[FFmpeg-cvslog] Update Changelog for v9.15
Reinhard Tartler
git at videolan.org
Fri Aug 8 16:16:45 CEST 2014
ffmpeg | branch: release/1.1 | Reinhard Tartler <siretart at tauware.de> | Wed Aug 6 20:07:33 2014 -0400| [ecda9b90eccc687202fe9fa20f7ca61d92d816b4] | committer: Reinhard Tartler
Update Changelog for v9.15
> http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=ecda9b90eccc687202fe9fa20f7ca61d92d816b4
---
Changelog | 18 ++++++++++++++++++
1 file changed, 18 insertions(+)
diff --git a/Changelog b/Changelog
index b23f5ef..96171c9 100644
--- a/Changelog
+++ b/Changelog
@@ -1,5 +1,23 @@
Releases are sorted from youngest to oldest.
+version 9.15:
+- error_concealment: avoid using the picture if not fully setup (CVE-2013-0860)
+- svq1: do not modify the input packet
+- cdgraphics: do not return 0 from the decode function
+- cdgraphics: switch to bytestream2 (CVE-2013-3674)
+- huffyuvdec: check width size for yuv422p (CVE-2013-0848)
+- mmvideo: check horizontal coordinate too (CVE-2013-3672)
+- wmalosslessdec: fix mclms_coeffs* array size (CVE-2014-2098)
+- lavc: Check the image size before calling get_buffer (CVE-2011-3935)
+- huffyuv: Check and propagate function return values (CVE-2013-0868)
+- h264: prevent theoretical infinite loop in SEI parsing (CVE-2011-3946)
+- h264_sei: check SEI size
+- pgssubdec: Check RLE size before copying (CVE-2013-0852)
+- fate: Add dependencies for dct/fft/mdct/rdft tests
+- video4linux2: Avoid a floating point exception
+- vf_select: Drop a debug av_log with an unchecked double to enum conversion
+- eamad: use the bytestream2 API instead of AV_RL (CVE-2013-0851)
+
version 9.14:
- adpcm: Write the proper predictor in trellis mode in IMA QT
- adpcm: Avoid reading out of bounds in the IMA QT trellis encoder
More information about the ffmpeg-cvslog
mailing list