patch -> ffmpeg-arm6l.diff ------------------------------------------------------------------- Tue Jan 3 11:04:12 UTC 2017 - olaf@aepfle.de - Wrap netcdf support in build condtional because it is a drop-in pkg ------------------------------------------------------------------- Tue Dec 20 12:05:52 UTC 2016 - tchvatal@suse.com - Enable all muxers and demuxers as they are just descriptor of format thus do not change the behaviour in any relevant way. * The best user now gets is proper interpretation of the format and failure to play it without proper de/encoder * Recommended by vlc team to be done this way :) ------------------------------------------------------------------- Tue Dec 6 11:52:10 UTC 2016 - jengelh@inai.de - Update to new upstream release 3.2.2 * avformat/rtmppkt: Check for packet size mismatches * avcodec/flacdec: Fix undefined shift in decode_subframe() * avcodec/flacdec: Fix signed integer overflow in decode_subframe_fixed() * avcodec/flacdsp_template: Fix undefined shift in flac_decorrelate_indep_c ------------------------------------------------------------------- Sat Nov 26 07:30:28 UTC 2016 - aloisio@gmx.com - Update to version 3.2.1: * avcodec/aac_adtstoasc_bsf: validate and forward extradata if the stream is already ASC * libopusdec: default to stereo for invalid number of channels * sbgdec: prevent NULL pointer access * rmdec: validate block alignment * smacker: limit recursion depth of smacker_decode_bigtree * mxfdec: fix NULL pointer dereference in mxf_read_packet_old * ffmdec: validate codec parameters * avformat/mpeg: Adjust vid probe threshold to correct mis-detection * avcodec/avpacket: fix leak on realloc in av_packet_add_side_data() * avformat/apngenc: use the stream parameters extradata if available * ffprobe: fix crash in case -of is specified with an empty string * exr: fix out-of-bounds read * libschroedingerdec: fix leaking of framewithpts * filmstripdec: correctly check image dimensions * icodec: fix leaking pkt on error * dvbsubdec: fix division by zero in compute_default_clut * escape124: reject codebook size 0 * mpegts: prevent division by zero * matroskadec: fix NULL pointer dereference in webm_dash_manifest_read_header * mxfdec: fix NULL pointer dereference * avcodec/mpeg4videodec: Workaround interlaced mpeg4 edge MC bug * avcodec/mpegvideo: Fix edge emu buffer overlap with interlaced mpeg4 * avcodec/ituh263dec: Avoid spending a long time in slice sync * avcodec: Check side data size before use * avformat/flvdec: Fix regression losing streams ------------------------------------------------------------------- Fri Oct 28 22:50:18 UTC 2016 - jengelh@inai.de - Update to new upstream release 3.2 * SDL2 output device and ffplay support * SDL1 output device and SDL1 support removed * New: libopenmpt demuxer, fifo muxer, True Audio (TTA) muxer * New filters: weave, gblur, avgblur, sobel, prewitt, vaguedenoiser, yuvtestsrc, lut2, hysteresis, maskedclamp, crystalizer, acrusher, bitplanenoise, sidedata, asidedata * Non-Local Means (nlmeans) denoising filter * 16-bit support in curves filter and selectivecolor filter * Added threads option per filter instance * The "curves" filter does not automatically insert points at x=0 and x=1 anymore * Matroska muxer now writes CRC32 elements by default in all Level 1 elements * New "tee" protocol * VP8 in Ogg muxing * Floating point support in ALS decoder * Extended mov edit list support * Changed mapping of RTP MIME type G726 to codec g726le. - Drop ffmpeg-fix-CONFIG_VC1DSP-changes.patch (no longer needed) ------------------------------------------------------------------- Fri Oct 28 17:58:28 UTC 2016 - olaf@aepfle.de - Enable libfdk_aac if it is available at buildtime ------------------------------------------------------------------- Sat Oct 22 07:46:27 UTC 2016 - aloisio@gmx.com - Update to version 3.1.5 * avformat/mxfdec: Check size to avoid integer overflow in mxf_read_utf16_string() * avcodec/mpegvideo_enc: Clear mmx state in ff_mpv_reallocate_putbitbuffer() * avcodec/utils: Clear MMX state before returning from avcodec_default_execute*() * libopenjpegenc: fix out-of-bounds reads when filling the edges * libopenjpegenc: stop reusing image data buffer for openjpeg 2 * avformat/utils: Update codec_id before using it in the parser init * ffmpeg: remove unused and errorneous AVFrame timestamp check * Support for MIPS cpu P6600 * avutil/mips/generic_macros_msa: rename macro variable which causes segfault for mips r6 ------------------------------------------------------------------- Sat Oct 1 11:00:20 UTC 2016 - aloisio@gmx.com - Update to version 3.1.4 * avformat/avidec: Check nb_streams in read_gab2_sub() * avformat/avidec: Remove ancient assert * avfilter/vf_colorspace: fix range for output colorspace option * lavc/mediacodecdec_h264: fix SODB escaping * avcodec/nvenc: fix const options for hevc gpu setting * avformat/avidec: Fix memleak with dv in avi * lavc/movtextdec.c: Avoid infinite loop on invalid data. * avcodec/ansi: Check dimensions * avcodec/cavsdsp: use av_clip_uint8() for idct * avformat/movenc: Check packet in mov_write_single_packet() too * avformat/movenc: Factor check_pkt() out * avformat/utils: fix timebase error in avformat_seek_file() * avcodec/g726: Add missing ADDB output mask * avcodec/avpacket: clear side_data_elems * avformat/movenc: Check first DTS similar to dts difference * avcodec/ccaption_dec: Use simple array instead of AVBuffer * avcodec/svq3: Reintroduce slice_type * avformat/mov: Fix potential integer overflow in mov_read_keys * swscale/swscale_unscaled: Try to fix Rgb16ToPlanarRgb16Wrapper() with slices * swscale/swscale_unscaled: Fix packed_16bpc_bswap() with slices * avformat/avidec: Fix infinite loop in avi_read_nikon() * lavf/utils: Avoid an overflow for huge negative durations. * avformat/hls: Fix handling of EXT-X-BYTERANGE streams over 2GB * lavc/avpacket: Fix undefined behaviour, do not pass a null pointer to memcpy(). * lavc/mjpegdec: Do not skip reading quantization tables. * cmdutils: fix implicit declaration of SetDllDirectory function ------------------------------------------------------------------- Mon Aug 29 00:36:30 UTC 2016 - stefan.bruens@rwth-aachen.de - Fix linking errors for arm and aarch64 builds, boo#995937 * Add ffmpeg-fix-CONFIG_VC1DSP-changes.patch ------------------------------------------------------------------- Sat Aug 27 06:18:31 UTC 2016 - aloisio@gmx.com - Update to version 3.1.3 * examples/demuxing_decoding: convert to codecpar * avcodec/exr: Check tile positions * avcodec/aacenc: Tighter input checks * avformat/wtvdec: Check pointer before use * libavcodec/wmalosslessdec: Check the remaining bits * avcodec/adpcm: Fix adpcm_ima_wav padding * avcodec/svq3: fix slice size check * avcodec/diracdec: Check numx/y * avcodec/h2645_parse: fix nal size * avcodec/h2645_parse: Use get_nalsize() in ff_h2645_packet_split() * h2645_parse: only read avc length code at the correct position * h2645_parse: don't overread AnnexB NALs within an avc stream * avcodec/h264_parser: Factor get_avc_nalsize() out * avcodec/cfhd: Increase minimum band dimension to 3 * avcodec/indeo2: check ctab * avformat/swfdec: Fix inflate() error code check * avcodec/rawdec: Fix bits_per_coded_sample checks * vcodec/h2645_parse: Clear buffer padding * avcodec/h2645: Fix NAL unit padding * avfilter/drawutils: Fix single plane with alpha * cmdutils: check for SetDllDirectory() availability ------------------------------------------------------------------- Tue Aug 9 07:34:10 UTC 2016 - aloisio@gmx.com - Update to version 3.1.2: * avcodec/rawdec: Fix palette handling with changing palettes * avcodec/raw: Fix decoding of ilacetest.mov * avformat/mov: Enable mp3 parsing if a packet needs it * avformat/hls: Sync starting segment across variants on live streams * avformat/hls: Fix regression with ranged media segments * avcodec/ffv1enc: Fix assertion failure with non zero bits per sample * avfilter/af_hdcd: small fix in af_hdcd.c where gain was not being adjusted for "attenuate slowly" * avformat/oggdec: Fix integer overflow with invalid pts * libavcodec/dnxhd: Enable 12-bit DNxHR support. * lavc/vaapi_encode_h26x: Fix a crash if "." is not the decimal separator. * avcodec/vp9_parser: Check the input frame sizes for being consistent * avformat/flvdec: parse keyframe before a/v stream was created add_keyframes_index() when stream created or keyframe parsed * libavformat/rtpdec_asf: zero initialize the AVIOContext struct * libx264: Increase x264 opts character limit to 4096 * avcodec/h264_parser: Set sps/pps_ref * librtmp: Avoid an infinite loop setting connection arguments * avformat/oggparsevp8: fix pts calculation on pages ending with an invisible frame * lavf/vplayerdec: Improve auto-detection. * lavc/mediacodecdec_h264: properly convert extradata to annex-b ------------------------------------------------------------------- Fri Jul 29 09:25:52 UTC 2016 - jengelh@inai.de - Build with netcdf so as to enable af_sofalizer [boo#983398] ------------------------------------------------------------------- Fri Jul 1 06:17:49 UTC 2016 - aloisio@gmx.com - Update to version 3.1.1 * doc/APIchanges: document the lavu/lavf field moves * avformat/avformat: Move new field to the end of AVStream * avformat/utils: update deprecated AVStream->codec when the context is updated * avutil/frame: Move new field to the end of AVFrame * libavcodec/exr : fix decoding piz float file. * avformat/mov: Check sample size * lavfi: Move new field to the end of AVFilterContext * lavfi: Move new field to the end of AVFilterLink * ffplay: Fix usage of private lavfi API * lavc/mediacodecdec_h264: add missing NAL headers to SPS/PPS buffers * lavc/pnm_parser: disable parsing for text based PNMs ------------------------------------------------------------------- Mon Jun 27 06:20:03 UTC 2016 - aloisio@gmx.com - Update to version 3.1 * DXVA2-accelerated HEVC Main10 decoding * fieldhint filter * loop video filter and aloop audio filter * Bob Weaver deinterlacing filter * firequalizer filter * datascope filter * bench and abench filters * ciescope filter * protocol blacklisting API * MediaCodec H264 decoding * VC-2 HQ RTP payload format (draft v1) depacketizer and packetizer * VP9 RTP payload format (draft v2) packetizer * AudioToolbox audio decoders * AudioToolbox audio encoders * coreimage filter (GPU based image filtering on OSX) * libdcadec removed * bitstream filter for extracting DTS core * ADPCM IMA DAT4 decoder * musx demuxer * aix demuxer * remap filter * hash and framehash muxers * colorspace filter * hdcd filter * readvitc filter * VAAPI-accelerated format conversion and scaling * libnpp/CUDA-accelerated format conversion and scaling * Duck TrueMotion 2.0 Real Time decoder * Wideband Single-bit Data (WSD) demuxer * VAAPI-accelerated H.264/HEVC/MJPEG encoding * DTS Express (LBR) decoder * Generic OpenMAX IL encoder with support for Raspberry Pi * IFF ANIM demuxer & decoder * Direct Stream Transfer (DST) decoder * loudnorm filter * MTAF demuxer and decoder * MagicYUV decoder * OpenExr improvements (tile data and B44/B44A support) * BitJazz SheerVideo decoder * CUDA CUVID H264/HEVC decoder * 10-bit depth support in native utvideo decoder * libutvideo wrapper removed * YUY2 Lossless Codec decoder - Added minimum requirement for libva (0.35.0, matched by 1.3.0 package) ------------------------------------------------------------------- Tue May 31 08:31:36 UTC 2016 - robert.munteanu@gmail.com - Guard usage of opencore using bcond_with, boo#980542 ------------------------------------------------------------------- Thu Apr 28 06:29:57 UTC 2016 - aloisio@gmx.com - Update to version 3.0.2 * avcodec/ttaenc: Reallocate packet if its too small * configure: build fix for P5600 with mips code restructuring * mips: add support for R6 * pgssubdec: fix subpicture output colorspace and range * avcodec/ac3dec: Reset SPX when switching from EAC3 to AC3 * avfilter/vf_drawtext: Check return code of load_glyph() * avformat/mux: Check that deinit is set before calling it * avcodec/takdec: add code that got somehow lost in process of REing * avcodec/apedec: fix decoding of stereo files with one channel full of silence * avcodec/avpacket: Fix off by 5 error * avcodec/h264: Fix for H.264 configuration parsing * avcodec/bmp_parser: Ensure remaining_size is not too small in startcode packet crossing corner case * avcodec/pngdec: Fix alpha detection with skip_frame * Changelog: Make formating consistent * avfilter/src_movie: fix how we check for overflows with seek_point * avcodec/j2kenc: Add attribution to OpenJPEG project: - Dropped dcadec (libdca was merged upstream) ------------------------------------------------------------------- Mon Apr 25 06:39:32 UTC 2016 - jengelh@inai.de - Add ffmpeg-codec-choice.diff ------------------------------------------------------------------- Sun Apr 17 22:13:21 UTC 2016 - olaf@aepfle.de - Remove ffmpeg-devel subpackage. All users have been converted to pkgconfig Add Provides/Obsoletes to libavdevice-devel ------------------------------------------------------------------- Sun Apr 10 21:51:14 UTC 2016 - jengelh@inai.de - Add ffmpeg-new-coder-errors.diff ------------------------------------------------------------------- Wed Apr 6 18:57:05 UTC 2016 - jengelh@inai.de - Another try at organizing the codec-enable list. Enable video: AYUV, Dirac, MJPEG, rawvideo, Theora, VP8, VP9, WebP, zlib Enable audio: Celt, GSM, Opus, Speex, Vorbis Enable subtitle: ASS/SSA text, SRT text, UTF-8 plaintext ------------------------------------------------------------------- Wed Mar 30 00:47:30 UTC 2016 - jengelh@inai.de - Update to new maintenance release 3.0.1 * vc2enc: fix use of uninitialized variables in the rate control system * postproc: fix an unaligned access * lavc/hevc: Allow arbitrary garbage in bytestream as long as at least one NAL unit is found. ------------------------------------------------------------------- Tue Feb 16 16:36:09 UTC 2016 - olaf@aepfle.de - Update included pkgconfig files to require the exact version of ffmpeg pc files, instead of any later version ffmpeg-pkgconfig-version.patch ------------------------------------------------------------------- Mon Feb 15 12:57:55 UTC 2016 - idonmez@suse.com - Remove the optional vo-aacenc dependency, upstream removed it. ------------------------------------------------------------------- Mon Feb 15 11:54:46 UTC 2016 - jengelh@inai.de - Update to new upstream release 3.0 * New filters: extrastereo, ocr, alimiter, stereowiden, stereotools, rubberband, tremolo, agate, chromakey, displace, and many more. * ffplay dynamic volume control * audio high-order multiband parametric equalizer * automatic bitstream filtering ------------------------------------------------------------------- Tue Feb 2 18:24:15 UTC 2016 - aloisio@gmx.com - Update to version 2.8.6 * avcodec/jpeg2000dec: More completely check cdef * avutil/opt: check for and handle errors in av_opt_set_dict2() * avcodec/flacenc: fix calculation of bits required in case of custom sample rate * avformat: Document urls a bit * avformat/libquvi: Set default demuxer and protocol limitations * avformat/concat: Check protocol prefix * doc/demuxers: Document enable_drefs and use_absolute_path * avcodec/mjpegdec: Check for end for both bytes in unescaping * avcodec/mpegvideo_enc: Check for integer overflow in ff_mpv_reallocate_putbitbuffer() * avformat/avformat: Replace some references to filenames by urls * avcodec/wmaenc: Check ff_wma_init() for failure * avcodec/mpeg12enc: Move high resolution thread check to before initializing threads * avformat/img2dec: Use AVOpenCallback * avformat/avio: Limit url option parsing to the documented cases * avformat/img2dec: do not interpret the filename by default if a IO context has been opened * avcodec/ass_split: Fix null pointer dereference in ff_ass_style_get() * mov: Add an option to toggle dref opening * avcodec/gif: Fix lzw buffer size * avcodec/put_bits: Assert buf_ptr in flush_put_bits() * avcodec/tiff: Check subsample & rps values more completely * swscale/swscale: Add some sanity checks for srcSlice* parameters * swscale/x86/rgb2rgb_template: Fix planar2x() for short width * swscale/swscale_unscaled: Fix odd height inputs for bayer_to_yv12_wrapper() * swscale/swscale_unscaled: Fix odd height inputs for bayer_to_rgb24_wrapper() * avcodec/aacenc: Check both channels for finiteness * asfdec_o: check for too small size in asf_read_unknown * asfdec_o: break if EOF is reached after asf_read_packet_header * asfdec_o: make sure packet_size is non-zero before seeking * asfdec_o: prevent overflow causing seekback * asfdec_o: check avio_skip in asf_read_simple_index * asfdec_o: reject size > INT64_MAX in asf_read_unknown * asfdec_o: only set asf_pkt->data_size after sanity checks * Merge commit '8375dc1dd101d51baa430f34c0bcadfa37873896' * dca: fix misaligned access in avpriv_dca_convert_bitstream * brstm: fix missing closing brace * brstm: also allocate b->table in read_packet * brstm: make sure an ADPC chunk was read for adpcm_thp * vorbisdec: reject rangebits 0 with non-0 partitions * vorbisdec: reject channel mapping with less than two channels * ffmdec: reset packet_end in case of failure * avformat/ipmovie: put video decoding_map_size into packet and use it in decoder * avformat/brstm: fix overflow ------------------------------------------------------------------- Sun Jan 17 09:45:29 UTC 2016 - idonmez@suse.com - Update to version 2.8.5 * Fixes CVE-2016-1897 and CVE-2016-1898 [boo#961937] ------------------------------------------------------------------- Mon Dec 28 13:51:18 UTC 2015 - idonmez@suse.com - Update to version 2.8.4 * Many bugfixes, see the included Changelog for all the changes. * resolving CVE-2015-8661 [boo#960385], CVE-2015-8662 [boo#960384], CVE-2015-8663 [boo#960383] - Drop ffmpeg-remove_some_unused_ctrl_id_mappings.patch, fixed upstream. ------------------------------------------------------------------- Tue Dec 22 09:14:58 UTC 2015 - olaf@aepfle.de - Obsolete ffmpeg-tools from packman ------------------------------------------------------------------- Mon Dec 21 12:37:05 UTC 2015 - jengelh@inai.de - Add some provides to make it easier for firefox to recommend this package for installation ------------------------------------------------------------------- Sat Dec 19 13:05:31 UTC 2015 - joerg.lorenzen@ki.tng.de - Added patch ffmpeg-remove_some_unused_ctrl_id_mappings.patch to successfully build against libvpx >= 1.5 (at least on PMBS). ------------------------------------------------------------------- Thu Dec 17 07:04:14 UTC 2015 - olaf@aepfle.de - Add buildconditionals for libass,libva,vdpau to fix build in SLE_11 ------------------------------------------------------------------- Mon Dec 14 11:05:46 UTC 2015 - olaf@aepfle.de - Rename bcond dca to dcadec - Add more buildconditionals to get closer to removal of BUILD_ORIG ------------------------------------------------------------------- Wed Dec 9 13:23:44 UTC 2015 - olaf@aepfle.de - Remove unused imlib2 ------------------------------------------------------------------- Mon Dec 7 12:18:36 UTC 2015 - idonmez@suse.com - Sync with packman changes * All packman specific changes are protected with BUILD_ORIG - Added the following patches * ffmpeg-2.4.5-arm6l.patch * ffmpeg-libcdio_cdda-pkgconfig.patch ------------------------------------------------------------------- Sun Nov 29 11:24:54 UTC 2015 - jengelh@inai.de - Update to new upstream maintenance release 2.8.3 * avformat/matroskadec: Check subtitle stream before dereferencing * avcodec/jpeg2000dec: Fix potential integer overflow with tile dimensions * avcodec/jpeg2000dec: Check for duplicate SIZ marker * avcodec/jpeg2000: Change coord to 32bit to support larger than 32k width or height * avcodec/jpeg2000dec: Check SIZ dimensions to be within the supported range * avcodec/jpeg2000: Check comp coords to be within the supported size * dds: validate compressed source buffer size * dds: validate source buffer size before copying * softfloat: assert when the argument of av_sqrt_sf is negative - Fixes CVE-2015-8363 [bnc#957114], CVE-2015-8364 [bnc#957115], CVE-2015-8365 [bnc#957116] ------------------------------------------------------------------- Sat Nov 14 06:46:13 UTC 2015 - idonmez@suse.com - Update to new upstream release 2.8.2, containing fixes for the following security issues: * CVE-2015-8216 boo#955346 * CVE-2015-8217 boo#955347 * CVE-2015-8218 boo#955348 * CVE-2015-8219 boo#955350 - Upstream changes: * various fixes in the aac_fixed decoder * various fixes in softfloat * swresample/resample: increase precision for compensation * lavf/mov: add support for sidx fragment indexes * avformat/mxfenc: Only store user comment related tags when needed * ffmpeg: Don't try and write sdp info if none of the outputs had an rtp format. * apng: use correct size for output buffer * jvdec: avoid unsigned overflow in comparison * avcodec/jpeg2000dec: Clip all tile coordinates * avcodec/microdvddec: Check for string end in 'P' case * avcodec/dirac_parser: Fix undefined memcpy() use * avformat/xmv: Discard remainder of packet on error * avformat/xmv: factor return check out of if/else * avcodec/mpeg12dec: Do not call show_bits() with invalid bits * avcodec/faxcompr: Add missing runs check in decode_uncompressed() * libavutil/channel_layout: Check strtol*() for failure * avformat/mpegts: Only start probing data streams within probe_packets * avcodec/hevc_ps: Check chroma_format_idc * avcodec/ffv1dec: Check for 0 quant tables * avcodec/mjpegdec: Reinitialize IDCT on BPP changes * avcodec/mjpegdec: Check index in ljpeg_decode_yuv_scan() before using it * avcodec/h264_slice: Disable slice threads if there are multiple access units in a packet * avformat/hls: update cookies on setcookie response * opusdec: Don't run vector_fmul_scalar on zero length arrays * avcodec/opusdec: Fix extra samples read index * avcodec/ffv1: Initialize vlc_state on allocation * avcodec/ffv1dec: update progress in case of broken pointer chains * avcodec/ffv1dec: Clear slice coordinates if they are invalid or slice header decoding fails for other reasons * rtsp: Allow $ as interleaved packet indicator before a complete response header * videodsp: don't overread edges in vfix3 emu_edge. * avformat/mp3dec: improve junk skipping heuristic * concatdec: fix file_start_time calculation regression * avcodec: loongson optimize h264dsp idct and loop filter with mmi * avcodec/jpeg2000dec: Clear properties in jpeg2000_dec_cleanup() too * avformat/hls: add support for EXT-X-MAP * avformat/hls: fix segment selection regression on track changes of live streams * configure: Require libkvazaar < 0.7. * avcodec/vp8: Do not use num_coeff_partitions in thread/buffer setup - Drop ffmpeg-mov-sidx-fragment.patch, fixed upstream. ------------------------------------------------------------------- Sat Oct 31 11:00:43 UTC 2015 - idonmez@suse.com - Update to new upstream release 2.8.1 * Minor bugfix release * Includes all changes from. Ffmpeg-mt, libav master of 2015-08-28, libav 11 as of 2015-08-28 - Add ffmpeg-mov-sidx-fragment.patch to add sidx fragment indexes. Needed for new mpv release. ------------------------------------------------------------------- Wed Sep 9 08:11:24 UTC 2015 - jengelh@inai.de - Update to new upstream release 2.8 * DirectDraw Surface image/texture decoder * Many improvements to the JPEG 2000 decoder * New video filters: colorkey, SSIM, showvolume, adrawgraph, drawgraph, removegrain, erosion, dilation, deflate, inflate, reverse, atadenoise, aphasemeter, showfreqs, vectorscope, waveform, hstack, vstack, framerate * New audio filters: Dynamic Audio Normalizer as dynaudnorm filter, areverse, random, deband, sidechaincompress, acrossfade * allyuv and allrgb video sources * Switched default encoders for webm to VP9 and Opus * Removed experimental flag from the JPEG 2000 encoder ------------------------------------------------------------------- Mon Jul 20 09:30:19 UTC 2015 - jengelh@inai.de - Update to new upstream release 2.7.2 - webp: fix infinite loop in webp_decode_frame - huffyuvdec: validate image size - avcodec/vp8: Check buffer size in vp8_decode_frame_header() - avcodec/vp8: Fix null pointer dereference in ff_vp8_decode_free() - avutil/fifo: Fix the case where func() returns less bytes than requested in av_fifo_generic_write() - bytestream2: set the reader to the end when reading more than available - oggparsedirac: check return value of init_get_bits - vp9/update_prob: prevent out of bounds table read - avcodec/pngdec: Check values before updating context in decode_fctl_chunk() - avcodec/pngdec: Copy IHDR & plte state from last thread - avcodec/pngdec: Require a IHDR chunk before fctl - avcodec/pngdec: Only allow one IHDR chunk - ffmpeg: Do not use the data/size of a bitstream filter after failure ------------------------------------------------------------------- Thu Jun 25 20:11:32 UTC 2015 - jengelh@inai.de - Enable codecs for audio: PCM, Speex, CELT, FLAC, ILBC, Opus - Enable codecs for image: BMP/PCX/TGA, TIFF, Sun/SGI/X11 raster raw Huff-compressed or uncompressed YUV - Update to new upstream release 2.7.1 * postproc: fix unaligned access * avcodec/flacenc: Fix Invalid Rice order * tls_gnutls: fix hang on disconnection * avcodec/ffv1enc: fix bps for >8bit yuv when not explicitly set * avio: fix potential crashes when combining ffio_ensure_seekback + crc * ffmpeg_opt: Check for localtime() failure * configure: Disable VSX on unspecified / generic CPUs ------------------------------------------------------------------- Thu Jun 25 17:48:19 UTC 2015 - develop7@develop7.info - Enabled 'bluray' protocol ------------------------------------------------------------------- Wed Jun 10 22:41:20 UTC 2015 - jengelh@inai.de - Update to new upstream release 2.7 * New encoders: apng (PNG with alpha) * New decoders: TDSC (a JPEG/BGR24/zlib format) * New audio filters: chorus * New video filters: cover_rect, detelecine, fftfilt, find_rect - Enable codecs: 012v, ansi, apng, bmp, exr, ffv1, ffvhuff * unpack DivX-style packed B-frames in MPEG-4 bitstream filter * WebM Live Chunk Muxer * nvenc level and tier options - Canopus HQ/HQA decoder - Automatically rotate videos based on metadata in ffmpeg - improved Quickdraw compatibility - VP9 high bit-depth and extended colorspaces decoding support - WebPAnimEncoder API when available for encoding and muxing WebP - Direct3D11-accelerated decoding - Support Secure Transport - Multipart JPEG demuxer ------------------------------------------------------------------- Sat May 23 21:33:34 UTC 2015 - robert.munteanu@gmail.com - Fix building with BUILD_ORIG ------------------------------------------------------------------- Sun May 17 16:55:42 UTC 2015 - jengelh@inai.de - Update to new upstream release 2.6.3 * avcodec/libtheoraenc: Check for av_malloc failure * ffmpeg_opt: Fix -timestamp parsing * avcodec/cavsdec: Use ff_set_dimensions() * swr: fix alignment issue caused by 8ch sse functions * avcodec/mjpegdec: fix len computation in ff_mjpeg_decode_dqt() * avformat/matroskadec: Cleanup error handling for bz2 & zlib * avformat/matroskaenc: Check ff_vorbiscomment_length in put_flac_codecpriv() * avcodec/mpeg12dec: use the correct dimensions for checking SAR * xcbgrab: Validate the capture area * xcbgrab: Do not assume the non shm image data is always available * avfilter/lavfutils: disable frame threads when decoding a single image * ffmpeg: remove incorrect network deinit * OpenCL: Avoid potential buffer overflow in cmdutils_opencl.c * libvpxenc: only set noise reduction w/vp8 * vp9: remove another optimization branch in iadst16 which causes overflows. * network: Do not leave context locked on error * vp9: remove one optimization branch in iadst16 which causes overflows. * swresample: Allow reinitialization without ever setting channel layouts/counts * imgutils: initialize palette padding bytes in av_image_alloc * id3v2: catch avio_read errors in check_tag * avi: Validate sample_size * diracdec: avoid overflow of bytes*8 in decode_lowdelay * diracdec: prevent overflow in data_unit_size check * matroskadec: use uint64_t instead of int for index_scale * pngdec: don't use AV_PIX_FMT_MONOBLACK for apng * pngdec: return correct error code from decode_frame_common * swscale/ppc/swscale_altivec.c: POWER LE support in yuv2planeX_8() delete macro GET_VF() it was wrong * matroskadec: export cover art correctly * mxfenc: don't try to write footer without header - Enable building avresample for extra API compat - Remove ffmpeg-pkgconfig-requires.diff: RPM's pkgconfigdeps.sh is scanning Requires.private too. ------------------------------------------------------------------- Mon May 11 07:28:10 UTC 2015 - dimstar@opensuse.org - Add baselibs.conf: provide -32bit libraries (used by xine-32bit). ------------------------------------------------------------------- Mon Apr 13 08:18:11 UTC 2015 - jengelh@inai.de - Update to new upstream release 2.6.2 * avformat/utils: avoid discarded streams in av_find_default_stream_index() * avutil/cpu: add missing check for mmxext to av_force_cpu_flags * avformat/http: replace cookies with updated values instead of appending forever ------------------------------------------------------------------- Thu Mar 19 17:58:35 UTC 2015 - jengelh@inai.de - Update to new upstream release 2.6.1 * Maintenance release with some bugfixes ------------------------------------------------------------------- Sun Mar 8 09:17:15 UTC 2015 - jengelh@inai.de - Update to new upstream release 2.6 * The VP9 decoder is now usable on x86(-32) and pre-SSSE3 CPUs. * 10-bit support in the SPP video filter * New video filters: "colorlevels", "tblend", "palettegen", "paletteuse". New audio filters: "dcshift". * The old libmpcodecs wrapper is finally gone * API changes: introduction of device inputs and outputs ------------------------------------------------------------------- Tue Jan 27 22:22:42 UTC 2015 - jengelh@inai.de - Update to new upstream release 2.5.3 * AVFoundation screen-grabbing support, animated WebP decoding support, and Animated PNG support. UDP-Lite support was added. ------------------------------------------------------------------- Sun Jan 4 17:32:48 UTC 2015 - jengelh@inai.de - Initial package (version 2.5.3) for build.opensuse.org
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor