ffmpeg

Author	SHA1	Message	Date
Martin Storsjö	802deb2d13	svq3: Check for any negative return value from ff_h264_check_intra_pred_mode Also pass on any returned error code. Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org Signed-off-by: Martin Storsjö <martin@martin.st> (cherry picked from commit 1115689d54ea95a084421f5a182b8dc56cbff978) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> Conflicts: libavcodec/svq3.c	2014-01-07 09:43:56 +01:00
Martin Storsjö	290783b848	vp3: Check the framerate for validity Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org Signed-off-by: Martin Storsjö <martin@martin.st> (cherry picked from commit 6fc8226e29055858f28973bb3d27b63b3b65e616) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> (cherry picked from commit b4c479a82adbb1301e3e549cd80cdd65208ddd05)	2014-01-07 09:43:56 +01:00
Martin Storsjö	7f80928c0e	cavsdec: Make sure a sequence header has been decoded before decoding pictures Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org Signed-off-by: Martin Storsjö <martin@martin.st> (cherry picked from commit e90a6846c2c006fbebd00e1f2789f4a86fafacef) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> Conflicts: libavcodec/cavsdec.c	2014-01-07 09:43:56 +01:00
Martin Storsjö	b9e90b36cd	sierravmd: Do sanity checking of frame sizes Limit the size to INT_MAX/2 (for simplicity) to be sure that size + BYTES_PER_FRAME_RECORD won't overflow. Also factorize other existing error return paths. Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org Signed-off-by: Martin Storsjö <martin@martin.st> (cherry picked from commit 0ef1660a6365ce60ead8858936b6f3f8ea862826) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> (cherry picked from commit 153deed18bed43d16b272e8681b2a9b988d2682a)	2014-01-07 09:43:56 +01:00
Martin Storsjö	7981b5c20e	omadec: Properly check lengths before incrementing the position Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org Signed-off-by: Martin Storsjö <martin@martin.st> (cherry picked from commit 342c43d154e586bc022c86b168fe8d36f69da9d3) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> (cherry picked from commit 9eba02d5dd7036294ea350cb772822deec95b867)	2014-01-07 09:43:56 +01:00
Martin Storsjö	9291012d52	mpc8: Make sure the first stream exists before parsing the seek table Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org Signed-off-by: Martin Storsjö <martin@martin.st> (cherry picked from commit 17d57848fc14e82f76a65ffb25c90f2f011dc4a0) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> (cherry picked from commit 557df77eab7d3726c34221aeb999afe9e7818d52)	2014-01-07 09:43:56 +01:00
Martin Storsjö	594b843608	arm: Don't clobber callee saved registers in scalarproduct q4-q7/d8-d15 are supposed to not be clobbered by the callee. CC: libav-stable@libav.org Signed-off-by: Martin Storsjö <martin@martin.st> (cherry picked from commit d307e408d4a9ada22df443cc38be77cc5e492694)	2013-12-21 10:00:23 +01:00
Martin Storsjö	b6fc0127ce	arm: Don't clobber callee saved registers in scalarproduct q4-q7/d8-d15 are supposed to not be clobbered by the callee. CC: libav-stable@libav.org Signed-off-by: Martin Storsjö <martin@martin.st> (cherry picked from commit d307e408d4a9ada22df443cc38be77cc5e492694) Signed-off-by: Martin Storsjö <martin@martin.st>	2013-12-20 22:09:24 +02:00
Reinhard Tartler	b997a6a86d	Prepare for 0.8.10 Release	2013-12-14 14:34:28 -05:00
Michael Niedermayer	6f6cd7dbe5	roqvideodec: check dimensions validity Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michaelni@gmx.at> (cherry picked from commit 3ae610451170cd5a28b33950006ff0bd23036845) Signed-off-by: Michael Niedermayer <michaelni@gmx.at> (cherry picked from commit fee26d352a52eb9f7fcd8d9167fb4a5ba015b612) CC: libav-stable@libav.org Signed-off-by: Reinhard Tartler <siretart@tauware.de> (cherry picked from commit 488f87be873506abb01d67708a67c10a4dd29283) Signed-off-by: Reinhard Tartler <siretart@tauware.de> (cherry picked from commit 52b18c1fde65efac7f6e6104b76d39bf8d0a34ee) Signed-off-by: Reinhard Tartler <siretart@tauware.de>	2013-12-14 14:31:29 -05:00
Michael Niedermayer	b5736759ee	qdm2: check array index before use, fix out of array accesses Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michaelni@gmx.at> (cherry picked from commit a7ee6281f7ef1c29284e3a4cadfe0f227ffde1ed) CC: libav-stable@libav.org Signed-off-by: Reinhard Tartler <siretart@tauware.de> (cherry picked from commit 39bec05ed42e505d17877b0c23f16322f9b5883b) Signed-off-by: Reinhard Tartler <siretart@tauware.de> (cherry picked from commit 0b2b8ab979624b0cce673d5e99255482d7c553ad) Signed-off-by: Reinhard Tartler <siretart@tauware.de>	2013-12-14 14:31:03 -05:00
Reinhard Tartler	d4a24e43ed	alsdec: check block length Fix writing over the end Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Addresses: CVE-2013-0845 (cherry picked from commit 2a0fb7286d67c47e44aa76c237ede117b22af616) Signed-off-by: Reinhard Tartler <siretart@tauware.de> (cherry picked from commit 3f7d89034bfe50893927cc92ddcb95a2e9b4178d) Signed-off-by: Reinhard Tartler <siretart@tauware.de>	2013-12-14 14:30:24 -05:00
Michael Niedermayer	58e212c1fb	avcodec/jpeglsdec: check err value for ls_get_code_runterm() Fixes infinite loop Fixes Ticket3086 Signed-off-by: Michael Niedermayer <michaelni@gmx.at> (cherry picked from commit cc0e47b55096361723b364afa43b79a3f5619cdc) Signed-off-by: Michael Niedermayer <michaelni@gmx.at> n0.10.10	2013-11-04 20:49:49 +01:00
Michael Niedermayer	4ddbe89d40	avfilter/ff_insert_pad: fix order of operations Fixes out of bounds access Fixes CID732170 Fixes CID732169 No filter is known to use this function in a way so the issue can be reproduced. Signed-off-by: Michael Niedermayer <michaelni@gmx.at> (cherry picked from commit ab2bfb85d49b2f8aa505816f93e75fd18ad0a361) Conflicts: libavfilter/avfilter.c (cherry picked from commit 86591b244f3a27293153896813f5569b49b2f5c0) Conflicts: libavfilter/avfilter.c (cherry picked from commit 400c4f8fa3fd58951dc3f356b2b00484e3363694) Signed-off-by: Michael Niedermayer <michaelni@gmx.at>	2013-11-04 20:49:49 +01:00
Michael Niedermayer	d83dff2e09	update for 0.10.10 Signed-off-by: Michael Niedermayer <michaelni@gmx.at>	2013-11-04 20:07:44 +01:00
Michael Niedermayer	5e708b4de3	Merge remote-tracking branch 'qatar/release/0.8' into release/0.10 * qatar/release/0.8: Changelog for 0.8.9 Conflicts: Changelog Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-11-04 19:44:53 +01:00
Michael Niedermayer	8528feb13c	Merge commit 'd2f4846591727fedcc2b452b688da8da09ee8305' into release/0.10 * commit 'd2f4846591727fedcc2b452b688da8da09ee8305': Prepare for 0.8.7 Release x86: fft: Remove 3DNow! optimizations, they break FATE x86: ac3dsp: Drop mmx variant of ac3_max_msb_abs_int16 Conflicts: RELEASE libavcodec/x86/fft_3dn.c libavcodec/x86/fft_3dn2.c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-11-04 19:34:04 +01:00
Michael Niedermayer	2e57d4ba24	Merge commit '2ed8a550da524434deb3b89f7ec62ed833bedac5' into release/0.10 * commit '2ed8a550da524434deb3b89f7ec62ed833bedac5': aac: Check init_get_bits return value aac: return meaningful errors dsicinav: K&R formatting cosmetics Conflicts: libavcodec/dsicinav.c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-11-04 19:20:29 +01:00
Michael Niedermayer	7c72398787	Merge commit '86d0bf0e96bf917e283d24239ce0eed08351da86' into release/0.10 * commit '86d0bf0e96bf917e283d24239ce0eed08351da86': mov: Seek back if overreading an individual atom vcr1: add sanity checks pictordec: pass correct context to avpriv_request_sample dsicinav: Clip the source size to the expected maximum alsdec: Clean up error paths ogg: Fix potential infinite discard loop nuv: check rtjpeg_decode_frame_yuv420 return value Conflicts: libavcodec/pictordec.c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-11-04 19:07:21 +01:00
Michael Niedermayer	048e284201	Merge commit 'abb41f19cc10fea09fb16d9ecc9967b2a78cf7b0' into release/0.10 * commit 'abb41f19cc10fea09fb16d9ecc9967b2a78cf7b0': nuv: Reset the frame on resize nuv: Use av_fast_realloc nuv: return meaningful error codes. Conflicts: libavcodec/nuv.c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-11-04 19:01:17 +01:00
Michael Niedermayer	e31518e86e	Merge commit '36fc320747a768335ae4538a24a5739033b7eb74' into release/0.10 * commit '36fc320747a768335ae4538a24a5739033b7eb74': nuv: Pad the lzo outbuf nuv: Do not ignore lzo decompression failures oma: correctly mark and decrypt partial packets oma: check geob tag boundary Conflicts: libavcodec/nuv.c libavformat/omadec.c tests/ref/fate/nuv Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-11-04 18:50:55 +01:00
Michael Niedermayer	1c896e865c	Merge commit 'e930b112d14d7acd050d5087d11b6dd4c56a8e4e' into release/0.10 * commit 'e930b112d14d7acd050d5087d11b6dd4c56a8e4e': oma: refactor seek function 8bps: Bound-check the input buffer rtmp: Do not misuse memcmp Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-11-04 18:04:29 +01:00
Michael Niedermayer	39d76907c9	Merge commit '067713f15989dd0b8c0888a3b43fd193819a1058' into release/0.10 * commit '067713f15989dd0b8c0888a3b43fd193819a1058': rtmp: rename data_size to size lavc: set the default rc_initial_buffer_occupancy 4xm: Reject not a multiple of 16 dimension Conflicts: avconv.c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-11-04 18:00:15 +01:00
Michael Niedermayer	1825d6d096	Merge commit '12dc01bb1f07112cd7eb31e183d75cb3c0fb92ca' into release/0.10 * commit '12dc01bb1f07112cd7eb31e183d75cb3c0fb92ca': 4xm: do not overread the prestream buffer Conflicts: libavcodec/4xm.c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-11-04 17:51:21 +01:00
Michael Niedermayer	a5115752ca	Merge commit 'cd9b0bb07a66d3299bd62922e9dfa742219abe79' into release/0.10 * commit 'cd9b0bb07a66d3299bd62922e9dfa742219abe79': 4xm: validate the buffer size before parsing it indeo: Do not reference mismatched tiles indeo: Sanitize ff_ivi_init_planes fail paths Conflicts: libavcodec/4xm.c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-11-04 17:33:44 +01:00
Michael Niedermayer	cb297f6ae7	Merge commit 'a0b8f85f29883f538a32593bc3c6f712c972ff70' into release/0.10 * commit 'a0b8f85f29883f538a32593bc3c6f712c972ff70': indeo: Bound-check before applying motion compensation indeo: Bound-check before applying transform indeo: reject negative array indexes indeo: Cosmetic formatting Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-11-04 16:41:04 +01:00
Michael Niedermayer	3667874833	Merge commit 'c5da487a38f93b981c4933d4e0b09c49c319fbb7' into release/0.10 * commit 'c5da487a38f93b981c4933d4e0b09c49c319fbb7': indeo: Refactor ff_ivi_init_tiles and ivi_decode_blocks indeo: Refactor ff_ivi_dec_huff_desc Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-11-04 16:10:53 +01:00
Reinhard Tartler	ae9652605a	Changelog for 0.8.9	2013-11-02 10:31:35 -04:00
Reinhard Tartler	d2f4846591	Prepare for 0.8.7 Release	2013-11-02 10:17:43 -04:00
Diego Biurrun	62c8bf00bb	x86: fft: Remove 3DNow! optimizations, they break FATE	2013-10-30 19:19:44 +01:00
Diego Biurrun	a1b82c6b1c	x86: ac3dsp: Drop mmx variant of ac3_max_msb_abs_int16 The function accidentally uses mmxext instructions, so it causes sigill on mmx-only CPUs and provides no benefit on CPUs with mmxext available. Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-10-29 17:03:25 +01:00
Luca Barbato	2ed8a550da	aac: Check init_get_bits return value Some code paths can call it with invalid length. CC: libav-stable@libav.org (cherry picked from commit 71953ebcf94fe4ef316cdad1f276089205dd1d65) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-10-28 14:16:37 +01:00
Martin Storsjö	86d0bf0e96	mov: Seek back if overreading an individual atom Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Cc: libav-stable@libav.org Signed-off-by: Martin Storsjö <martin@martin.st> (cherry picked from commit 5b4eb243bce10a3e8345401a353749e0414c54ca) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> Conflicts: libavformat/mov.c	2013-10-28 14:16:37 +01:00
Luca Barbato	ef67d8107e	aac: return meaningful errors (cherry picked from commit 07c52e2c7c60b087fd023cd9771778973def0b33) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> Conflicts: libavcodec/aacdec.c	2013-10-28 14:16:37 +01:00
Anton Khirnov	be8b796f55	vcr1: add sanity checks Fixes invalid reads with corrupted files. Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit 8aba7968dd604aae91ee42cbce0be3dad7dceb30) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> Conflicts: libavcodec/vcr1.c	2013-10-28 14:16:37 +01:00
Luca Barbato	8119336df4	dsicinav: K&R formatting cosmetics (cherry picked from commit fcae3ff124ee97c9265e3b93f3d41238b2aee9bd) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> Conflicts: libavcodec/dsicinav.c	2013-10-28 14:16:37 +01:00
Anton Khirnov	8297853917	pictordec: pass correct context to avpriv_request_sample Fixes invalid reads. Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry-picked from commit fe9bb61f9a16be19ad91875632c39e44b7a99a8a) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> Conflicts: libavcodec/pictordec.c	2013-10-28 14:16:37 +01:00
Luca Barbato	b8ba48c725	dsicinav: Clip the source size to the expected maximum A packet larger than cin->bitmap_size does not make sense. Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit fd8189932147a524fe43532b46baa35e8be92a1b) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> Conflicts: libavcodec/dsicinav.c	2013-10-28 14:16:37 +01:00
Luca Barbato	1682c9fb59	alsdec: Clean up error paths Fix at least a memory leak. CC: libav-stable@libav.org (cherry picked from commit ca488ad480360dfafcb5766f7bfbb567a0638979) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> Conflicts: libavcodec/alsdec.c	2013-10-28 14:16:37 +01:00
Reimar Döffinger	5971631d84	ogg: Fix potential infinite discard loop Seeking in certain broken files would cause ogg_read_timestamp to fail because ogg_packet would go into a state where all packets of stream 1 would be discarded until the end of the stream. Bug-Id: 553 CC: libav-stable@libav.org Signed-off-by: Jan Gerber <j@v2v.cc> Signed-off-by: Luca Barbato <lu_zero@gentoo.org> (cherry picked from commit 9a27acae9e6b7d0bf74c5b878af9c42495a546f3) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> Conflicts: libavformat/oggdec.c	2013-10-28 14:16:37 +01:00
Michael Niedermayer	c08127c5e6	avformat/utils: do not override pts in h264 when they are provided from the demuxer Fixes Ticket2143 Signed-off-by: Michael Niedermayer <michaelni@gmx.at> (cherry picked from commit 1e5271a9fd6ddcceb083f2185a4bbd8d44c9a813)	2013-10-27 19:53:11 +01:00
Michael Niedermayer	558c1f35fa	avcodec/h264: reduce noisiness of "mmco: unref short failure" Do not consider it an error if we have no frames and should discard one. This condition can easily happen when decoding is started from an I frame Fixes Ticket2811 Signed-off-by: Michael Niedermayer <michaelni@gmx.at> (cherry picked from commit 08a89761964bdd0a023eff6d37a1131fb7e1d7a0) Conflicts: libavcodec/h264_refs.c	2013-10-26 01:27:53 +02:00
Michael Niedermayer	8096691a68	avcodec/h264_refs: modify key frame detection heuristic to detect more cases Fixes Ticket2968 Signed-off-by: Michael Niedermayer <michaelni@gmx.at> (cherry picked from commit 5ac6b6028f17b64723884c9fa72cfcbd369a1ba2) Conflicts: libavcodec/h264_refs.c	2013-10-24 11:49:04 +02:00
Luca Barbato	abb41f19cc	nuv: Reset the frame on resize Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org Signed-off-by: Luca Barbato <lu_zero@gentoo.org> Conflicts: libavcodec/nuv.c	2013-10-16 23:05:51 +02:00
Luca Barbato	36fc320747	nuv: Pad the lzo outbuf And properly update the buf_size with the correct size. Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit 075dbc185521f193c98b896cd63be3ec2613df5d) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> Conflicts: libavcodec/nuv.c	2013-10-16 23:05:51 +02:00
Luca Barbato	4a11d773f9	nuv: check rtjpeg_decode_frame_yuv420 return value CC: libav-stable@libav.org (cherry picked from commit 85ac12587bfef970d0e0e4abc292df346daf8478) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> Conflicts: libavcodec/nuv.c	2013-10-16 23:05:51 +02:00
Luca Barbato	c1ebdef01b	nuv: Use av_fast_realloc The decompressed buffer can be used after codec_reinit, so it must be preserved. Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit 2df0776c2293efb0ac12c003843ce19332342e01) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> Conflicts: libavcodec/nuv.c	2013-10-16 23:05:51 +02:00
Luca Barbato	cda26ab21e	nuv: Do not ignore lzo decompression failures Update the fate reference since the last broken frame is not decoded anymore. Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit aae159a7cc4df7d0521901022b778c9da251c24e) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> Conflicts: libavcodec/nuv.c	2013-10-16 23:05:51 +02:00
Anton Khirnov	d2eddcfc83	nuv: return meaningful error codes. (cherry picked from commit 3344f5cb747bb1f54cc34878b66dc0536f194720) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> Conflicts: libavcodec/nuv.c	2013-10-16 23:05:51 +02:00
Luca Barbato	3cc05e0d9d	oma: correctly mark and decrypt partial packets Incomplete crypted files would lead to a read after buffer boundary otherwise. Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit 2219e27b5b17d146e4ab71a3ed86dfc013fb7a93) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> Conflicts: libavformat/omadec.c	2013-10-16 23:05:51 +02:00

... 3 4 5 6 7 ...

38156 Commits