Change log for libav package in Ubuntu
| 1 → 75 of 101 results | First • Previous • Next • Last |
libav (6:9.20-0ubuntu0.14.04.1) trusty-security; urgency=medium
* SECURITY UPDATE: Updated to 9.20 to fix various crashes with
invalid-free, corrupted double-linked list or out-of-bounds read
(LP: #1643467)
- No CVE number
-- Marc Deslauriers <email address hidden> Wed, 07 Dec 2016 15:36:50 -0500
libav (4:0.8.17-0ubuntu0.12.04.2) precise-security; urgency=medium
* SECURITY UPDATE: invalid memory access via crafted MJPEG data
- debian/patches/CVE-2014-8541.patch: check for pixel format changes in
libavcodec/mjpegdec.c.
- CVE-2014-8541
* SECURITY UPDATE: out of array access in ff_mjpeg_decode_sof
- debian/patches/CVE-2015-1872.patch: check number of components in
libavcodec/mjpegdec.c.
- CVE-2015-1872
* SECURITY UPDATE: out of bounds array access in msrle_decode_pal4
- debian/patches/CVE-2015-3395.patch: determine frame size in
libavcodec/msrledec.c.
- CVE-2015-3395
* SECURITY UPDATE: size issue in ff_h263_decode_picture_header
- debian/patches/CVE-2015-5479.patch: check both dimensions in
libavcodec/ituh263dec.c.
- CVE-2015-5479
* SECURITY UPDATE: out of bounds array access in decode_ihdr_chunk
- debian/patches/CVE-2015-6818.patch: only allow one IHDR chunk in
libavcodec/pngdec.c.
- CVE-2015-6818
* SECURITY UPDATE: out of bounds array access in ff_sbr_apply
- debian/patches/CVE-2015-6820.patch: check that the element type
matches in libavcodec/aacsbr.c, libavcodec/sbr.h.
- CVE-2015-6820
* SECURITY UPDATE: uninitialized memory access in sws_init_context
- debian/patches/CVE-2015-6824.patch: clear buffers in
libswscale/utils.c
- CVE-2015-6824
* SECURITY UPDATE: invalid pointer use in ff_rv34_decode_init_thread_copy
- debian/patches/CVE-2015-6826.patch: clear pointers in
libavcodec/rv34.c.
- CVE-2015-6826
* SECURITY UPDATE: integer overflow in ff_ivi_init_planes
- debian/patches/CVE-2015-8364.patch: check image dimensions in
libavcodec/ivi_common.c.
- CVE-2015-8364
* SECURITY UPDATE: out of bounds array access in smka_decode_frame
- debian/patches/CVE-2015-8365.patch: validate data size in
libavcodec/smacker.c.
- CVE-2015-8365
* SECURITY UPDATE: cross-origin attack and arbitrary file read via the
concat protocol
- debian/confflags: disable concat protocol.
- CVE-2016-1897
- CVE-2016-1898
* SECURITY UPDATE: integer overflow in asf_write_packet
- debian/patches/CVE-2016-2326.patch: check pts in
libavformat/asfenc.c.
- CVE-2016-2326
* SECURITY UPDATE: out of bounds array access via tga file
- debian/patches/CVE-2016-2330.patch: fix lzw buffer size in
libavcodec/gif.c.
- CVE-2016-2330
-- Marc Deslauriers <email address hidden> Fri, 01 Apr 2016 08:30:13 -0400
| Deleted in wily-release (Reason: lp: #1503223, remove libav from wily, replaced by ffmpeg) |
| Deleted in wily-proposed (Reason: moved to release) |
libav (6:11.4-2ubuntu3) wily; urgency=medium * No-change rebuild against libjack-jackd2-0v5 -- Steve Langasek <email address hidden> Tue, 11 Aug 2015 06:52:07 +0000
Available diffs
- diff from 6:11.4-2ubuntu2 to 6:11.4-2ubuntu3 (329 bytes)
libav (6:11.4-2ubuntu2) wily; urgency=medium * Delete more .so files (for optimised builds). -- Iain Lane <email address hidden> Mon, 27 Jul 2015 14:15:04 +0100
Available diffs
| Superseded in wily-proposed |
libav (6:11.4-2ubuntu1) wily; urgency=medium
* Drop -dev packages and libavcodec-extra. These have been taken over by
ffmpeg now.
-- Iain Lane <email address hidden> Mon, 27 Jul 2015 09:43:51 +0100
Available diffs
| Superseded in wily-proposed |
libav (6:11.4-2build1) wily; urgency=medium * No-change rebuild against new libvpx -- Iain Lane <email address hidden> Fri, 24 Jul 2015 17:58:13 +0100
Available diffs
- diff from 6:11.4-2 (in Debian) to 6:11.4-2build1 (337 bytes)
libav (6:11.4-2) unstable; urgency=medium
* debian/*.lintian-overrides: Use architecture specific overrides to fix
arch-dependent files in M-A: same package. (Closes: #787406)
* debian/changelog: Wrap some lines at 80 characters to make lintian happy.
-- Sebastian Ramacher <email address hidden> Wed, 03 Jun 2015 22:31:27 +0200
Available diffs
- diff from 6:11.3-3build1 (in Ubuntu) to 6:11.4-2 (14.1 KiB)
- diff from 6:11.4-1 to 6:11.4-2 (1.5 KiB)
libav (6:11.4-1) unstable; urgency=high
[ Reinhard Tartler ]
* Bumped urgency because of two security patches, see below
* Imported Upstream version 11.4
- h264: Make sure reinit failures mark the context as not initialized (CVE-2015-3417)
- msrle: Use FFABS to determine the frame size in msrle_decode_pal4 (CVE-2015-3395)
- cavs: Remove an unneeded scratch buffer
- configure: Disable i686 for i586 and lower CPUs (debian/783082)
- mjpegenc: Fix JFIF header byte ordering (bug/808)
- nut: Make sure to clean up on read_header failure
- png: Set the color range as full range
- avi: Validate sample_size
- nut: Check chapter creation in decode_info_header
- alac: Reject rice_limit 0 if compression is used
- ape: Support _0000 files with nblock smaller than 64
- mux: Do not leave stale side data pointers in ff_interleave_add_packet()
- avresample: Reallocate the internal buffer to the correct size (bug/825)
- mpegts: Update the PSI/SI table only if the version change
- rtsp: Make sure we don't write too many transport entries into a fixed-size array
- rtpenc_jpeg: Handle case of picture dimensions not dividing by 8
- mov: Fix little endian audio detection
- x86: Put COPY3_IF_LT under HAVE_6REGS (gentoo/541930)
- roqvideoenc: set enc->avctx in roq_encode_init
- mp3: Properly use AVCodecContext API
- libvpx: Fix mixed use of av_malloc() and av_reallocp()
- Revert "lavfi: always check av_expr_parse_and_eval() return value"
- alsdec: only adapt order for positive max_order
- alsdec: check sample pointer range in revert_channel_correlation
- aacpsy: correct calculation of minath in psy_3gpp_init
- alsdec: limit avctx->bits_per_raw_sample to 32
- aasc: return correct buffer size from aasc_decode_frame
- matroskadec: fix crash when parsing invalid mkv
- avconv: do not overwrite the stream codec context for streamcopy
- webp: ensure that each transform is only used once
- h264_ps: properly check cropping parameters against overflow
- hevc: zero the correct variables on invalid crop parameters
- hevc: make the crop sizes unsigned
* drop 01-configure-disable-i686-for-i586
[ Sebastian Ramacher ]
* debian/control:
- Remove obsolete Breaks, Replaces and Conflicts.
- Fix description to make lintian happy.
* debian/rules:
- Remove dh_builddeb compression override. This is the default since dpkg
1.17.0.
- Use dh_installdocs to install documentation.
- Use dh_minstallman to install manpages.
* debian/{libav-tools.links,rules}: De-duplicate documentation
* debian/*.lintian-overrides:
- Install non-fpic code lintian overrides only for i386 packages.
* debian/source/lintian-overrides: Removed obsolete lintian override.
* debian/*.doc-base: Add more doc-base registrations
* debian/copyright:
- Remove files that do no longer exist.
- Update some copyright years.
-- Reinhard Tartler <email address hidden> Sun, 31 May 2015 13:11:50 -0400
Available diffs
libav (6:11.3-3build1) wily; urgency=medium * No change rebuild for new x264 -- Micah Gersten <email address hidden> Tue, 12 May 2015 22:44:54 -0500
Available diffs
- diff from 6:11.3-3 (in Debian) to 6:11.3-3build1 (328 bytes)
libav (6:11.3-3) unstable; urgency=medium
* Fix use of illegal instruction on i586. (Closes: #783082)
- debian/confflags: Pass correct value to --cpu. Thanks to Bernhard
Übelacker for the patch.
- debian/patches:
+ 01-configure-disable-i686-for-i586.patch: Upstream patch to disable
i686 on instructions on i586.
+ 02-configure-disable-ebx-gcc-4.9.patch: Workaround build failure with
gcc 4.9 and newer by disabling the use of ebx in handwritten assembler
code. Thanks to Bernhard Übelacker for the initial patch.
-- Sebastian Ramacher <email address hidden> Tue, 05 May 2015 21:38:02 +0200
Available diffs
- diff from 6:11.2-1 to 6:11.3-3 (8.4 KiB)
libav (6:9.18-0ubuntu0.14.04.1) trusty-security; urgency=medium * Update to 9.18 to fix multiple security issues (LP: #1432610, LP: #1370175) - CVE-2013-7020 - CVE-2014-8542 - CVE-2014-8543 - CVE-2014-8544 - CVE-2014-8547 - CVE-2014-8548 - CVE-2014-9604 -- Marc Deslauriers <email address hidden> Mon, 16 Mar 2015 08:16:54 -0400
libav (4:0.8.17-0ubuntu0.12.04.1) precise-security; urgency=medium * Update to 0.8.17 to fix multiple security issues (LP: #1432610) - CVE-2014-8542 - CVE-2014-8543 - CVE-2014-8544 - CVE-2014-8547 - CVE-2014-8548 - CVE-2014-9604 -- Marc Deslauriers <email address hidden> Mon, 16 Mar 2015 08:10:23 -0400
Available diffs
| Superseded in wily-release |
| Obsolete in vivid-release |
| Deleted in vivid-proposed (Reason: moved to release) |
libav (6:11.2-1) unstable; urgency=medium
* New upstream release fixing multiple security issues. (Closes: #773626)
- h264: restore a block mistakenly removed in e10fd08a
- on2avc: check number of channels (CVE-2014-8549)
- smc: fix the bounds check (CVE-2014-8548)
- gifdec: refactor interleave end handling (CVE-2014-8547)
- mmvideo: check frame dimensions (CVE-2014-8543)
- jvdec: check frame dimensions (CVE-2014-8542)
- mjpegdec: check for pixel format changes (CVE-2014-8541)
- mov: avoid a memleak when multiple stss boxes are present
- vc1: Do not assume seek happens after decoding
- avconv: Use the mpeg12 private option scan_offset (Closes: #773055)
- xsub: Support DXSA subtitles
- mp3dec: fix reading the Xing tag
- matroskaenc: write correct Display{Width, Height} in stereo encoding
- configure: Fix enabling memalign_hack automatically
- mp3enc: fix a triggerable assert
- latm: Do not give a score for a single instance
- mp3: Tweak the probe scores
- matroskaenc: write correct Display{Width, Height} in stereo encoding
- coverity: Fix most of the reported warnings and issues
* debian/control: Add myself to Uploaders.
-- Sebastian Ramacher <email address hidden> Sat, 17 Jan 2015 20:56:19 +0100
Available diffs
- diff from 6:11.1-1 to 6:11.2-1 (18.6 KiB)
libav (6:11.1-1) unstable; urgency=medium * Team upload. * Upload to unstable. -- Sebastian Ramacher <email address hidden> Tue, 30 Dec 2014 17:08:42 +0100
Available diffs
- diff from 6:11-2 to 6:11.1-1 (368.0 KiB)
libav (6:11-2) unstable; urgency=medium
* add patches post v11 release, all of which will be included in the
next point release:
- 0001-apetag-Fix-APE-tag-size-check.patch
- 0002-Update-default-FATE-URL-for-release-11.patch
- 0003-h264-Always-invoke-the-get_format-callback.patch
- 0004-mpeg12-Always-invoke-the-get_format-callback.patch
- 0005-hevc-Initialize-mergecand_list-to-0.patch
- 0006-h264-reset-ret-to-avoid-propagating-minor-failures.patch
- 0007-hevc_mvs-initialize-the-temporal-MV-in-case-of-missi.patch
- 0008-hevc_mvs-make-sure-to-always-initialize-the-temporal.patch
- 0009-imc-fix-order-of-operations-in-coefficients-read.patch
- 0010-resample-Avoid-off-by-1-errors-in-PTS-calcs.patch
-- Reinhard Tartler <email address hidden> Sun, 19 Oct 2014 16:18:48 -0400
Available diffs
- diff from 6:11-1 to 6:11-2 (5.8 KiB)
libav (4:0.8.16-0ubuntu0.12.04.1) precise-security; urgency=medium * Update to 0.8.16 to fix multiple security issues (LP: #1370175) * debian/patches/fix_ftbfs_ff_get_buffer.patch: dropped, no longer needed. * debian/patches/04-ffmpeg-warning-change.patch: dropped, no longer needed. -- Marc Deslauriers <email address hidden> Tue, 16 Sep 2014 13:15:21 -0400
Available diffs
| Superseded in vivid-release |
| Obsolete in utopic-release |
| Deleted in utopic-proposed (Reason: moved to release) |
libav (6:11-1) unstable; urgency=low
* Upload final 11 release
- matroskadec: parse stereo mode on decoding (Closes: #757185)
-- Reinhard Tartler <email address hidden> Sat, 13 Sep 2014 15:36:38 -0400
Available diffs
- diff from 6:11~beta1-2 to 6:11-1 (17.7 KiB)
libav (6:11~beta1-2) unstable; urgency=medium [ Reinhard Tartler ] * Make libavcodec-dev depend on libavresample-dev [ Rico Tzschichholz ] * Some fixes and leftovers from soname bumps -- Reinhard Tartler <email address hidden> Sat, 30 Aug 2014 11:02:45 -0400
Available diffs
- diff from 6:10.4-1 to 6:11~beta1-2 (1.3 MiB)
libav (6:10.4-1) unstable; urgency=medium
* New Upstream Release v10.3
- mpegts: Do not try to write a PMT larger than SECTION_SIZE
(CVE-2014-2263)
- mpegts: Define the section length with a constant
- ffv1dec: check that global parameters do not change in version 0/1
(CVE-2013-7020)
- h264: fix interpretation of interleaved stereo modes
- svq1: do not modify the input packet
- cdgraphics: do not return 0 from the decode function
- cdgraphics: switch to bytestream2 (CVE-2013-3674)
- jpeg2000: enable 4 component pixel formats
- stereo3d: add missing include guards
- huffyuvdec: check width size for yuv422p (CVE-2013-0848)
- mmvideo: check horizontal coordinate too (CVE-2013-3672)
- wmalosslessdec: fix mclms_coeffs* array size (CVE-2014-2098)
* build against libgnutls28-dev (Closes: #758447)
-- Reinhard Tartler <email address hidden> Sun, 17 Aug 2014 21:55:47 -0400
Available diffs
- diff from 6:10.3-1 to 6:10.4-1 (4.8 KiB)
- diff from 6:10.3-1build1 (in Ubuntu) to 6:10.4-1 (4.8 KiB)
libav (6:10.3-1build1) utopic; urgency=high * No change rebuild against gnutls28. -- Dimitri John Ledkov <email address hidden> Fri, 15 Aug 2014 23:09:06 +0100
Available diffs
- diff from 6:10.3-1 (in Debian) to 6:10.3-1build1 (319 bytes)
libav (6:9.16-0ubuntu0.14.04.1) trusty-security; urgency=medium
* New upstream release 9.14:
- vp3: Copy all 3 frames for thread updates (CVE-2011-3934)
- mpegts: Do not try to write a PMT larger than SECTION_SIZE (CVE-2014-2263)
- mpegts: Define the section length with a constant
- error_concealment: avoid using the picture if not fully setup (CVE-2013-0860)
- svq1: do not modify the input packet
- cdgraphics: do not return 0 from the decode function
- cdgraphics: switch to bytestream2 (CVE-2013-3674)
- huffyuvdec: check width size for yuv422p (CVE-2013-0848)
- mmvideo: check horizontal coordinate too (CVE-2013-3672)
- wmalosslessdec: fix mclms_coeffs* array size (CVE-2014-2098)
- lavc: Check the image size before calling get_buffer (CVE-2011-3935)
- huffyuv: Check and propagate function return values (CVE-2013-0868)
- h264: prevent theoretical infinite loop in SEI parsing (CVE-2011-3946)
- h264_sei: check SEI size
- pgssubdec: Check RLE size before copying (CVE-2013-0852)
- fate: Add dependencies for dct/fft/mdct/rdft tests
- video4linux2: Avoid a floating point exception
- vf_select: Drop a debug av_log with an unchecked double to enum conversion
- eamad: use the bytestream2 API instead of AV_RL (CVE-2013-0851)
-- Reinhard Tartler <email address hidden> Sat, 09 Aug 2014 19:50:43 -0400
Available diffs
libav (4:0.8.15-0ubuntu0.12.04.1) precise-security; urgency=medium * Update to 0.8.15 to fix multiple security issues (LP: #1354755) * debian/patches/fix_ftbfs_ff_get_buffer.patch: Add more missing #includes for ff_get_buffer() to fix ftbfs. -- Marc Deslauriers <email address hidden> Sun, 10 Aug 2014 09:59:10 -0400
Available diffs
libav (6:10.3-1) unstable; urgency=medium
* New Upstream Release v10.3
- huffyuv: Check and propagate function return values (CVE-2013-0868)
- h264: prevent theoretical infinite loop in SEI parsing (CVE-2011-3946)
- pgssubdec: Check RLE size before copying (CVE-2013-0852)
- video4linux2: Avoid a floating point exception
- vf_select: Drop a debug av_log with an unchecked double to enum conversion
- librtmp: Don't free the temp url at the end of rtmp_open
- arm: Avoid using the 'setend' instruction on ARMv7 and newer
- avplay: Handle pixel aspect ratio properly
- eamad: use the bytestream2 API instead of AV_RL (CVE-2013-0851)
- pg2meet: allow size changes within original sizes
- af_compand: make sure request_frame always outputs at least one frame
-- Reinhard Tartler <email address hidden> Sun, 03 Aug 2014 22:30:41 -0400
Available diffs
- diff from 6:10.2-2 to 6:10.3-1 (6.7 KiB)
libav (6:10.2-2) unstable; urgency=low [ Reinhard Tartler ] * Fixed typo in debian/NEWS (Closes: #753453) [ Stefan Lippers-Hollmann ] * libavcodec-extra: declare as Section: metapackages (Closes: #747921) -- Reinhard Tartler <email address hidden> Sun, 20 Jul 2014 14:57:15 -0400
Available diffs
- diff from 6:9.11-2ubuntu3 (in Ubuntu) to 6:10.2-2 (2.6 MiB)
- diff from 6:10.2-1 to 6:10.2-2 (734 bytes)
libav (6:9.14-0ubuntu0.14.04.1) trusty-security; urgency=medium
* New upstream release 9.14:
- Many security fixes issues LP: #1341216
- adpcm: Write the proper predictor in trellis mode in IMA QT
- adpcm: Avoid reading out of bounds in the IMA QT trellis encoder
- Check mp3 header before calling avpriv_mpegaudio_decode_header() (bug/705)
- Check if an mp3 header is using a reserved sample rate
- lzo: Handle integer overflow (bug/704)
- avconv: make -shortest work with streamcopy
* Drop broken dpkg-maintscript, LP: #1315672
-- Reinhard Tartler <email address hidden> Sat, 12 Jul 2014 18:33:45 -0400
Available diffs
libav (6:0.8.13-0ubuntu0.13.10.1) saucy-security; urgency=medium * Update to 0.8.13 to fix multiple security issues (LP: #1341216) -- Marc Deslauriers <email address hidden> Tue, 15 Jul 2014 07:31:39 -0400
Available diffs
libav (4:0.8.13-0ubuntu0.12.04.1) precise-security; urgency=medium * Update to 0.8.13 to fix multiple security issues (LP: #1341216) -- Marc Deslauriers <email address hidden> Tue, 15 Jul 2014 07:24:55 -0400
Available diffs
libav (6:10.2-1) unstable; urgency=high
* Bumping severity for critical LZO security issue.
* New Upstream Release v10.2
- aarch64: Use the correct syntax for relocations (Closes: #751856,
- LP: #1323144)
- ppc: Fix compilation for ppc64le (ELFv2) (LP: #1263802)
- avconv: make -shortest work with streamcopy
- lzo: Handle integer overflow (Reported by Don A. Bailey)
- Check if an mp3 header is using a reserved sample rate.
- Check mp3 header before calling avpriv_mpegaudio_decode_header().
- jpeg2000: fix dereferencing invalid pointers during cleanup
- avpacket: fix copying side data in av_packet_copy_props()
- oggenc: Set the right AVOption size for the pref_duration option
- adpcm: Avoid reading out of bounds in the IMA QT trellis encoder
- adpcm: Write the proper predictor in trellis mode in IMA QT
* No longer build avserver (Closes: #734335)
* Clarify licensing in debian/copyright (Closes: #698019)
-- Reinhard Tartler <email address hidden> Fri, 27 Jun 2014 22:23:32 -0400
Available diffs
libav (4:0.8.12-0ubuntu0.12.04.1) precise-security; urgency=medium
* SECURITY UPDATE: Update to 0.8.12 to fix multiple security issues
- CVE-2014-3984
-- Marc Deslauriers <email address hidden> Tue, 10 Jun 2014 10:12:05 -0400
Available diffs
libav (6:0.8.12-0ubuntu0.13.10.1) saucy-security; urgency=medium
* SECURITY UPDATE: Update to 0.8.12 to fix multiple security issues
- CVE-2014-3984
-- Marc Deslauriers <email address hidden> Tue, 10 Jun 2014 09:34:09 -0400
Available diffs
| Superseded in utopic-proposed |
libav (6:10.1-1) unstable; urgency=low
* New upstream release 10:
- pcm-dvd: Fix 20bit decoding (bug/592)
- avi: Improve non-interleaved detection (bug/666)
- arm: hpeldsp: fix put_pixels8_y2_{,no_rnd_}armv6
- arm: hpeldsp: prevent overreads in armv6 asm (bug/646)
- avfilter: Add missing emms_c when needed
- rtmpproto: Check the buffer sizes when copying app/playpath strings
- swscale: Fix an undefined behaviour
- vp9: Read the frame size as unsigned
- dcadec: Use correct channel count in stereo downmix check
- dcadec: Do not decode the XCh extension when downmixing to stereo
- matroska: add the Opus mapping
- matroskadec: read the CodecDelay element
- rtmpproto: Make sure to pass on the error code if read_connect failed
- lavr: allocate the resampling buffer with a positive size
- mp3enc: Properly write bitrate value in XING header (Closes: #736088)
- golomb: Fix the implementation of get_se_golomb_long
* Drop debian/libav-tools.maintscript. ffserver is no longer found in
stable, and this seems to cause other problems today (Closes: #742676)
-- Reinhard Tartler <email address hidden> Sun, 11 May 2014 12:28:45 -0400
Available diffs
- diff from 6:9.13-1ubuntu1 (in Ubuntu) to 6:10.1-1 (2.6 MiB)
- diff from 6:9.13-1 to 6:10.1-1 (2.6 MiB)
libav (6:9.13-0ubuntu0.14.04.1) trusty-security; urgency=medium
* Merge from unstable, remaining changes:
- build-depend on libtiff5-dev rather than libtiff4-dev,
avoids FTBFS caused by imlib
* New upstream release 9.13:
- Many security fixes issues LP: #1277173
- swscale: Fix an undefined behaviour
- matroska: add the Opus mapping
- mp3enc: Properly write bitrate value in XING header (Closes: #736088)
- origin/pu/9 oggdec: add support for Opus in Ogg demuxing
(Fixes: libav/603, Closes: #720563)
- apedec: do not buffer decoded samples over AVPackets (Closes: #744901)
- isom: lpcm in mov default to big endian
- movdec: handle 0x7fff langcode as macintosh per the specs
- h264: reset next_output_pic earlier in start_frame()
(Fixes: libav/672, Closes: #741240, LP: #1288206)
- rtmpproto: Make sure to pass on the error code if read_connect failed
- lavr: allocate the resampling buffer with a positive size
- tiffdec: use bytestream2 to simplify overread/overwrite protection
- resample: fix avresample_get_delay() return value
- avi: Improve non-interleaved detection (Fixes: libav/666)
- af_channelmap: fix ONE_STR mapping mode
- movenc: allow override of "writing application" tag
- matroskaenc: allow override of "writing application" tag
- avfilter: Add missing emms_c when needed
- build: Use pkg-config for openjpeg (Fixes: libav/387)
- mpeg12: check scantable indices in all decode_block functions
- sgidec: fix buffer size check in expand_rle_row()
- adx: check that the offset is not negative
- mpegvideo: set reference/pict_type on generated reference frames
- h264: Fix various crashes found in samples pointed by Mateusz
"j00ru" Jurczyk and Gynvael Coldwind - Thanks!
* Rebuild is reported to fix vaapi, Closes: #745655
* Fix invocation of dpkg-maintscript helper, LP: #1315672
* cleanup leftovers of the former libav-source package
* Simplify listing packages with dh_listpackage
* Drop transitional arch:all -extra- packages
* Bump standards version to 3.9.5, no changes needed
Available diffs
| Superseded in utopic-proposed |
libav (6:9.13-1ubuntu1) utopic; urgency=low
* Merge from unstable, remaining changes:
- build-depend on libtiff5-dev rather than libtiff4-dev,
avoids FTBFS caused by imlib
* New release fixes security issues LP: #1277173
Available diffs
libav (6:9.11-2ubuntu3) utopic; urgency=high * No change rebuild against librtmp1. -- Dimitri John Ledkov <email address hidden> Sat, 26 Apr 2014 22:31:48 +0100
Available diffs
- diff from 6:9.11-2ubuntu2 to 6:9.11-2ubuntu3 (329 bytes)
| Superseded in utopic-release |
| Published in trusty-release |
| Deleted in trusty-proposed (Reason: moved to release) |
libav (6:9.11-2ubuntu2) trusty; urgency=medium * No-change rebuild for x264 soname bump. -- Matthias Klose <email address hidden> Mon, 24 Mar 2014 05:55:46 +0000
Available diffs
- diff from 6:9.11-2ubuntu1 to 6:9.11-2ubuntu2 (317 bytes)
libav (6:9.11-2ubuntu1) trusty; urgency=low
* Merge from unstable, remaining changes:
- build-depend on libtiff5-dev rather than libtiff4-dev,
avoids FTBFS caused by imlib
* This version of libav supports Opus in Ogg (LP: #1265196)
Available diffs
- diff from 6:9.10-1ubuntu7 to 6:9.11-2ubuntu1 (27.3 KiB)
libav (4:0.8.10-0ubuntu0.12.04.1) precise-security; urgency=medium * Update to 0.8.10 to fix multiple security issues (LP: #1277173) -- Marc Deslauriers <email address hidden> Thu, 06 Feb 2014 12:10:23 -0500
Available diffs
libav (6:0.8.10-0ubuntu0.12.10.1) quantal-security; urgency=medium * Update to 0.8.10 to fix multiple security issues (LP: #1277173) -- Marc Deslauriers <email address hidden> Thu, 06 Feb 2014 12:09:43 -0500
Available diffs
libav (6:0.8.10-0ubuntu0.13.10.1) saucy-security; urgency=medium * Update to 0.8.10 to fix multiple security issues (LP: #1277173) -- Marc Deslauriers <email address hidden> Thu, 06 Feb 2014 12:06:04 -0500
Available diffs
libav (6:9.10-1ubuntu7) trusty; urgency=medium * Drop build-deps arch restriction for libav, bootstrap complete. -- Dimitri John Ledkov <email address hidden> Mon, 23 Dec 2013 20:00:22 +0000
Available diffs
- diff from 6:9.10-1ubuntu6 to 6:9.10-1ubuntu7 (614 bytes)
libav (6:9.10-1ubuntu6) trusty; urgency=medium * Disable altivec optimization for all build flavours on ppc64*. -- Dimitri John Ledkov <email address hidden> Mon, 23 Dec 2013 14:47:28 +0000
Available diffs
- diff from 6:9.10-1ubuntu5 to 6:9.10-1ubuntu6 (529 bytes)
libav (6:9.10-1ubuntu5) trusty; urgency=medium * Build altivec flavor on powerpc only. -- Dimitri John Ledkov <email address hidden> Mon, 23 Dec 2013 09:47:10 +0000
Available diffs
- diff from 6:9.10-1ubuntu2 to 6:9.10-1ubuntu5 (804 bytes)
- diff from 6:9.10-1ubuntu4 to 6:9.10-1ubuntu5 (563 bytes)
| Superseded in trusty-proposed |
libav (6:9.10-1ubuntu4) trusty; urgency=medium * Add altivec flavor build for ppc64,ppc64el. -- Dimitri John Ledkov <email address hidden> Mon, 23 Dec 2013 09:37:09 +0000
Available diffs
- diff from 6:9.10-1ubuntu3 to 6:9.10-1ubuntu4 (488 bytes)
| Superseded in trusty-proposed |
libav (6:9.10-1ubuntu3) trusty; urgency=medium * Specify --enable-pic for ppc64, ppc64el. -- Dimitri John Ledkov <email address hidden> Mon, 23 Dec 2013 09:22:44 +0000
Available diffs
- diff from 6:9.10-1ubuntu2 to 6:9.10-1ubuntu3 (604 bytes)
libav (6:9.10-1ubuntu2) trusty; urgency=medium * Bootstrap libav on ppc64el. -- Dimitri John Ledkov <email address hidden> Mon, 23 Dec 2013 03:45:49 +0000
Available diffs
- diff from 6:9.10-1ubuntu1 to 6:9.10-1ubuntu2 (604 bytes)
libav (6:0.8.9-0ubuntu0.13.04.1) raring-security; urgency=low * Update to 0.8.9 to fix multiple security issues (LP: #1249621) -- Marc Deslauriers <email address hidden> Sat, 09 Nov 2013 10:48:01 -0500
Available diffs
libav (6:0.8.9-0ubuntu0.12.10.1) quantal-security; urgency=low * Update to 0.8.9 to fix multiple security issues (LP: #1249621) -- Marc Deslauriers <email address hidden> Sat, 09 Nov 2013 10:49:20 -0500
Available diffs
libav (6:0.8.9-0ubuntu0.13.10.1) saucy-security; urgency=low * Update to 0.8.9 to fix multiple security issues (LP: #1249621) -- Marc Deslauriers <email address hidden> Sat, 09 Nov 2013 10:46:15 -0500
Available diffs
libav (4:0.8.9-0ubuntu0.12.04.1) precise-security; urgency=low * Update to 0.8.9 to fix multiple security issues (LP: #1249621) -- Marc Deslauriers <email address hidden> Sat, 09 Nov 2013 10:50:36 -0500
Available diffs
libav (6:9.10-1ubuntu1) trusty; urgency=low
* Build all -extra flavors from this source package, as libav got demoted
from main to universe, cf LP: #1243235
* Simplify debian/rules to follow exactly the code that debian executes
* New upstream (LP: #1180288) fixes lots of security issues (LP: #1242802)
* Merge from unstable, remaining changes:
- build-depend on libtiff5-dev rather than libtiff4-dev,
avoids FTBFS caused by imlib
- follow the regular debian codepaths
Available diffs
libav (6:0.8.8-0ubuntu0.12.10.1) quantal-security; urgency=low * Update to 0.8.8 to fix multiple security issues (LP: #1242802) -- Marc Deslauriers <email address hidden> Mon, 21 Oct 2013 13:45:23 -0400
Available diffs
libav (6:0.8.8-0ubuntu0.13.10.1) saucy-security; urgency=low * Update to 0.8.8 to fix multiple security issues (LP: #1242802) -- Marc Deslauriers <email address hidden> Mon, 21 Oct 2013 13:37:07 -0400
Available diffs
libav (4:0.8.8-0ubuntu0.12.04.1) precise-security; urgency=low * Update to 0.8.8 to fix multiple security issues (LP: #1242802) -- Marc Deslauriers <email address hidden> Mon, 21 Oct 2013 13:49:45 -0400
Available diffs
libav (6:0.8.8-0ubuntu0.13.04.1) raring-security; urgency=low * Update to 0.8.8 to fix multiple security issues (LP: #1242802) -- Marc Deslauriers <email address hidden> Mon, 21 Oct 2013 13:43:38 -0400
Available diffs
| Superseded in trusty-release |
| Superseded in trusty-release |
| Obsolete in saucy-release |
| Deleted in saucy-proposed (Reason: moved to release) |
libav (6:0.8.7-1ubuntu2) saucy; urgency=low
* debian/patches/{05-aarch64-support.patch,06-aarch64-pie.patch}:
- Backport basic aarch64 support from git.
-- William Grant <email address hidden> Fri, 11 Oct 2013 16:59:06 +1100
Available diffs
libav (6:0.8.7-1ubuntu1) saucy; urgency=low
* Merge from debian/unstable, remaining changes:
- don't build against libdirac, lame, libopenjpeg, librtmp, frei0r,
vo-aacenc, vo-amrenc, x264, and xvid (all in universe)
- do not build libav-extra-dbg, it is build from the libav-extra source
package in ubuntu.
- drop libav-regular-dbg, not necessary in ubuntu
- Adjust LIB_PKGS/LIB_PKGS2 lists in debian/rules
- several ifdefs in debian/rules that allow the use of the same file
in libav and libav-extra (most of this can be merged into the debian
package)
Available diffs
libav (6:0.8.6-0ubuntu0.12.10.1) quantal-security; urgency=low * Update to 0.8.6 to fix multiple security issues. (LP: #1163354) - CVE-2013-0894 - CVE-2013-2277 - CVE-2013-2495 - CVE-2013-2496 -- Marc Deslauriers <email address hidden> Tue, 02 Apr 2013 10:44:55 -0400
Available diffs
libav (4:0.8.6-0ubuntu0.12.04.1) precise-security; urgency=low * Update to 0.8.6 to fix multiple security issues. (LP: #1163354) - CVE-2013-0894 - CVE-2013-2277 - CVE-2013-2495 - CVE-2013-2496 -- Marc Deslauriers <email address hidden> Tue, 02 Apr 2013 10:48:44 -0400
Available diffs
| Superseded in saucy-release |
| Obsolete in raring-release |
| Deleted in raring-proposed (Reason: moved to release) |
libav (6:0.8.6-1ubuntu2) raring; urgency=low
* Put back the dh_strip invocations. Otherwise, no .ddebs will be
available at all.
-- Reinhard Tartler <email address hidden> Sat, 30 Mar 2013 22:41:36 +0100
Available diffs
- diff from 6:0.8.6-1ubuntu1 to 6:0.8.6-1ubuntu2 (528 bytes)
libav (6:0.8.6-1ubuntu1) raring; urgency=low * Merge from debian/unstable, LP: #1160734, remaining changes: - don't build against libdirac, lame, libopenjpeg, librtmp, frei0r, vo-aacenc, vo-amrenc, x264, and xvid (all in universe) - do not build libav-extra-dbg, it is build from the libav-extra source package in ubuntu. - drop libav-regular-dbg, not necessary in ubuntu - Adjust LIB_PKGS/LIB_PKGS2 lists in debian/rules - several ifdefs in debian/rules that allow the use of the same file in libav and libav-extra (most of this can be merged into the debian package) * Tested that co-instability of libavcodec-dev with libavcodec-extra-53 works. LP: #1143929, #1101829 * Remove all debug packages. In ubuntu, we provide debug symbols via the .ddeb infrastructure.
Available diffs
libav (4:0.7.6-0ubuntu0.11.10.3) oneiric-security; urgency=low * SECURITY UPDATE: unspecified security issue in vp56.c (LP: #1104019) - debian/patches/CVE-2012-2783.patch: release frames on error in libavcodec/vp56.c. - CVE-2012-2783 * SECURITY UPDATE: unspecified security issue in Indeo (LP: #1104019) - debian/patches/CVE-2012-2791.patch: check that scan pattern is set before using it in libavcodec/ivi_common.c. - CVE-2012-2791 * SECURITY UPDATE: double free vulnerability in mpeg_decode_frame - debian/patches/CVE-2012-2803.patch: do not decode extradata more than once in libavcodec/mpeg12.c. - CVE-2012-2803 * SECURITY UPDATE: issue in AAC decoding - debian/patches/CVE-2012-5144.patch: fix off-by-one in libavcodec/aacdec.c. - CVE-2012-5144 -- Marc Deslauriers <email address hidden> Thu, 24 Jan 2013 13:31:43 -0500
Available diffs
libav (4:0.8.5-0ubuntu0.12.04.1) precise-security; urgency=low * Update to 0.8.5 to fix multiple security issues. (LP: #1104019) - CVE-2012-2783 - CVE-2012-2791 - CVE-2012-2797 - CVE-2012-2798 - CVE-2012-2801 - CVE-2012-2802 - CVE-2012-2803 - CVE-2012-2804 - CVE-2012-5144 -- Marc Deslauriers <email address hidden> Thu, 24 Jan 2013 09:14:05 -0500
Available diffs
libav (6:0.8.5-0ubuntu0.12.10.1) quantal-security; urgency=low * Update to 0.8.5 to fix multiple security issues. (LP: #1104019) - CVE-2012-2783 - CVE-2012-2791 - CVE-2012-2797 - CVE-2012-2798 - CVE-2012-2801 - CVE-2012-2802 - CVE-2012-2803 - CVE-2012-2804 - CVE-2012-5144 -- Marc Deslauriers <email address hidden> Thu, 24 Jan 2013 08:15:51 -0500
Available diffs
libav (6:0.8.5-0ubuntu1) raring; urgency=low * Update to 0.8.5 to fix multiple security issues. (LP: #1104019) - CVE-2012-2783 - CVE-2012-2791 - CVE-2012-2797 - CVE-2012-2798 - CVE-2012-2801 - CVE-2012-2802 - CVE-2012-2803 - CVE-2012-2804 - CVE-2012-5144 -- Marc Deslauriers <email address hidden> Thu, 24 Jan 2013 08:05:12 -0500
Available diffs
libav (4:0.7.6-0ubuntu0.11.10.2) oneiric-security; urgency=low
* SECURITY UPDATE: unspecified security issue in ff_rv34_decode_frame
- debian/patches/CVE-2012-2772.patch: error out on size changes with
frame threading in libavcodec/rv34.c.
- CVE-2012-2772
* SECURITY UPDATE: out of array write in quant_cof
- debian/patches/CVE-2012-2775.patch: check opt_order in
libavcodec/alsdec.c.
- CVE-2012-2775
* SECURITY UPDATE: security issues in decode_pic
- debian/patches/CVE-2012-2777-2784.patch: prevent changing w/h in
libavcodec/cavsdec.c.
- CVE-2012-2777
- CVE-2012-2784
* SECURITY UPDATE: unspecified vulnerability in the decode_frame
- debian/patches/CVE-2012-2779.patch: prevent decoding happening on a
half initialized context in libavcodec/indeo5.c.
- CVE-2012-2779
* SECURITY UPDATE: out of array write in the decode_wdlt function
- debian/patches/CVE-2012-2786.patch: check frame_end in
libavcodec/dfa.c.
- CVE-2012-2786
* SECURITY UPDATE: out of array read in avi_read_packet function
- debian/patches/CVE-2012-2788.patch: use accurate size in
libavformat/avidec.c.
- CVE-2012-2788
* SECURITY UPDATE: unspecified vulnerability in avi_read_packet
- debian/patches/CVE-2012-2789.patch: check num_vec_coeffs for validity
in libavcodec/wmaprodec.c.
- CVE-2012-2789
* SECURITY UPDATE: unspecified vulnerability in read_var_block_data
- debian/patches/CVE-2012-2790.patch: fix number of decoded samples in
libavcodec/alsdec.c.
- CVE-2012-2790
* SECURITY UPDATE: unspecified vulnerability in lag_decode_zero_run_line
- debian/patches/CVE-2012-2793.patch: check count before writing zeros
in libavcodec/lagarith.c.
- CVE-2012-2793
* SECURITY UPDATE: unspecified vulnerability in decode_mb_info
- debian/patches/CVE-2012-2794.patch: check tile size in
libavcodec/indeo5.c.
- CVE-2012-2794
* SECURITY UPDATE: out of array write in decode_dds1
- debian/patches/CVE-2012-2798.patch: fix length check in
libavcodec/dfa.c.
- CVE-2012-2798
* SECURITY UPDATE: unspecified vulnerability in ff_ivi_process_empty_tile
- debian/patches/CVE-2012-2800.patch: check tile sizes in
libavcodec/ivi_common.*, libavcodec/indeo5.c.
- CVE-2012-2800
* SECURITY UPDATE: out of array writes in avs.c
- debian/patches/CVE-2012-2801.patch: force dimensions in
libavcodec/avs.c.
- CVE-2012-2801
-- Marc Deslauriers <email address hidden> Tue, 18 Dec 2012 10:04:54 -0500
Available diffs
libav (6:0.8.4-0ubuntu2) raring; urgency=low * Weaken dependencies on -dev packages. LP: #1038781 -- Reinhard Tartler <email address hidden> Sun, 09 Dec 2012 19:09:54 +0100
Available diffs
- diff from 6:0.8.4-0ubuntu1 to 6:0.8.4-0ubuntu2 (754 bytes)
libav (6:0.8.4-0ubuntu1) raring-proposed; urgency=low * No change rebuild for raring
Available diffs
libav (4:0.8.4-0ubuntu0.12.04.1) precise-security; urgency=low * Update to 0.8.4 to fix multiple security issues. (LP: #1075593) - CVE-2012-2772 - CVE-2012-2775 - CVE-2012-2776 - CVE-2012-2777 - CVE-2012-2779 - CVE-2012-2784 - CVE-2012-2786 - CVE-2012-2787 - CVE-2012-2788 - CVE-2012-2789 - CVE-2012-2790 - CVE-2012-2793 - CVE-2012-2794 - CVE-2012-2796 - CVE-2012-2798 - CVE-2012-2800 - CVE-2012-2801 - CVE-2012-2802 -- Marc Deslauriers <email address hidden> Tue, 06 Nov 2012 11:03:10 -0500
Available diffs
| Deleted in raring-proposed (Reason: moved to release) |
| Superseded in quantal-updates |
| Superseded in quantal-security |
libav (6:0.8.4-0ubuntu0.12.10.1) quantal-security; urgency=low * Update to 0.8.4 to fix multiple security issues. (LP: #1075593) - CVE-2012-2772 - CVE-2012-2775 - CVE-2012-2776 - CVE-2012-2777 - CVE-2012-2779 - CVE-2012-2784 - CVE-2012-2786 - CVE-2012-2787 - CVE-2012-2788 - CVE-2012-2789 - CVE-2012-2790 - CVE-2012-2793 - CVE-2012-2794 - CVE-2012-2796 - CVE-2012-2798 - CVE-2012-2800 - CVE-2012-2801 - CVE-2012-2802 * Removed upstreamed patches: - 0001-h264-allow-cropping-to-AVCodecContext.width-height.patch - 0002-mov-set-AVCodecContext.width-height-for-h264.patch -- Marc Deslauriers <email address hidden> Tue, 06 Nov 2012 10:29:38 -0500
Available diffs
libav (6:0.8.3-6ubuntu2) quantal; urgency=low
* Temporarily fudge the versioning of libavcodec-dev's dependency on
libavcodec-extra-53 to cope with the botched merge of libav-extra.
-- Colin Watson <email address hidden> Mon, 01 Oct 2012 11:48:25 +0100
Available diffs
- diff from 6:0.8.3-6ubuntu1 to 6:0.8.3-6ubuntu2 (556 bytes)
| Superseded in quantal-release |
libav (6:0.8.3-6ubuntu1) quantal; urgency=low
* Merge from debian, remaining changes:
- don't build against libdirac, lame, libopenjpeg, librtmp, frei0r,
vo-aacenc, vo-amrenc, x264, and xvid (all in universe)
- do not build libav-extra-dbg, it is build from the libav-extra source
package in ubuntu.
- drop libav-regular-dbg, not necessary in ubuntu
- Adjust LIB_PKGS/LIB_PKGS2 lists in debian/rules
- several ifdefs in debian/rules that allow the use of the same file
in libav and libav-extra (most of this can be merged into the debian
package)
- several dependency fixups in debian/control
Available diffs
| Superseded in quantal-release |
libav (4:0.8.3-0ubuntu3) quantal; urgency=low
* debian/patches/05-H264-AVCodecContext-cropping.patch: Added patch from
Måns Rullgård to fix H264 video size from Canon DSLR cameras (LP: #937561)
-- Jason Gerard DeRose <email address hidden> Mon, 30 Jul 2012 14:55:29 -0600
Available diffs
- diff from 4:0.8.3-0ubuntu2 to 4:0.8.3-0ubuntu3 (873 bytes)
| Superseded in quantal-release |
libav (4:0.8.3-0ubuntu2) quantal; urgency=low
* debian/control:
- Prefer libtiff5-dev
-- Michael Terry <email address hidden> Tue, 17 Jul 2012 14:04:07 -0400
Available diffs
- diff from 4:0.8.3-0ubuntu1 to 4:0.8.3-0ubuntu2 (445 bytes)
libav (4:0.8.3-0ubuntu0.12.04.1) precise-security; urgency=low * Update to 0.8.3 to fix multiple security issues. (LP: #1012132) - CVE-2012-0851 - CVE-2012-0947 * debian/patches/04-ffmpeg-warning-change.patch: Update warning to make clearer the deprecation of ffmpeg binary. (LP: #939863) -- Marc Deslauriers <email address hidden> Tue, 12 Jun 2012 10:14:44 -0400
Available diffs
| 1 → 75 of 101 results | First • Previous • Next • Last |
