diff options
| author | Reinhard Tartler <siretart@tauware.de> | 2014-08-06 20:07:33 -0400 |
|---|---|---|
| committer | Reinhard Tartler <siretart@tauware.de> | 2014-08-06 20:07:33 -0400 |
| commit | ecda9b90eccc687202fe9fa20f7ca61d92d816b4 (patch) | |
| tree | 5edda71dd32d954d5bd142d26f8e21c69b521043 | |
| parent | 52254067b312e78d30bbe79fc33dbdf995b22b4e (diff) | |
| download | ffmpeg-ecda9b90eccc687202fe9fa20f7ca61d92d816b4.tar.gz | |
Update Changelog for v9.15
| -rw-r--r-- | Changelog | 18 |
1 files changed, 18 insertions, 0 deletions
@@ -1,5 +1,23 @@ Releases are sorted from youngest to oldest. +version 9.15: +- error_concealment: avoid using the picture if not fully setup (CVE-2013-0860) +- svq1: do not modify the input packet +- cdgraphics: do not return 0 from the decode function +- cdgraphics: switch to bytestream2 (CVE-2013-3674) +- huffyuvdec: check width size for yuv422p (CVE-2013-0848) +- mmvideo: check horizontal coordinate too (CVE-2013-3672) +- wmalosslessdec: fix mclms_coeffs* array size (CVE-2014-2098) +- lavc: Check the image size before calling get_buffer (CVE-2011-3935) +- huffyuv: Check and propagate function return values (CVE-2013-0868) +- h264: prevent theoretical infinite loop in SEI parsing (CVE-2011-3946) +- h264_sei: check SEI size +- pgssubdec: Check RLE size before copying (CVE-2013-0852) +- fate: Add dependencies for dct/fft/mdct/rdft tests +- video4linux2: Avoid a floating point exception +- vf_select: Drop a debug av_log with an unchecked double to enum conversion +- eamad: use the bytestream2 API instead of AV_RL (CVE-2013-0851) + version 9.14: - adpcm: Write the proper predictor in trellis mode in IMA QT - adpcm: Avoid reading out of bounds in the IMA QT trellis encoder |