ffmpeg

Author	SHA1	Message	Date
Michael Niedermayer	d8af960e7e	Merge remote-tracking branch 'qatar/release/0.8' into release/0.10 * qatar/release/0.8: lavf: fix the comparison in an overflow check Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-09-26 00:27:46 +02:00
Michael Niedermayer	c8ca385676	Merge commit 'b0ca5fef09d1b1268ea0c8f89bf53cd38aaa85e7' into release/0.10 * commit 'b0ca5fef09d1b1268ea0c8f89bf53cd38aaa85e7': dv: Add a guard to not overread the ppcm array mpegvideo: Avoid 32-bit wrapping of linesize multiplications mjpegb: Detect changing number of planes in interlaced video matroskadec: Check that .lang was allocated and set before reading it ape demuxer: check for EOF in potentially long loops lavf: avoid integer overflow when estimating bitrate pictordec: break out of both decoding loops when y drops below 0 ac3: Return proper error codes Conflicts: libavcodec/pictordec.c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-09-26 00:18:12 +02:00
Michael Niedermayer	c6a4397410	Merge commit '37e69e2dee7c5167083bb42d669f73f038111a79' into release/0.10 * commit '37e69e2dee7c5167083bb42d669f73f038111a79': ac3: Clean up the error paths ac3: Do not clash with normal AVERROR dxa: Make sure the reference frame exists h261: check the mtype index segafilm: Error out on impossible packet size ogg: Always alloc the private context in vorbis_header vc1: check mb_height validity. Conflicts: libavcodec/h261dec.c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-09-25 23:35:30 +02:00
Michael Niedermayer	210a437e10	Merge commit '54e03863691dcae73260f70108b3731b70773e7c' into release/0.10 * commit '54e03863691dcae73260f70108b3731b70773e7c': vc1: check the source buffer in vc1_mc functions bink: Bound check the quantization matrix. xl: Make sure the width is valid alsdec: Fix the clipping range dsicinav: Bound-check the source buffer when needed mov: Do not allow updating the time scale after it has been set ac3dec: Don't consume more data than the actual input packet size indeo: Reject impossible FRAMETYPE_NULL Conflicts: libavcodec/alsdec.c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-09-25 23:03:08 +02:00
Michael Niedermayer	3308b443f9	Merge commit 'e2dcb8208e8f6cffef58a85127765047f5ef8868' into release/0.10 * commit 'e2dcb8208e8f6cffef58a85127765047f5ef8868': indeo5: return proper error codes indeo4: Validate scantable dimension Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-09-25 22:55:03 +02:00
Michael Niedermayer	91ad27e8f5	Merge commit '06c52faef27e5bded4ceda7e6d1541f9fb20e84c' into release/0.10 * commit '06c52faef27e5bded4ceda7e6d1541f9fb20e84c': indeo4: Check the quantization matrix index indeo4: Do not access missing reference MV Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-09-25 22:54:14 +02:00
Anton Khirnov	9978c24abf	lavf: fix the comparison in an overflow check CC: libav-stable@libav.org Signed-off-by: Luca Barbato <lu_zero@gentoo.org> (cherry picked from commit 26f027fba1c5ab482fa2488fbe0fa36c8bb33b69) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-09-23 19:54:13 -04:00
Luca Barbato	b0ca5fef09	dv: Add a guard to not overread the ppcm array Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit 7ee191cab0dc44700f26c5784e2adeb6a779651b) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> Conflicts: libavformat/dv.c	2013-09-23 19:54:02 -04:00
Martin Storsjö	5473d23ece	mpegvideo: Avoid 32-bit wrapping of linesize multiplications This makes sure that linesize * start_y doesn't overflow, so that emulated_edge_mc can get back the original value if needed. Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org Signed-off-by: Martin Storsjö <martin@martin.st> (cherry picked from commit a711a2cb473dc95708f371a82c85c97fe789b5c2) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-09-23 19:53:02 -04:00
Michael Niedermayer	7a9af1da39	mjpegb: Detect changing number of planes in interlaced video Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org Signed-off-by: Martin Storsjö <martin@martin.st> (cherry picked from commit af11fa5409cc72fc45ca7f3527400beca10967b9) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-09-23 19:52:45 -04:00
Martin Storsjö	068c867286	matroskadec: Check that .lang was allocated and set before reading it Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org Signed-off-by: Martin Storsjö <martin@martin.st> (cherry picked from commit 5bcd3ae5b167fb74215520b01d5d810e0c8986ab) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-09-23 19:50:54 -04:00
Anton Khirnov	23f73fc241	ape demuxer: check for EOF in potentially long loops Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry-picked from commit 488b2984fece7ad0c2596826fee18e74aa904667) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-09-23 19:48:52 -04:00
Anton Khirnov	8d2a86a290	lavf: avoid integer overflow when estimating bitrate Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit df33a58e5311ee9a64a573889b883a80e981af7b) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-09-23 19:47:41 -04:00
Anton Khirnov	5773065a71	pictordec: break out of both decoding loops when y drops below 0 Otherwise picmemset can get called with negative y, resulting in an invalid write. Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit 5f7aecde02a95451e514c809f2794c1deba80695) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-09-23 19:46:49 -04:00
Luca Barbato	c225c620c6	ac3: Return proper error codes (cherry picked from commit b1f9cdc37ff5d5b391d2cd9af737ab4e5a0fc1c0) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-09-23 19:45:33 -04:00
Luca Barbato	37e69e2dee	ac3: Clean up the error paths (cherry picked from commit 818d1f1a3e89d35213af0bd5dc4a772713951882) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-09-23 19:45:22 -04:00
Luca Barbato	3dff283de1	ac3: Do not clash with normal AVERROR The parsing function return AVERROR and AAC_AC3_PARSE_ERROR values, make sure they are not misunderstood. (cherry picked from commit 6258d362b82934a2c27557e0984aed372d98091a) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-09-23 19:45:05 -04:00
Luca Barbato	86c169c5b6	dxa: Make sure the reference frame exists Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit 5ef7c84a9374681c64722a96d91741f3b990af2b) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> Conflicts: libavcodec/dxa.c	2013-09-23 19:43:07 -04:00
Luca Barbato	91355bec88	h261: check the mtype index Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit c59967fa7cc5bc2fa06b36c17d2c207240c06b3e) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> Conflicts: libavcodec/h261dec.c	2013-09-23 19:42:57 -04:00
Luca Barbato	54e0386369	vc1: check the source buffer in vc1_mc functions Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit 090cd0631140ac1a3a795d2adfac5dbf5e381aa2) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> Conflicts: libavcodec/vc1dec.c	2013-09-23 19:41:09 -04:00
Luca Barbato	896baaaad8	segafilm: Error out on impossible packet size Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit 5268bd2900effa59b51e0fede61aacde5e2f0b95) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-09-23 19:41:09 -04:00
Luca Barbato	15620c153a	ogg: Always alloc the private context in vorbis_header It is possible to have an initial broken header and then valid packets. Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit 3562684db716d11de0b0dcc52748e9cd90d68132) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-09-23 19:41:09 -04:00
Luca Barbato	75b1b13aff	vc1: check mb_height validity. Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit 43bacd5b7d3d265a77cd29d8abb131057796aecc) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-09-23 19:41:09 -04:00
Luca Barbato	9c779b5dd0	bink: Bound check the quantization matrix. Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit 9991298f2c4d9022ad56057f15d037e18d454157) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-09-23 19:41:08 -04:00
Luca Barbato	8006716f21	xl: Make sure the width is valid CC: libav-stable@libav.org Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-09-23 19:25:50 -04:00
Luca Barbato	246e0e2c99	alsdec: Fix the clipping range mcc_weightings is only 32 elements. Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit 70ecc175c7b513a153ac87d1c5d219556ca55070) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-09-23 19:22:22 -04:00
Luca Barbato	0d24adbe8d	dsicinav: Bound-check the source buffer when needed Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit dd0bfc3a6a310e3e3674ce7742672d689a9a0e93) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-09-23 19:18:39 -04:00
Martin Storsjö	a593d2e92e	mov: Do not allow updating the time scale after it has been set The time scale is set in mdhd, and later validated in the enclosing trak atom once all of its children have been parsed. A loose mdhd atom outside of a trak atom could update the time scale of the last stream without any validation. Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Cc: libav-stable@libav.org Signed-off-by: Martin Storsjö <martin@martin.st> (cherry picked from commit 31931520df35a6f9606fe8293c8a39e2d1fabedf) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-09-23 19:16:04 -04:00
Martin Storsjö	729143e2d2	ac3dec: Don't consume more data than the actual input packet size This was handled properly in the normal return case at the end of the function, but not in this special case. Returning a value larger than the input packet size can cause problems for certain library users. Returning the actual input buffer size unconditionally, since it is not guaranteed that frame_size is set to a sensible value at this point. Cc: libav-stable@libav.org Signed-off-by: Martin Storsjö <martin@martin.st> (cherry picked from commit 8f24c12be7a3b3ea105e67bba9a867fe210a2333) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-09-23 19:14:14 -04:00
Luca Barbato	36921fcdd3	indeo: Reject impossible FRAMETYPE_NULL A frame marked FRAMETYPE_NULL cannot be scalable and requires a previous frame successfully decoded. Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit 5b2a29552ca09edd4646b6aa1828b32912b7ab36) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-09-23 19:11:37 -04:00
Luca Barbato	e2dcb8208e	indeo5: return proper error codes (cherry picked from commit b0eeb9d442e4b7e82f6797d74245434ea33110a5) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-09-23 19:09:10 -04:00
Luca Barbato	609345cd5e	indeo4: Validate scantable dimension Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit cd78e934c246d1b2510f8fba0abfe40bb75795f6) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-09-23 18:54:13 -04:00
Luca Barbato	06c52faef2	indeo4: Check the quantization matrix index Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit 6255ccf7d51c82ab79bf0cd47a921f572dda4489) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-09-23 18:53:01 -04:00
Luca Barbato	ba5dfc25ee	indeo4: Do not access missing reference MV Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit 8435bca087c0e79385763c51de009fd89390b6a5) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> Conflicts: libavcodec/indeo4.c	2013-09-23 18:52:16 -04:00
Michael Niedermayer	9e552b6512	Merge remote-tracking branch 'qatar/release/0.8' into release/0.10 * qatar/release/0.8: adpcm: Unbreak ima-dk4 ac3dec: validate channel output mode against channel count dca: Respect the current limits in the downmixing capabilities Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-09-22 13:51:05 +02:00
Michael Niedermayer	506ad68d87	Merge commit 'ce3ce08850f1690dff01d9bb4ed6a4274d52771e' into release/0.10 * commit 'ce3ce08850f1690dff01d9bb4ed6a4274d52771e': dca: Error out on missing DSYNC pcm: always use codec->id instead of codec_id mlpdec: Do not set invalid context in read_restart_header pcx: Do not overread source buffer in pcx_rle_decode wmavoice: conceal clearly corrupted blocks iff: Do not read over the source buffer qdm2: Conceal broken samples Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-09-22 13:28:52 +02:00
Luca Barbato	ef475620b5	adpcm: Unbreak ima-dk4 Was broken by commit b9dea1a085c4705e480bd17dfa8c8ce227fdce76 Signed-off-by: Michael Niedermayer <michaelni@gmx.at>	2013-09-22 13:20:59 +02:00
Michael Niedermayer	a88ed5a481	Merge commit 'b64bd2e18bac1bd3e3e0ae4aebcad1c33f031c66' into release/0.10 * commit 'b64bd2e18bac1bd3e3e0ae4aebcad1c33f031c66': qdm2: refactor joined stereo support adpcm: Write the correct number of samples for ima-dk4 imc: Catch a division by zero atrac3: Error on impossible encoding/channel combinations Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-09-22 13:18:27 +02:00
Luca Barbato	f33d5af1f3	imc: Catch a division by zero Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit bbf6a4aa20bfe3d7869b2218e66063602dfb8aa7) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> Conflicts: libavcodec/imc.c	2013-09-22 12:16:19 +02:00
Luca Barbato	93c524c0f0	atrac3: Error on impossible encoding/channel combinations Joint stereo encoded mono is impossible. Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit 50cf5a7fb78846fc39b3ecdaa896a10bcd74da2a) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> Conflicts: libavcodec/atrac3.c	2013-09-22 12:16:19 +02:00
Luca Barbato	68b1008719	adpcm: Unbreak ima-dk4 Was broken by commit b9dea1a085c4705e480bd17dfa8c8ce227fdce76	2013-09-21 15:33:11 +02:00
Justin Ruggles	763519536b	ac3dec: validate channel output mode against channel count Damaged frames can lead to a mismatch, which can cause a segfault due to using an incorrect channel mapping. CC:libav-stable@libav.org (cherry picked from commit d7c450436fcb9d3ecf59884a574e7684183e753d) Conflicts: libavcodec/ac3dec.c	2013-09-21 15:21:54 +02:00
Luca Barbato	521cbcb7d3	dca: Respect the current limits in the downmixing capabilities Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit 3802833bc1f79775a1547c5e427fed6e92b77e53) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-09-21 15:19:06 +02:00
Luca Barbato	ce3ce08850	dca: Error out on missing DSYNC Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit f261e508459e28beca59868a878e1519a44bb678) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-09-21 15:17:28 +02:00
Luca Barbato	62c3547539	pcm: always use codec->id instead of codec_id Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit c82da343e635663605bd81c59d872bee3182da73) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> Conflicts: libavcodec/pcm.c	2013-09-21 15:15:34 +02:00
Luca Barbato	47baf9ca87	mlpdec: Do not set invalid context in read_restart_header The faulty values rippled further down the codepath causing a hard-to-track segfault in the assembly code. Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit e9d394f3fad7e8fd8fc80e3b33cb045bbaceb446) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> Conflicts: libavcodec/mlpdec.c	2013-09-21 15:14:29 +02:00
Luca Barbato	9c3c08ba98	pcx: Do not overread source buffer in pcx_rle_decode Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit 3abde1a3b49cf299f2aae4eaae6b6cb5270bdc22) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-09-21 15:11:27 +02:00
Luca Barbato	9c05debdcd	wmavoice: conceal clearly corrupted blocks Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit d14a26edb7c4487df581f11e5c6911dc0e623d08) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-09-21 15:11:18 +02:00
Luca Barbato	195b9f290c	iff: Do not read over the source buffer Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit 7d65e960c72f36b73ae7fe84f8e427d758e61da9) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> Conflicts: libavcodec/iff.c	2013-09-21 15:11:07 +02:00
Luca Barbato	57efb6d94c	qdm2: Conceal broken samples Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit 4ecdb5ed44591aba8a0ddb7d443cace836f761f6) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> Conflicts: libavcodec/qdm2.c	2013-09-21 15:08:50 +02:00

1 2 3 4 5 ...

37976 Commits