ffmpeg

Author	SHA1	Message	Date
Michael Niedermayer	a5a2f8ac5a	Merge commit 'dcc68de942f06d358192a57057adb133f7c40dd7' into release/0.10 * commit 'dcc68de942f06d358192a57057adb133f7c40dd7': vp3: Copy all 3 frames for thread updates See: `247d30a7db` Merged-by: Michael Niedermayer <michaelni@gmx.at>	2014-08-12 19:11:33 +02:00
Michael Niedermayer	437a0ae1a1	Merge commit 'ebe2292eafa7cac71dcdddb865e18c05635fe117' into release/0.10 * commit 'ebe2292eafa7cac71dcdddb865e18c05635fe117': mpegts: Do not try to write a PMT larger than SECTION_SIZE Conflicts: libavformat/mpegtsenc.c See: `68b14c044a` Merged-by: Michael Niedermayer <michaelni@gmx.at>	2014-08-12 19:09:33 +02:00
Michael Niedermayer	da19bfb287	Merge commit 'd86df7dd497ead1132bd95df7c4c18d91fbe3def' into release/0.10 * commit 'd86df7dd497ead1132bd95df7c4c18d91fbe3def': mpegts: Define the section length with a constant Merged-by: Michael Niedermayer <michaelni@gmx.at>	2014-08-12 19:01:28 +02:00
Michael Niedermayer	a94fe0e151	Merge commit 'a79e58cdc6e46c62346d13e7ddd4da2008714200' into release/0.10 * commit 'a79e58cdc6e46c62346d13e7ddd4da2008714200': Update Changelog for v0.8.14 Prepare for 0.8.14 Release Conflicts: Changelog RELEASE No change as this does not apply to FFmpeg 1:1 Merged-by: Michael Niedermayer <michaelni@gmx.at>	2014-08-12 19:00:30 +02:00
Michael Niedermayer	688ab26604	Merge commit 'c79cf0129edafc388ba1c47cd7b6a620557e48de' into release/0.10 * commit 'c79cf0129edafc388ba1c47cd7b6a620557e48de': error_concealment: avoid using the picture if not fully setup Merged-by: Michael Niedermayer <michaelni@gmx.at>	2014-08-12 18:58:09 +02:00
Michael Niedermayer	a2c6cb260f	avcodec/svq1dec: Fix multiple bugs from "svq1: do not modify the input packet" Add padding, clear size, use the correct pointer. Signed-off-by: Michael Niedermayer <michaelni@gmx.at> (cherry picked from commit `4213fc5b9e`) Signed-off-by: Michael Niedermayer <michaelni@gmx.at>	2014-08-12 18:51:33 +02:00
Michael Niedermayer	aed8f48545	Merge commit '9d5f4f025304ac7c69775179044e6f69f370441a' into release/0.10 * commit '9d5f4f025304ac7c69775179044e6f69f370441a': svq1: do not modify the input packet Merged-by: Michael Niedermayer <michaelni@gmx.at>	2014-08-12 18:51:22 +02:00
Michael Niedermayer	6596f5c3aa	Merge commit 'cf6b2a0ad2b06aabf04bec4c7b19e78a560cd904' into release/0.10 * commit 'cf6b2a0ad2b06aabf04bec4c7b19e78a560cd904': cdgraphics: do not return 0 from the decode function Merged-by: Michael Niedermayer <michaelni@gmx.at>	2014-08-12 18:47:24 +02:00
Michael Niedermayer	a457115f0f	Merge commit '3aebdffb010df025728d6c2af89642f9634aa806' into release/0.10 * commit '3aebdffb010df025728d6c2af89642f9634aa806': cdgraphics: switch to bytestream2 Conflicts: libavcodec/cdgraphics.c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2014-08-12 18:25:32 +02:00
Michael Niedermayer	90241187ce	Merge commit 'a1804df66a4064aa30554a11e4fd6cdac3ed89c0' into release/0.10 * commit 'a1804df66a4064aa30554a11e4fd6cdac3ed89c0': huffyuvdec: check width size for yuv422p Merged-by: Michael Niedermayer <michaelni@gmx.at>	2014-08-09 20:21:22 +02:00
Michael Niedermayer	e719bfc403	Merge commit 'e17dc0a254ac8d3c33887a114a66e2b659ba0bc5' into release/0.10 * commit 'e17dc0a254ac8d3c33887a114a66e2b659ba0bc5': mmvideo: check horizontal coordinate too Merged-by: Michael Niedermayer <michaelni@gmx.at>	2014-08-09 20:20:02 +02:00
Michael Niedermayer	7d42ede8fe	Merge commit '4a6622550a4a4bf4690ea7d9fe42210a30a67936' into release/0.10 * commit '4a6622550a4a4bf4690ea7d9fe42210a30a67936': huffyuv: Check and propagate function return values Conflicts: libavcodec/huffyuv.c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2014-08-09 19:58:37 +02:00
Michael Niedermayer	2ec8e46550	Merge commit '50493f1f7d2235db811d2991b9e5b330baf7c05a' into release/0.10 * commit '50493f1f7d2235db811d2991b9e5b330baf7c05a': twinvq: fix out of bounds array access Merged-by: Michael Niedermayer <michaelni@gmx.at>	2014-08-09 19:42:46 +02:00
Michael Niedermayer	b5ae0e349a	Merge commit '3e60501f311c50bf234033f206c19d34d889df01' into release/0.10 * commit '3e60501f311c50bf234033f206c19d34d889df01': h264: slice-mt: check master context for valid current_picture_ptr Merged-by: Michael Niedermayer <michaelni@gmx.at>	2014-08-09 19:42:15 +02:00
Michael Niedermayer	0a83007cee	Merge commit '7585a6254bbb38148e4467793fc34211b79d5f7d' into release/0.10 * commit '7585a6254bbb38148e4467793fc34211b79d5f7d': h264: prevent theoretical infinite loop in SEI parsing Conflicts: libavcodec/h264_sei.c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2014-08-09 19:41:51 +02:00
Michael Niedermayer	330791c2ae	Merge commit '184c79729d4011f33027bcdc61a63d521017ebc1' into release/0.10 * commit '184c79729d4011f33027bcdc61a63d521017ebc1': h264_sei: check SEI size Conflicts: libavcodec/h264_sei.c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2014-08-09 19:30:07 +02:00
Michael Niedermayer	5404bf29c3	Merge commit 'a465ed5707f5cbc9713d5e9629d424cd2d46e038' into release/0.10 * commit 'a465ed5707f5cbc9713d5e9629d424cd2d46e038': pgssubdec: Check RLE size before copying Merged-by: Michael Niedermayer <michaelni@gmx.at>	2014-08-09 19:29:48 +02:00
Michael Niedermayer	2c10833d5e	Merge commit '976f2e0a542e47aaf68ddbe001fb70a00bf96d99' into release/0.10 * commit '976f2e0a542e47aaf68ddbe001fb70a00bf96d99': x86: Fix linking with some or all of yasm, mmx, optimizations disabled Conflicts: libavcodec/x86/mpegaudiodec_mmx.c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2014-08-09 19:20:25 +02:00
Michael Niedermayer	cdfd61b78b	Merge commit '28f2d3c5a5a3a3c14a68cf691054f15e4f23355a' into release/0.10 * commit '28f2d3c5a5a3a3c14a68cf691054f15e4f23355a': cmdutils: Conditionally compile libswscale-related bits Conflicts: cmdutils.c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2014-08-09 19:15:49 +02:00
Michael Niedermayer	f3ae90621e	Merge commit '277103e07fbe22fc8e4361bacd5c6b48133f3ba5' into release/0.10 * commit '277103e07fbe22fc8e4361bacd5c6b48133f3ba5': video4linux2: Avoid a floating point exception Conflicts: avconv.c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2014-08-09 19:13:54 +02:00
Michael Niedermayer	c4dabc38a3	Merge commit 'e4fdfdf65d520ce3af13a21ff8a3649e37757af8' into release/0.10 * commit 'e4fdfdf65d520ce3af13a21ff8a3649e37757af8': vf_select: Drop a debug av_log with an unchecked double to enum conversion Merged-by: Michael Niedermayer <michaelni@gmx.at>	2014-08-09 19:12:46 +02:00
Michael Niedermayer	d60f680fa7	Merge commit '187cfd3c13a1deb47661486824a5b8f41e158a7a' into release/0.10 * commit '187cfd3c13a1deb47661486824a5b8f41e158a7a': eamad: use the bytestream2 API instead of AV_RL Conflicts: libavcodec/eamad.c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2014-08-09 19:04:40 +02:00
Michael Niedermayer	dcc68de942	vp3: Copy all 3 frames for thread updates Fixes a double release of the current frame on deinit. Bug-Id: CVE-2011-3934 Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Vittorio Giovara <vittorio.giovara@gmail.com>	2014-08-08 15:04:18 +01:00
Luca Barbato	ebe2292eaf	mpegts: Do not try to write a PMT larger than SECTION_SIZE Prevent out of array write. Similar to what Michael Niedermayer did to address the same issue. Bug-Id: CVE-2014-2263 CC: libav-stable@libav.org (cherry picked from commit `addbaf1348`) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2014-08-08 14:27:47 +02:00
Luca Barbato	d86df7dd49	mpegts: Define the section length with a constant The specification says the value is expressed in 10 bits including the 4-byte CRC. (cherry picked from commit `694b7cd873`) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> Conflicts: libavformat/mpegtsenc.c	2014-08-08 14:27:27 +02:00
Reinhard Tartler	a79e58cdc6	Update Changelog for v0.8.14	2014-08-06 20:24:58 -04:00
Reinhard Tartler	4709baecc9	Prepare for 0.8.14 Release	2014-08-06 20:24:58 -04:00
Michael Niedermayer	c79cf0129e	error_concealment: avoid using the picture if not fully setup Fixes state becoming inconsistent and a null pointer dereference. CC: libav-stable@libav.org Bug-Id: CVE-2013-0860 Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Vittorio Giovara <vittorio.giovara@gmail.com> Signed-off-by: Anton Khirnov <anton@khirnov.net>	2014-08-06 19:29:48 +00:00
Anton Khirnov	9d5f4f0253	svq1: do not modify the input packet The input data must remain constant, make a copy instead. This is in theory a performance hit, but since I failed to find any samples using this feature, this should not matter in practice. Also, check the size of the header, avoiding invalid reads on truncated data. CC:libav-stable@libav.org (cherry picked from commit `7b588bb691`) Signed-off-by: Anton Khirnov <anton@khirnov.net> Conflicts: libavcodec/svq1dec.c	2014-08-06 19:22:05 +00:00
Anton Khirnov	cf6b2a0ad2	cdgraphics: do not return 0 from the decode function 0 means no data consumed, so it can trigger an infinite loop in the caller. CC:libav-stable@libav.org (cherry picked from commit `c7d9b473e2`) Signed-off-by: Anton Khirnov <anton@khirnov.net> Conflicts: libavcodec/cdgraphics.c	2014-08-06 18:52:28 +00:00
Anton Khirnov	3aebdffb01	cdgraphics: switch to bytestream2 Fixes possible invalid memory accesses on corrupted data. CC:libav-stable@libav.org Bug-ID: CVE-2013-3674 (cherry picked from commit `a1599f3f7e`) Signed-off-by: Anton Khirnov <anton@khirnov.net>	2014-08-06 18:51:49 +00:00
Michael Niedermayer	a1804df66a	huffyuvdec: check width size for yuv422p Avoid out of array accesses. CC: libav-stable@libav.org Bug-Id: CVE-2013-0848 Signed-off-by: Vittorio Giovara <vittorio.giovara@gmail.com> Signed-off-by: Anton Khirnov <anton@khirnov.net> (cherry picked from commit `a7153444df`) Signed-off-by: Anton Khirnov <anton@khirnov.net> Conflicts: libavcodec/huffyuvdec.c	2014-08-05 20:17:19 +00:00
Michael Niedermayer	e17dc0a254	mmvideo: check horizontal coordinate too Fixes out of array accesses. Bug-Id: CVE-2013-3672 Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Vittorio Giovara <vittorio.giovara@gmail.com> Signed-off-by: Anton Khirnov <anton@khirnov.net> (cherry picked from commit `70cd3b8e65`) Signed-off-by: Anton Khirnov <anton@khirnov.net>	2014-08-05 19:32:56 +00:00
Diego Biurrun	4a6622550a	huffyuv: Check and propagate function return values Bug-Id: CVE-2013-0868 inspired by a patch from Michael Niedermayer <michaelni@gmx.at> Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind (cherry picked from commit `744b406ff3`) Signed-off-by: Diego Biurrun <diego@biurrun.de> Conflicts: libavcodec/huffyuvdec.c	2014-08-04 00:24:21 -07:00
Mans Rullgard	50493f1f7d	twinvq: fix out of bounds array access ModeTab.fmode has only 3 elements, so indexing it with ftype in the initialier for 'size' is invalid when ftype == FT_PPC. This fixes crashes with gcc 4.8. Signed-off-by: Mans Rullgard <mans@mansr.com> (cherry picked from commit `4bf2e7c5f1`) Signed-off-by: Diego Biurrun <diego@biurrun.de>	2014-08-01 07:51:18 -07:00
Janne Grunau	3e60501f31	h264: slice-mt: check master context for valid current_picture_ptr Fixes errors in slice based multithreading introduced in `0b300daad2`. CC: libav-stable@libav.org (cherry picked from commit `5945c7b35d`) Signed-off-by: Diego Biurrun <diego@biurrun.de>	2014-08-01 07:37:14 -07:00
Vittorio Giovara	7585a6254b	h264: prevent theoretical infinite loop in SEI parsing Properly address CVE-2011-3946 and parse bitstream as described in the spec. CC: libav-stable@libav.org Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind	2014-08-01 13:40:11 +01:00
Michael Niedermayer	184c79729d	h264_sei: check SEI size Signed-off-by: Anton Khirnov <anton@khirnov.net> Signed-off-by: Vittorio Giovara <vittorio.giovara@gmail.com>	2014-08-01 13:39:51 +01:00
Michael Niedermayer	a465ed5707	pgssubdec: Check RLE size before copying Make sure the buffer size does not exceed the expected RLE size. Prevent an out of array bound write. Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michaelni@gmx.at> Bug-Id: CVE-2013-0852 Signed-off-by: Luca Barbato <lu_zero@gentoo.org> (cherry picked from commit `00915d3cd2`) Signed-off-by: Diego Biurrun <diego@biurrun.de>	2014-08-01 05:19:04 -07:00
Diego Biurrun	976f2e0a54	x86: Fix linking with some or all of yasm, mmx, optimizations disabled Some optimized template functions reference optimized symbols, so they must be explicitly disabled when those symbols are unavailable. (cherry picked from commit `ec36aa6944`) Signed-off-by: Diego Biurrun <diego@biurrun.de>	2014-07-31 18:05:34 -07:00
Diego Biurrun	28f2d3c5a5	cmdutils: Conditionally compile libswscale-related bits This fixes compilation with libswscale disabled. (cherry picked from commit `ab79966475`) Signed-off-by: Diego Biurrun <diego@biurrun.de>	2014-07-31 16:44:11 -07:00
Bernhard Übelacker	277103e07f	video4linux2: Avoid a floating point exception This avoids a segfault in avconv_opt.c:opt_target when trying to determine the norm. (cherry picked from commit `dc71f19588`) Signed-off-by: Diego Biurrun <diego@biurrun.de>	2014-07-30 13:09:09 -07:00
Diego Biurrun	e4fdfdf65d	vf_select: Drop a debug av_log with an unchecked double to enum conversion CC: libav-stable@libav.org (cherry picked from commit `a8d803a320`) Signed-off-by: Diego Biurrun <diego@biurrun.de>	2014-07-30 13:06:22 -07:00
Anton Khirnov	187cfd3c13	eamad: use the bytestream2 API instead of AV_RL This is safer and possibly fixes invalid reads on truncated data. (cherry-picked from commit `541427ab4d`) CC:libav-stable@libav.org Conflicts: libavcodec/eamad.c (cherry picked from commit `f9204ec56a`) Signed-off-by: Diego Biurrun <diego@biurrun.de>	2014-07-30 12:42:35 -07:00
Michael Niedermayer	9153b33a74	update for FFmpeg 0.10.14 Signed-off-by: Michael Niedermayer <michaelni@gmx.at> n0.10.14	2014-06-29 03:26:12 +02:00
Michael Niedermayer	a907fc0b21	Merge commit 'e122fb594a5feb6729cce86a70aafd93d10202d8' into release/0.10 * commit 'e122fb594a5feb6729cce86a70aafd93d10202d8': Update Changelog for 0.8.13 Prepare for 0.8.13 Release Conflicts: Changelog RELEASE merge for metadata only Merged-by: Michael Niedermayer <michaelni@gmx.at>	2014-06-29 03:10:10 +02:00
Michael Niedermayer	d77ad6ec2d	Merge commit 'e7f5dacd55deeee8a866020b8463f829b2c5971f' into release/0.10 * commit 'e7f5dacd55deeee8a866020b8463f829b2c5971f': lzo: Handle integer overflow Conflicts: libavutil/lzo.c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2014-06-29 03:08:22 +02:00
Reinhard Tartler	e122fb594a	Update Changelog for 0.8.13	2014-06-26 21:34:03 -04:00
Reinhard Tartler	359383c983	Prepare for 0.8.13 Release	2014-06-26 21:33:18 -04:00
Luca Barbato	e7f5dacd55	lzo: Handle integer overflow get_len can overflow for specially crafted payload. Reported-By: Don A. Baley <donb@securitymouse.com> CC: libav-stable@libav.org (cherry picked from commit `ccda51b14c`) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> Conflicts: libavutil/lzo.c	2014-06-25 14:40:56 +02:00

1 2 3 4 5 ...

38200 Commits