ffmpeg

Author	SHA1	Message	Date
Michael Niedermayer	62d9d4d9d4	Merge remote-tracking branch 'qatar/release/0.8' into release/0.10 * qatar/release/0.8: swfdec: do better validation of tag length Changelog for 0.8.8 kmvc: Clip pixel position to valid range kmvc: use fixed sized arrays in the context indeo: use a typedef for the mc function pointer lavc: check for overflow in init_get_bits indeo: check for reference when inheriting mvs indeo: use proper error code indeo: Properly forward the error codes wmapro: error out on impossible scale factor offsets wmapro: check the min_samples_per_subframe wmapro: return early on unsupported condition wmapro: check num_vec_coeffs against the actual available buffer Conflicts: Changelog libavformat/swfdec.c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-07-29 04:26:30 +02:00
Michael Niedermayer	a3539d26ec	Merge commit '4ff5167ee7fdee6d35c1bb2558172329ae6ec770' into release/0.10 * commit '4ff5167ee7fdee6d35c1bb2558172329ae6ec770': wmapro: make sure there is room to store the current packet lavc: move put_bits_left in put_bits.h 4xm: do not overread the source buffer in decode_p_block 4xm: check bitstream_size boundary before using it 4xm: reject frames not compatible with the declared version 4xm: use the correct logging context 4xm: check the return value of read_huffman_tables(). 4xm: don't rely on get_buffer() initializing the frame. vmdav: convert to bytestream2 smacker: check frame size validity smacker: pad the extradata allocation smacker: check the return value of smacker_decode_tree smacker: fix an off by one in huff.length computation Prepare for 0.8.8 Release tiff: do not overread the source buffer apetag: use int64_t for filesize wavpack: return meaningful errors Conflicts: RELEASE libavcodec/4xm.c libavcodec/vmdav.c libavformat/smacker.c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-07-29 03:56:26 +02:00
Michael Niedermayer	7118358a95	Merge commit '42fed7f433e6d2167ffd4aae31905b583a53b988' into release/0.10 * commit '42fed7f433e6d2167ffd4aae31905b583a53b988': wavpack: check packet size early mjpegdec: validate parameters in mjpeg_decode_scan_progressive_ac mjpeg: Validate sampling factors ljpeg: use the correct number of components in yuv wavpack: validate samples size parsed in wavpack_decode_block jpegls: check the scan offset jpegls: factorize return paths jpegls: return meaningful errors mjpegdec: properly report unsupported disabled features update Changelog proresdec: support mixed interlaced/non-interlaced content update Changelog wav: Always seek to an even offset id3v2: check for end of file while unescaping tags indeo3: fix off by one in MV validity check aac: check the maximum number of channels update Changelog oggdec: fix faulty cleanup prototype Conflicts: Changelog libavcodec/jpeglsdec.c libavcodec/mjpegdec.c libavformat/id3v2.c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-07-29 03:16:38 +02:00
Michael Niedermayer	be90f0279d	Merge commit '43c0a87279e717c1384314c6da7155c306ee7c60' into release/0.10 * commit '43c0a87279e717c1384314c6da7155c306ee7c60': qdm2: check that the FFT size is a power of 2 indeo3: switch parsing the header to bytestream2 indeo3: check motion vectors. rv10: check that extradata is large enough indeo3: fix data size check lavf: make sure stream probe data gets freed. dfa: check for invalid access in decode_wdlt(). xmv: check audio track parameters validity. bmv: check for len being valid in bmv_decode_frame(). xmv: do not leak memory in the error paths in xmv_read_header() avfiltergraph: check for sws opts being non-NULL before using them. oma: Validate sample rates Prepare for 0.8.7 Release Conflicts: RELEASE libavcodec/indeo3.c libavfilter/avfiltergraph.c libavformat/utils.c libavformat/xmv.c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-07-29 02:35:24 +02:00
Justin Ruggles	e786cc3331	swfdec: do better validation of tag length Avoids trying to read a packet with 0 or negative size. Avoids a potential infinite loop due to seeking backwards. Partially based on a patch by Michael Niedermayer. (cherry picked from commit e70c5b034c4787377e82cab2d5565486baec0c2a) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-07-10 10:25:50 +02:00
Michael Niedermayer	e445dc9237	avformat/mov: Fix duration of fragmented mov Fixes Ticket2757 Signed-off-by: Michael Niedermayer <michaelni@gmx.at> (cherry picked from commit dc2a13aa802fc691c25d5e0194818831058316ee) Conflicts: libavformat/mov.c	2013-07-07 18:58:36 +02:00
Michael Niedermayer	c25c89a530	mpegts: only reopen pmt_cb filter if its different from the previous. Fixes Ticket2632 Signed-off-by: Michael Niedermayer <michaelni@gmx.at> (cherry picked from commit b009267910df10c004b5f340a090d45da29089a0)	2013-07-07 18:56:03 +02:00
Michael Niedermayer	8514e3e08e	rmdec: Pass AVIOContext to rm_read_metadata() Fix null pointer dereference Fixes Ticket2588 Signed-off-by: Michael Niedermayer <michaelni@gmx.at> (cherry picked from commit bf87908cd8da31e8f8fe75c06577170928ea70a8) Conflicts: libavformat/rmdec.c	2013-07-07 18:55:17 +02:00
Kostya Shishkov	b40870e636	smacker: check frame size validity Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org Signed-off-by: Luca Barbato <lu_zero@gentoo.org> (cherry picked from commit 07423ad7836325e03894f2f87ba46a531a1cc0b3) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-06-30 16:06:34 +02:00
Kostya Shishkov	db0c8061fe	smacker: pad the extradata allocation Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org Signed-off-by: Luca Barbato <lu_zero@gentoo.org> (cherry picked from commit 4c22baf65363433f8c20efd1022b4ba2d8cf2288) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-06-30 16:06:32 +02:00
Anton Khirnov	ea7ba1d871	apetag: use int64_t for filesize CC: libav-stable@libav.org (cherry picked from commit e816aaacd68201b67182f9c70dc680e89a0123e9) Signed-off-by: Reinhard Tartler <siretart@tauware.de>	2013-06-22 08:51:56 +02:00
Michael Niedermayer	8ddc9790ed	avformat/libmodplug: Reduce the probe score for small input This ensures that theres enough data for mpeg_probe() to recognize mpeg-ps Fixes Ticket2583 Based on code by: Paul B Mahol <onemda@gmail.com> Signed-off-by: Michael Niedermayer <michaelni@gmx.at> (cherry picked from commit c605adbf562fbf535e83ae427bb681bc45e440c8)	2013-06-21 01:18:23 +02:00
Carl Eugen Hoyos	9ea0f4522f	Autodetect idcin only if audio properties allow decoding. Fixes ticket #2688. (cherry picked from commit 06bede95fcea47d2e51e8ff248c15311f335b898)	2013-06-19 23:48:28 +02:00
Michael Niedermayer	1c655c1419	avidec: dont randomly skip packets for offseting the index Fixes Ticket2490 Signed-off-by: Michael Niedermayer <michaelni@gmx.at> (cherry picked from commit 6c593f1b671b7725b8c36f92f7c0a23ccf8e7628)	2013-05-17 22:57:22 +02:00
Carl Eugen Hoyos	d95bb2ac2d	Do not read strd chunk in avi files as H264 extradata. Fixes ticket #2561. (cherry picked from commit 231b3317184790b6be4b4619d96fd328f13aeabb)	2013-05-13 16:03:16 +02:00
Luca Barbato	31ed79af7f	wav: Always seek to an even offset RIFF chunks are aligned to 16bit according to the specification. Bug-Id:500 CC:libav-stable@libav.org (cherry picked from commit ac87eaf856e0fb51917266b899bb15d19b907baf) Signed-off-by: Reinhard Tartler <siretart@tauware.de>	2013-05-07 07:15:26 +02:00
Luca Barbato	f4bb72d33d	id3v2: check for end of file while unescaping tags Prevent an out of buffer bound write. Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC:libav-stable@libav.org (cherry picked from commit af4cc2605c7a56ecfd84c264aa2b325020418472) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-05-07 07:13:55 +02:00
Luca Barbato	d2d2ddf9a3	oggdec: fix faulty cleanup prototype (cherry picked from commit fba8e5b608577fc660989d0057a55818254a3744) Signed-off-by: Reinhard Tartler <siretart@tauware.de>	2013-04-24 21:01:14 +02:00
Anton Khirnov	881526744e	lavf: make sure stream probe data gets freed. Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit dbb1425811a672eddf4acf0513237cdf20f83756) Signed-off-by: Reinhard Tartler <siretart@tauware.de>	2013-04-24 21:01:14 +02:00
Anton Khirnov	9aa2eee313	xmv: check audio track parameters validity. Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit d1016dccdcb10486245e5d7c186cc31af54b2a9c) Signed-off-by: Reinhard Tartler <siretart@tauware.de>	2013-04-24 21:01:14 +02:00
Anton Khirnov	c65fb5b41b	xmv: do not leak memory in the error paths in xmv_read_header() CC: libav-stable@libav.org (cherry picked from commit f8080bd13b5f7fc48204b17fa59a5ce9feb15f07) Signed-off-by: Reinhard Tartler <siretart@tauware.de>	2013-04-24 21:01:14 +02:00
Luca Barbato	a563e4af9f	oma: Validate sample rates The sample rate index is 3 bits even if currently index 5, 6 and 7 are not supported. Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org (cherry picked from commit 0933fd1533560fbc718026e12f19a4824b041237) Signed-off-by: Reinhard Tartler <siretart@tauware.de>	2013-04-24 21:01:14 +02:00
Michael Niedermayer	7ab4358cda	rmdec: flush audio packet on seeking Fixes Ticket1605 Signed-off-by: Michael Niedermayer <michaelni@gmx.at> (cherry picked from commit 519ebb5ee5b89b8ecc80b4a4540fcbeb65cda172) Signed-off-by: Michael Niedermayer <michaelni@gmx.at>	2013-04-07 16:38:29 +02:00
Michael Niedermayer	119b7a6c7c	oggparsevorbis: fix vorbis_cleanup return type Signed-off-by: Michael Niedermayer <michaelni@gmx.at> (cherry picked from commit 7a6beedd3fcd1ff0fc3f314cb5ec58db116d19ee) Signed-off-by: Michael Niedermayer <michaelni@gmx.at>	2013-04-07 16:38:29 +02:00
Michael Niedermayer	566de83883	Merge remote-tracking branch 'qatar/release/0.8' into release/0.10 * qatar/release/0.8: update Changelog fate: fetch samples that match the release series dxva2: include dxva.h if found iff: validate CMAP palette size Changelog: document msrle bugfix Changelog: cosmetics, remove trailing periods and sort msrledec: check bounds before constructing a possibly invalid pointer, Conflicts: Changelog configure libavformat/iff.c tests/Makefile Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-04-07 15:57:13 +02:00
Michael Niedermayer	e9d5a6f1c5	Merge commit '327ff82bac3081d918dceb4931c77e25d0a1480d' into release/0.10 * commit '327ff82bac3081d918dceb4931c77e25d0a1480d': msrle: convert MS RLE decoding function to bytestream2. Update Changelog for the 0.8.6 Release wmaprodec: require block_align to be set. ivi_common: do not call MC for intra frames when dc_transform is unset roqvideodec: fix a potential infinite loop in roqvideo_decode_frame(). Revert "libmp3lame: use the correct remaining buffer size when flushing" lzo: fix overflow checking in copy_backptr() flacdec: simplify bounds checking in flac_probe() atrac3: avoid oversized shifting in decode_bytes() avconv: skip attached files when selecting streams to read from. lavf: fix arithmetic overflows in avformat_seek_file() Conflicts: Changelog avconv.c libavcodec/libmp3lame.c libavcodec/msrledec.c libavformat/utils.c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-04-07 15:42:45 +02:00
Michael Niedermayer	0af8ed29e4	Merge commit 'f82e127dd9c7c0d54bf6400f83c7825e571f9a9e' into release/0.10 * commit 'f82e127dd9c7c0d54bf6400f83c7825e571f9a9e': parser: fix large overreads dsputil: fix invalid array indexing shorten: use the unsigned type where needed shorten: report meaningful errors shorten: K&R formatting cosmetics shorten: set invalid channels count to 0 matroskadec: request a read buffer for the wav header h264: check for luma and chroma bit depth being equal vc1: Move init code shared between decoder and parser to common code file. libmp3lame: use the correct remaining buffer size when flushing xxan: fix invalid memory access in xan_decode_frame_type0() wmadec: require block_align to be set. Conflicts: libavcodec/h264.c libavcodec/libmp3lame.c libavcodec/shorten.c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-04-07 15:33:22 +02:00
Michael Niedermayer	a7908ac012	Merge commit '9b79a05289d91d1184455d12e6c4df457f0657c4' into release/0.10 * commit '9b79a05289d91d1184455d12e6c4df457f0657c4': wmaprodec: return an error, not 0, when the input is too small. vmdaudio: fix invalid reads when packet size is not a multiple of chunk size vorbisdec: Error on bark_map_size equal to 0. configure: clean up Altivec detection Update RELEASE file for 0.8.6 update year to 2013 oggdec: make sure the private parse data is cleaned up (cherry picked from commit d894f74762bc95310ba23f804b7ba8dffc8f6646) build: Fix CAF demuxer dependencies doc: developer: Allow tabs in the vim configuration for Automake files doc: filters: Correct BNF FILTER description Conflicts: RELEASE cmdutils.c libavcodec/vmdav.c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-04-07 14:47:49 +02:00
Paul B Mahol	1aa50348d8	smacker: fix off by one error Regression since a93b572ae4f517ce0c35cf085167c318e9215908. Fixes #2426. Signed-off-by: Paul B Mahol <onemda@gmail.com> (cherry picked from commit e3cc92a623a6ece42816c7a692c8815688a99ab0)	2013-04-03 15:17:26 +02:00
Carl Eugen Hoyos	8b72bcba71	Write broken aac frames to mov files instead of skipping them. Fixes decoding with picky media players. Signed-off-by: Michael Niedermayer <michaelni@gmx.at> (cherry picked from commit b448c0a68d0cc7dfef736267dfdaed0e213c020b) Conflicts: libavformat/movenc.c	2013-04-02 12:55:10 +02:00
Carl Eugen Hoyos	5dd5cfd0b8	Only test the first frame for missing aac_adtstoasc bistream filter. Many players ignore broken aac frames, so don't abort mov or flv muxing when encountering one, just print a warning instead. Fixes ticket #2380. (cherry picked from commit 1741fece7073f51efdd837a4f307ea2cdf3d1cfb) Conflicts: libavformat/flvenc.c	2013-03-27 01:03:48 +01:00
Kostya Shishkov	36aad4f1cc	iff: validate CMAP palette size Fixes CVE-2013-2495 Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Luca Barbato <lu_zero@gentoo.org> CC: libav-stable@libav.org (cherry picked from commit 50c449ac24fbb4c03c15d2e2026cef2204b80385) Signed-off-by: Reinhard Tartler <siretart@tauware.de> (cherry picked from commit 31a77177ff323ef83944c60a8654891213ab6691) Signed-off-by: Reinhard Tartler <siretart@tauware.de>	2013-03-18 20:24:49 +01:00
Xi Wang	d8010bda7a	flacdec: simplify bounds checking in flac_probe() Simplify `p->buf > p->buf + p->buf_size - 4' as `p->buf_size < 4'. Avoid a possible out-of-bounds pointer, which is undefined behavior in C. CC: libav-stable@libav.org Signed-off-by: Xi Wang <xi.wang@gmail.com> Signed-off-by: Luca Barbato <lu_zero@gentoo.org> (cherry picked from commit 8425d693eefbedbb41f91735614d41067695aa37)	2013-03-15 13:33:35 +01:00
Mans Rullgard	d8fbae3c3c	lavf: fix arithmetic overflows in avformat_seek_file() The values compared here can be more than INT64_MAX apart. Since the difference is always positive, converting to uint64_t before subtracting gives the correct result without overflows. Signed-off-by: Mans Rullgard <mans@mansr.com> (cherry picked from commit 91ac403b1316d59b4f43c4ea0f237e24cec2819a) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-03-13 14:14:54 +01:00
Luca Barbato	9314af3b2e	matroskadec: request a read buffer for the wav header Solve an infiniloop. CC: libav-stable@libav.org (cherry picked from commit 37cb3b180a1dc3d6f123f68e0806585ebc2578b6) Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2013-03-12 20:05:39 +01:00
Luca Barbato	8829c79039	oggdec: make sure the private parse data is cleaned up (cherry picked from commit d894f74762bc95310ba23f804b7ba8dffc8f6646) Related to CVE-2012-2882 Conflicts: libavformat/oggdec.h libavformat/oggparsevorbis.c	2013-03-09 18:54:27 +01:00
Carl Eugen Hoyos	85e082d081	Require at least three frames to autodetect loas. (cherry picked from commit a60530e3ee1d9532c026a52b03661f88e163d647)	2013-03-02 02:05:14 +01:00
Nicolas George	eeacc5a7d0	lavf/avio: check for : in filenames for protocols. If the first "special" character in a filename is a comma, it can introduce protocol options, but only if there is a colon at the end. Otherwise, it is just a filename with a comma. Fix trac ticket #2303. (cherry picked from commit d9fad53f4b447db1e436dcf3fc4a57e604616e6c)	2013-03-01 08:59:38 +01:00
Carl Eugen Hoyos	8344601712	Write the fiel atom to mov files independently of the used video coded. The QuickTime specification does not contain any hint that the atom must not be written in some cases and both the QuickTime and the AVID decoders do not fail if the atom is present. This change allows to signal (visually) interlaced streams with a codec different from uncompressed video. As a side-effect, this fixes ticket #2202 (cherry picked from commit 7d0e3b197c817b307d599a23704a44763ed0bbdd) Conflicts: libavformat/movenc.c tests/ref/lavf/mov tests/ref/seek/lavf_mov tests/ref/vsynth/vsynth1-avui tests/ref/vsynth/vsynth1-dnxhd-1080i tests/ref/vsynth/vsynth1-mpeg4 tests/ref/vsynth/vsynth2-avui tests/ref/vsynth/vsynth2-dnxhd-1080i tests/ref/vsynth/vsynth2-mpeg4	2013-02-14 15:47:23 +01:00
Xi Wang	ef953f760e	rtmp: fix buffer overflows in ff_amf_tag_contents() A negative `size' will bypass FFMIN(). In the subsequent memcpy() call, `size' will be considered as a large positive value, leading to a buffer overflow. Change the type of `size' to unsigned int to avoid buffer overflow, and simplify overflow checks accordingly. Signed-off-by: Xi Wang <xi.wang@gmail.com> Signed-off-by: Michael Niedermayer <michaelni@gmx.at> (cherry picked from commit 4e692374f7962ea358c329de38c380103f8991b6) Signed-off-by: Michael Niedermayer <michaelni@gmx.at>	2013-02-14 15:18:23 +01:00
Xi Wang	69b3fedc09	rtmp: fix multiple broken overflow checks Sanity checks like `data + size >= data_end \|\| data + size < data' are broken, because `data + size < data' assumes pointer overflow, which is undefined behavior in C. Many compilers such as gcc/clang optimize such checks away. Use `size < 0 \|\| size >= data_end - data' instead. Signed-off-by: Xi Wang <xi.wang@gmail.com> Signed-off-by: Michael Niedermayer <michaelni@gmx.at> (cherry picked from commit 902cfe2f74d777a7dc20ac68f2393b9f84b790c1) Signed-off-by: Michael Niedermayer <michaelni@gmx.at>	2013-02-14 15:18:23 +01:00
Xi Wang	165f783235	rtpenc: fix overflow checking in avc_mp4_find_startcode() The check `start + res < start' is broken since pointer overflow is undefined behavior in C. Many compilers such as gcc/clang optimize away this check. Use `res > end - start' instead. Also change `res' to unsigned int to avoid signed left-shift overflow. Signed-off-by: Xi Wang <xi.wang@gmail.com> Signed-off-by: Michael Niedermayer <michaelni@gmx.at> (cherry picked from commit 2f014567cfd63e58156f60666f1a61ba147276ab) Signed-off-by: Michael Niedermayer <michaelni@gmx.at>	2013-02-14 15:18:23 +01:00
Carl Eugen Hoyos	4e869e7a5f	matroskaenc: add codec_tag lists back. This reverts 312645e : "Do not set codec_tag property for matroska muxers." Also adds dummy codec_tag lists with codecs supported in mkv but not in wav / avi. Fixes ticket #2169. (cherry picked from commit df39c3ce385c02cbd8046298578ea7454c0a0f81) Conflicts: libavformat/matroskaenc.c	2013-01-24 02:42:38 +01:00
Michael Niedermayer	492eb0aa14	Merge remote-tracking branch 'qatar/release/0.8' into release/0.10 * qatar/release/0.8: Update Changelog h264: check ref_count validity for num_ref_idx_active_override_flag h264: check context state before decoding slice data partitions oggdec: free the ogg streams on read_header failure oggdec: check memory allocation Fix uninitialized reads on malformed ogg files. rtsp: Recheck the reordering queue if getting a new packet opt: avoid segfault in av_opt_next() if the class does not have an option list alacdec: do not be too strict about the extradata size Conflicts: Changelog Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-01-17 02:33:07 +01:00
Michael Niedermayer	c961ce969a	Merge commit 'a335ffd7f4cdaaa6a8fe4187f6f06b0418eea19a' into release/0.10 * commit 'a335ffd7f4cdaaa6a8fe4187f6f06b0418eea19a': h264: fix sps parsing for SVC and CAVLC 4:4:4 Intra profiles h264: check sps.log2_max_frame_num for validity h264: slice-mt: get last_pic_dropable from master context ppc: always use pic for shared libraries h264: error out on unset current_picture_ptr for h->current_slice > 0 flashsv: make sure data for zlib priming is available h264: enable low delay only if no delayed frames were seen flashsv: check for keyframe before using differential coding lavf: avoid integer overflow in ff_compute_frame_duration() aacdec: Fix an off-by-one overwrite when switching to LTP profile from MAIN. APIchanges: Fill in missing commit hashes Conflicts: doc/APIchanges Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-01-17 02:20:20 +01:00
Michael Niedermayer	ea3b68c99d	Merge commit 'dcf8f259d107838ff3778343dcb762398130a1a3' into release/0.10 * commit 'dcf8f259d107838ff3778343dcb762398130a1a3': build: Add 'check' target to run all compile and test targets. Ignore generated aviocat tool. avconv: only apply presets when we have an encoder. flacenc: ensure the order is within the min/max range in LPC order search yuv4mpeg: reject unsupported codecs vp8: reset loopfilter delta values at keyframes. vp56: release frames on error vp56: make parse_header return standard error codes ivi_common: check that scan pattern is set before using it. Prepare for 0.8.5 Release x86: Require an assembler able to cope with AVX instructions Conflicts: RELEASE avconv.c doc/developer.texi libavformat/yuv4mpeg.c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2013-01-17 01:29:26 +01:00
Luca Barbato	03fec31cd7	oggdec: free the ogg streams on read_header failure Plug an annoying memory leak on broken files. (cherry picked from commit 89b51b570daa80e6e3790fcd449fe61fc5574e07) Signed-off-by: Luca Barbato <lu_zero@gentoo.org> (cherry picked from commit 42bd6d9cf681306d14c92af97a40116fe4eb2522) Conflicts: libavformat/oggdec.c	2013-01-12 17:59:41 +01:00
Luca Barbato	6eebba08e1	oggdec: check memory allocation (cherry picked from commit ba064ebe48376e199f353ef0b335ed8a39c638c5) Conflicts: libavformat/oggdec.c	2013-01-12 17:59:41 +01:00
Dale Curtis	9ded14fcb8	Fix uninitialized reads on malformed ogg files. The ogg decoder wasn't padding the input buffer with the appropriate FF_INPUT_BUFFER_PADDING_SIZE bytes. Which led to uninitialized reads in various pieces of parsing code when they thought they had more data than they actually did. Signed-off-by: Dale Curtis <dalecurtis@chromium.org> Signed-off-by: Ronald S. Bultje <rsbultje@gmail.com> (cherry picked from commit ef0d779706c77ca9007527bd8d41e9400682f4e4) Signed-off-by: Reinhard Tartler <siretart@tauware.de>	2013-01-12 17:59:40 +01:00
Martin Storsjö	d1d329932f	rtsp: Recheck the reordering queue if getting a new packet If we timed out and consumed a packet from the reordering queue, but didn't return a packet to the caller, recheck the queue status. Otherwise, we could end up in an infinite loop, trying to consume a queued packet that has already been consumed. CC: libav-stable@libav.org Signed-off-by: Martin Storsjö <martin@martin.st> (cherry picked from commit 8729698d50739524665090e083d1bfdf28235724) Signed-off-by: Reinhard Tartler <siretart@tauware.de>	2013-01-12 17:59:40 +01:00

1 2 3 4 5 ...

9475 Commits