ffmpeg | branch: master | Andreas Cadhalpun
| Sat Nov 19 14:21:11 2016 +0100| [0ccddbad200c1d9439c5a836501917d515cddf76] |
committer: Sean McGovern
smacker: limit recursion depth of smacker_decode_bigtree
This fixes segmentation faults due to stack-overflow caused by too deep
recursion
ffmpeg | branch: master | Andreas Cadhalpun
| Tue Jan 31 01:59:38 2017 +0100| [612cc0712836af2f025b0c68b11da29b9f259d5a] |
committer: Diego Biurrun
pgssubdec: reset rle_data_len/rle_remaining_len on allocation error
The code relies on their validity and otherwise can try to access a NULL
ffmpeg | branch: master | Andreas Cadhalpun
| Thu Nov 24 01:06:35 2016 +0100| [fc85646ad495f3418042468da415af73a7a07334] |
committer: Vittorio Giovara
libopusdec: fix out-of-bounds read
Signed-off-by: Andreas Cadhalpun
> http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commi
ffmpeg | branch: master | Andreas Cadhalpun
| Sun Nov 13 23:24:45 2016 +0100| [8c3a643808fc89c8003478ea952187cd9fe5d27a] |
committer: Vittorio Giovara
libschroedingerdec: don't produce empty frames
They are not valid and can cause problems/crashes for API users.
Signed-off-by: An
ffmpeg | branch: master | Andreas Cadhalpun
| Fri Dec 2 22:52:44 2016 +0100| [dc2ad094931de2b28c63eaa5614756ed74e2579e] |
committer: Vittorio Giovara
libschroedingerdec: fix leaking of framewithpts
Also preserve the return value from ff_get_buffer().
Signed-off-by: Andreas Cadhalpun
Signed
ffmpeg | branch: master | Andreas Cadhalpun
| Thu Nov 24 23:57:46 2016 +0100| [1762a39e09a3edc27d1ef7bc50070f496b893aa4] |
committer: Luca Barbato
mss2: only use error correction for matching block counts
This fixes a heap-buffer-overflow in ff_er_frame_end when decoding mss2
with coded_width
ffmpeg | branch: master | Andreas Cadhalpun
| Mon Nov 14 21:41:45 2016 +0100| [f92d7bdfddfaac04b3bb31f2749d173ca1d8ba6d] |
committer: Anton Khirnov
libopusdec: default to stereo for invalid number of channels
This fixes an out-of-bounds read if avc->channels is 0.
Signed-off-by: Andr
ffmpeg | branch: master | Andreas Cadhalpun
| Fri Nov 4 23:33:02 2016 +0100| [43de8b328b62cf21ec176c3989065168da471a5f] |
committer: Luca Barbato
lzf: update pointer p after realloc
This fixes heap-use-after-free detected by AddressSanitizer.
Signed-off-by: Andreas Cadhalpun
Signed-off-by
ffmpeg | branch: master | Andreas Cadhalpun
| Thu Feb 16 00:54:31 2017 +0100| [9ccc6cecd2d0645f5073382360509eb278b239b1] |
committer: Andreas Cadhalpun
wmaprodec: fix leaking fdsp on init failure
Reviewed-by: Michael Niedermayer
Signed-off-by: Andreas Cadhalpun
> http://git.videolan.
ffmpeg | branch: master | Andreas Cadhalpun
| Thu Feb 16 00:37:51 2017 +0100| [783b350b2e49d06030b30ee9b7e1aa5825e4a5a5] |
committer: Andreas Cadhalpun
mpegaudiodec_template: fix leaking fdsp for mp3on4float
Reviewed-by: Michael Niedermayer
Signed-off-by: Andreas Cadhalpun
> h
ffmpeg | branch: master | Andreas Cadhalpun
| Wed Feb 1 02:57:40 2017 +0100| [4bd5d824e927ac22c71186150fda8a8bf4327eed] |
committer: Andreas Cadhalpun
boadec: remove log messages
Requested-by: Ronald S. Bultje
Signed-off-by: Andreas Cadhalpun
> http://git.videolan.org/gitweb.
ffmpeg | branch: release/3.2 | Andreas Cadhalpun
| Tue Jan 31 01:55:44 2017 +0100|
[83269fd13b79e19e02e23755e68377f2f60817a4] | committer: Andreas Cadhalpun
pgssubdec: reset rle_data_len/rle_remaining_len on allocation error
The code relies on their validity and otherwise can try to access a
ffmpeg | branch: release/3.1 | Andreas Cadhalpun
| Tue Jan 31 01:55:44 2017 +0100|
[f77bb85b08dea6bdde091c8570aa5b12987f7f8c] | committer: Andreas Cadhalpun
pgssubdec: reset rle_data_len/rle_remaining_len on allocation error
The code relies on their validity and otherwise can try to access a
ffmpeg | branch: release/3.0 | Andreas Cadhalpun
| Tue Jan 31 01:55:44 2017 +0100|
[1a168061da70e622d20d0cd96c99e5f741fd4f03] | committer: Andreas Cadhalpun
pgssubdec: reset rle_data_len/rle_remaining_len on allocation error
The code relies on their validity and otherwise can try to access a
ffmpeg | branch: release/2.8 | Andreas Cadhalpun
| Tue Jan 31 01:55:44 2017 +0100|
[f7e18dea7ad2fd1ec70dd36215064d59b7fc561e] | committer: Andreas Cadhalpun
pgssubdec: reset rle_data_len/rle_remaining_len on allocation error
The code relies on their validity and otherwise can try to access a
ffmpeg | branch: master | Andreas Cadhalpun
| Tue Jan 31 01:55:44 2017 +0100| [842e98b4d83d8cf297e2bc2761f1f47eb89e49e4] |
committer: Andreas Cadhalpun
pgssubdec: reset rle_data_len/rle_remaining_len on allocation error
The code relies on their validity and otherwise can try to access a NULL
ffmpeg | branch: master | Andreas Cadhalpun
| Thu Dec 15 02:14:45 2016 +0100| [3d673078a03a3819df9dba7667f9e5d59b8487d0] |
committer: Andreas Cadhalpun
ircamdec: prevent overflow during block alignment calculation
Reviewed-by: Michael Niedermayer
Reviewed-by: Paul B Mahol
Signed-off-by
ffmpeg | branch: master | Andreas Cadhalpun
| Fri Jan 6 20:31:26 2017 +0100| [cba4f0e97ecbbde7c71ec7a7ae3eb1469b34545b] |
committer: Andreas Cadhalpun
xvag: prevent overflow during block alignment calculation
Reviewed-by: Michael Niedermayer
Reviewed-by: Paul B Mahol
Signed-off-by: Andreas
ffmpeg | branch: master | Andreas Cadhalpun
| Thu Dec 15 02:14:40 2016 +0100| [5b0ae88ca6b3eb85dbda1762f16f1b5e7c3aa014] |
committer: Andreas Cadhalpun
genh: prevent overflow during block alignment calculation
Reviewed-by: Michael Niedermayer
Reviewed-by: Paul B Mahol
Signed-off-by: Andreas
ffmpeg | branch: master | Andreas Cadhalpun
| Fri Jan 6 20:31:21 2017 +0100| [74bd17d31648c77d01a0d35b09724715bc40fba2] |
committer: Andreas Cadhalpun
epafdec: prevent overflow during block alignment calculation
Reviewed-by: Michael Niedermayer
Reviewed-by: Paul B Mahol
Signed-off-by
ffmpeg | branch: master | Andreas Cadhalpun
| Thu Jan 26 01:19:02 2017 +0100| [9ec8790ac4787d3d514c5fa27b66d581614fd1be] |
committer: Andreas Cadhalpun
boadec: prevent overflow during block alignment calculation
Reviewed-by: Michael Niedermayer
Signed-off-by: Andreas Cadhalpun
> h
ffmpeg | branch: master | Andreas Cadhalpun
| Thu Dec 15 02:14:54 2016 +0100| [169c1cfa928040b83f2ac8386333ec5e5cff3df7] |
committer: Andreas Cadhalpun
pvfdec: prevent overflow during block alignment calculation
Reviewed-by: Paul B Mahol
Signed-off-by: Andreas Cadhalpun
> h
ffmpeg | branch: master | Andreas Cadhalpun
| Thu Dec 15 02:14:37 2016 +0100| [8812d047bc850ec0b6afec69ae2d716525b25128] |
committer: Andreas Cadhalpun
electronicarts: prevent overflow during block alignment calculation
Reviewed-by: Michael Niedermayer
Signed-off-by: Andreas Cadhalpun
ffmpeg | branch: master | Andreas Cadhalpun
| Thu Dec 15 02:14:31 2016 +0100| [e3f13d3a87274d537d319a84e9104f44f84ec3b2] |
committer: Andreas Cadhalpun
4xm: prevent overflow during block alignment calculation
Reviewed-by: Michael Niedermayer
Signed-off-by: Andreas Cadhalpun
> h
ffmpeg | branch: release/3.2 | Andreas Cadhalpun
| Fri Dec 16 02:29:56 2016 +0100|
[884cd3caa5cc111daaa4ff2ca05c99e05a713e47] | committer: Andreas Cadhalpun
swscale: save ebx register when it is not available
Configure checks if the ebx register can be used for asm and it has to
be saved if
ffmpeg | branch: release/3.2 | Andreas Cadhalpun
| Sun Jan 1 20:27:50 2017 +0100|
[41fc098a8612ba1af98ea0713c929a1f32f3ae87] | committer: Michael Niedermayer
libopenmpt: add missing avio_read return value check
This fixes heap-buffer-overflows in libopenmpt caused by interpreting
the
ffmpeg | branch: master | Andreas Cadhalpun
| Tue Oct 27 22:56:53 2015 +0100| [c0fd2fb27bebd1d5ab028e6df6bca9119d269122] |
committer: Diego Biurrun
swscale: Rename sws_context_class to ff_sws_context_class
It is an internal swscale symbol and thus should not be exported.
Signed-off-by
ffmpeg | branch: master | Andreas Cadhalpun
| Sun Jan 1 20:27:50 2017 +0100| [367cac7827870054ae3bd6d4517e7b13f4f3f72c] |
committer: Michael Niedermayer
libopenmpt: add missing avio_read return value check
This fixes heap-buffer-overflows in libopenmpt caused by interpreting
the negative
ffmpeg | branch: master | Andreas Cadhalpun
| Tue Dec 13 00:35:12 2016 +0100| [d74c471a39db2919a0e1db9666df725cbcb83d86] |
committer: Andreas Cadhalpun
omadec: fix overflows during bit rate calculation
Signed-off-by: Andreas Cadhalpun
> http://git.videolan.org/gitweb.cgi/ffmpeg.git
ffmpeg | branch: master | Andreas Cadhalpun
| Sun Jan 1 22:48:38 2017 +0100| [e8651f51aa46268613b328c60079e16d992e013f] |
committer: Andreas Cadhalpun
wmavoice: validate block alignment
This prevents a division by zero crash in wmavoice_decode_packet.
The problem was introduced by commit
ffmpeg | branch: master | Andreas Cadhalpun
| Sun Jan 1 22:42:44 2017 +0100| [91e6a64d2ea62edbe1178a65a2376e605f6988d5] |
committer: Andreas Cadhalpun
wmavoice: truncate spillover_nbits if too large
This fixes triggering the av_assert0(ret <= tmp.size).
The problem was reintroduced
ffmpeg | branch: master | Andreas Cadhalpun
| Fri Dec 16 02:29:56 2016 +0100| [319438e2f206036ee0cddf401dd50f3b2a3ae117] |
committer: Andreas Cadhalpun
swscale: save ebx register when it is not available
Configure checks if the ebx register can be used for asm and it has to
be saved if and
ffmpeg | branch: master | Andreas Cadhalpun
| Tue Dec 13 00:43:21 2016 +0100| [ed412d285078c167a3a5326bcb16b2169b488943] |
committer: Andreas Cadhalpun
tiff: fix overflows when calling av_reduce
The arguments of av_reduce are signed, so the cast to uint64_t is misleading.
Reviewed-by
ffmpeg | branch: master | Andreas Cadhalpun
| Wed Dec 14 01:53:23 2016 +0100| [076c3a9fa23ca2b0dd167a087ab1e4fb4357a31b] |
committer: Andreas Cadhalpun
mov: prevent overflow during bit rate calculation
Reviewed-by: Michael Niedermayer
Signed-off-by: Andreas Cadhalpun
> h
ffmpeg | branch: master | Andreas Cadhalpun
| Wed Dec 14 01:53:19 2016 +0100| [baba9c6aef88727bb0182631dc67744d36cadea4] |
committer: Andreas Cadhalpun
cafdec: prevent overflow during bit rate calculation
Reviewed-by: Michael Niedermayer
Signed-off-by: Andreas Cadhalpun
> h
ffmpeg | branch: master | Andreas Cadhalpun
| Wed Dec 14 01:53:14 2016 +0100| [e558a6348ac10e74c54fb50ffd783ff9b5aec050] |
committer: Andreas Cadhalpun
4xm: prevent overflow during bit rate calculation
Reviewed-by: Michael Niedermayer
Signed-off-by: Andreas Cadhalpun
> h
ffmpeg | branch: master | Andreas Cadhalpun
| Tue Dec 13 00:38:25 2016 +0100| [ad5807f8aa883bee5431186dc1f24c5435d722d3] |
committer: Andreas Cadhalpun
avformat: fix overflows during bit rate calculation
The bit_rate field has type int64_t since commit
7404f3bdb90e6a5dcb59bc0a091e2c5c038e557d
ffmpeg | branch: master | Andreas Cadhalpun
| Mon Dec 12 01:12:15 2016 +0100| [3ab8436ff611aa488226bbcb25c84bb687b2bf46] |
committer: Andreas Cadhalpun
opt: reject denominator zero as out of range
Reviewed-by: Michael Niedermayer
Signed-off-by: Andreas Cadhalpun
> http://git.videolan.
ffmpeg | branch: master | Andreas Cadhalpun
| Wed Nov 30 23:50:17 2016 +0100| [8aad209c13c2a66a9256e37d7f44b5f9f19b13b2] |
committer: Andreas Cadhalpun
configure: fail if autodetect-libraries are requested but not found
Signed-off-by: Andreas Cadhalpun
> http://git.videolan.org/gitweb.
ffmpeg | branch: master | Andreas Cadhalpun
| Wed Nov 30 23:47:54 2016 +0100| [c50d591ce2a6dc9d0c31fb651edeb167add7c3fc] |
committer: Andreas Cadhalpun
configure: enable sdl if sdl2 is enabled
sdl is supposed to be an alias, so it should have the same value.
Signed-off-by: Andreas Cadhalpun
ffmpeg | branch: master | Andreas Cadhalpun
| Wed Nov 30 23:49:35 2016 +0100| [4c455664930470727000c7a8b2d550ec29f512e3] |
committer: Andreas Cadhalpun
configure: enable autodetected libraries after option parsing
And only enable them, if they haven't been disabled.
This is needed fo
ffmpeg | branch: master | Andreas Cadhalpun
| Fri Dec 9 00:01:35 2016 +0100| [c085f1a7e1030aabd175c8438dab7ca6fad9e98f] |
committer: Andreas Cadhalpun
opus_parser: make ParseContext the first element in OpusParseContext
ff_parse_close expects priv_data to be the ParseContext directly and
ffmpeg | branch: master | Andreas Cadhalpun
| Fri Dec 9 00:00:18 2016 +0100| [7d3baebe408cb7377dbb6fa1a7fd285e8e366440] |
committer: Andreas Cadhalpun
opus_parser: fix leaking channel_maps on error
Make ff_opus_parse_extradata free allocated memory on error instead of
expecting callers to
ffmpeg | branch: master | Andreas Cadhalpun
| Mon Dec 5 22:56:36 2016 +0100| [e3694478a98bc2cd702b3b3f0bfb19a100da737e] |
committer: Andreas Cadhalpun
yuv4mpegdec: fix leaking pkt in yuv4_read_packet
Reviewed-by: Michael Niedermayer
Signed-off-by: Andreas Cadhalpun
> h
ffmpeg | branch: master | Andreas Cadhalpun
| Mon Dec 5 21:41:06 2016 +0100| [46e75617d9700be8840a843237f8571061a63a8e] |
committer: Andreas Cadhalpun
truemotion1: fix leaking frame on init failure
Reviewed-by: Michael Niedermayer
Signed-off-by: Andreas Cadhalpun
> http://git.videolan.
ffmpeg | branch: master | Andreas Cadhalpun
| Wed Nov 30 01:49:09 2016 +0100| [122190392b297b7cd9783641d880df887fd80d07] |
committer: Andreas Cadhalpun
ffserver: use codec time_base for stream
This fixes producing swf and rm files as done by ffservertest.
Reviewed-by: Reynaldo H. Verdejo
ffmpeg | branch: master | Andreas Cadhalpun
| Wed Nov 30 01:23:26 2016 +0100| [0bd227e31ca769c1403ec3df9272d008fa5985c6] |
committer: Andreas Cadhalpun
tests: print errors from ffserver
Not doing so makes debugging unnecessarily hard.
Reviewed-by: Reynaldo H. Verdejo Pinochet
Reviewed-by
ffmpeg | branch: master | Andreas Cadhalpun
| Wed Nov 30 01:29:40 2016 +0100| [7f034a02cdcfa9feb621b4722e85bfcbca6957a7] |
committer: Andreas Cadhalpun
tests: drop -d option from ffserver invocation
It randomly causes failures with an error like:
"Failed to set value '-f'
ffmpeg | branch: master | Andreas Cadhalpun
| Tue Nov 29 00:28:55 2016 +0100| [2c908f22c2af0775a6ffe3466aad174a0ace00dd] |
committer: Andreas Cadhalpun
avidec: fix leaking extradata
Reviewed-by: Michael Niedermayer
Signed-off-by: Andreas Cadhalpun
> http://git.videolan.org/gitweb.
ffmpeg | branch: master | Andreas Cadhalpun
| Tue Nov 29 00:43:27 2016 +0100| [c0175fa92b7edd45a06e4ab16c8e83da0c94a9f6] |
committer: Andreas Cadhalpun
idroqdec: fix leaking pkt on failure
The code calls av_new_packet a few lines above and the allocated memory
has to be freed in case of an
ffmpeg | branch: master | Andreas Cadhalpun
| Fri Nov 25 22:09:51 2016 +0100| [801b5c18c7beefbb894ad4de20d1b591ddb22198] |
committer: Andreas Cadhalpun
pngdec: check if previous frame exists instead of trusting sequence_number
This fixes a segmentation fault caused by calling memcpy with NULL
ffmpeg | branch: release/2.8 | Andreas Cadhalpun
| Sun Nov 13 22:59:47 2016 +0100|
[70ca4ce17a0a56118998afb81374d5b6d287182c] | committer: Andreas Cadhalpun
libschroedingerdec: don't produce empty frames
They are not valid and can cause problems/crashes for API users.
Reviewed-by: Mi
ffmpeg | branch: release/2.8 | Andreas Cadhalpun
| Wed Nov 9 00:38:50 2016 +0100|
[dc821d42a2fd79ac64161f50decf5922e431445a] | committer: Andreas Cadhalpun
escape124: reject codebook size 0
It causes a cb_depth of 32, leading to assertion failures in get_bits.
Reviewed-by: Michael
ffmpeg | branch: release/2.8 | Andreas Cadhalpun
| Tue Nov 8 00:42:23 2016 +0100|
[3148d1c25f229e272a9242bfd81eacd6ce3ff716] | committer: Andreas Cadhalpun
matroskadec: fix NULL pointer dereference in webm_dash_manifest_read_header
The code assumes that s->streams[0] is valid.
Reviewed
ffmpeg | branch: release/2.8 | Andreas Cadhalpun
| Tue Nov 8 22:32:42 2016 +0100|
[2260c0776ac664af2d4b09e177d5f1d6fc7864d7] | committer: Andreas Cadhalpun
dvbsubdec: fix division by zero in compute_default_clut
This problem was introduced in commit
4b90dcb8493552c17a811c8b1e6538dae4061f9d
ffmpeg | branch: release/2.8 | Andreas Cadhalpun
| Sat Nov 19 14:21:11 2016 +0100|
[8a7b2fbf6f4d902b7ac245ceae7ee1ced5ff9545] | committer: Andreas Cadhalpun
smacker: limit recursion depth of smacker_decode_bigtree
This fixes segmentation faults due to stack-overflow caused by too deep
ffmpeg | branch: release/2.8 | Andreas Cadhalpun
| Wed Nov 2 21:28:49 2016 +0100|
[a94f846e2dbac02191551fc0198282ac57a8ffe5] | committer: Andreas Cadhalpun
ppc: pixblockdsp: do unaligned block accesses correctly again
This was broken by the following Libav commit:
4c387c7 ppc: dsputil: do
ffmpeg | branch: release/2.8 | Andreas Cadhalpun
| Mon Nov 14 21:41:45 2016 +0100|
[56b120630fd2cd39134fc25cb41caea0b620df7c] | committer: Andreas Cadhalpun
libopusdec: default to stereo for invalid number of channels
This fixes an out-of-bounds read if avc->channels is 0.
Reviewed
ffmpeg | branch: release/2.8 | Andreas Cadhalpun
| Mon Nov 7 23:37:59 2016 +0100|
[b3ac458a5a207794dd32a06b66bcdd3ccf5c8b39] | committer: Andreas Cadhalpun
mpegts: prevent division by zero
Reviewed-by: Michael Niedermayer
Signed-off-by: Andreas Cadhalpun
(cherry picked from commit
ffmpeg | branch: release/2.8 | Andreas Cadhalpun
| Wed Nov 9 23:49:46 2016 +0100|
[5c55f9881ed032ff83515f4e39216dee97685a5a] | committer: Andreas Cadhalpun
proresdec_lgpl: explicitly check coff[3] against slice_data_size
The implicit checks via v_data_size and a_data_size don't work i
ffmpeg | branch: release/2.8 | Andreas Cadhalpun
| Tue Nov 8 23:53:52 2016 +0100|
[8a56b31e7cd1af1e3de59bfe3e79d5d7171404d4] | committer: Andreas Cadhalpun
icodec: fix leaking pkt on error
Reviewed-by: Michael Niedermayer
Signed-off-by: Andreas Cadhalpun
(cherry picked from commit
ffmpeg | branch: release/2.8 | Andreas Cadhalpun
| Tue Nov 8 23:29:28 2016 +0100|
[71fa32bbb7478a865ba9e955393766f733fdda50] | committer: Andreas Cadhalpun
icodec: correctly check avio_read return value
It can read less than the requested amount, in which case buf contains
uninitialized data
ffmpeg | branch: release/2.8 | Andreas Cadhalpun
| Sun Nov 13 18:22:12 2016 +0100|
[d8ec9e97b93eddd1b44e22356e3e242649476cc9] | committer: Andreas Cadhalpun
filmstripdec: correctly check image dimensions
This prevents a division by zero in read_packet.
Reviewed-by: Paul B Mahol
Signed-off
ffmpeg | branch: release/2.8 | Andreas Cadhalpun
| Thu Oct 20 22:14:22 2016 +0200|
[51ff17d6b993fed3eaeddf7e718391f905eec047] | committer: Andreas Cadhalpun
cavsdec: unref frame before referencing again
This fixes asserts (from commit 13aae8) in av_frame_ref and
av_frame_move_ref.
Reviewed
ffmpeg | branch: release/2.8 | Andreas Cadhalpun
| Mon Nov 7 01:16:14 2016 +0100|
[f964046c58fb4ce4aaa31e5ed196f9336e03481b] | committer: Andreas Cadhalpun
mpegaudio_parser: don't return AVERROR_PATCHWELCOME
The API does not allow returning AVERROR codes.
It triggers an asse
ffmpeg | branch: release/2.8 | Andreas Cadhalpun
| Wed Oct 19 19:23:49 2016 +0200|
[e14da0578c85721ac6f59ddcd9fb4c778bfc5d09] | committer: Andreas Cadhalpun
avformat: prevent triggering request_probe assert in ff_read_packet
If probe_codec is called with pkt == NULL, it sets probe_packets to
ffmpeg | branch: release/2.8 | Andreas Cadhalpun
| Thu Nov 24 23:57:46 2016 +0100|
[028c87be95dd85329f5c68d78e152d859afec7e9] | committer: Andreas Cadhalpun
mss2: only use error correction for matching block counts
This fixes a heap-buffer-overflow in ff_er_frame_end when decoding mss2
with
ffmpeg | branch: release/2.8 | Andreas Cadhalpun
| Thu Nov 17 22:53:51 2016 +0100|
[8f27508f1cad0adca6486de9265290a6de4e4357] | committer: Andreas Cadhalpun
mxfdec: fix NULL pointer dereference in mxf_read_packet_old
Metadata streams have priv_data set to NULL.
Reviewed-by: Josh de Kock
ffmpeg | branch: release/2.8 | Andreas Cadhalpun
| Thu Nov 10 22:09:03 2016 +0100|
[f76947fd567f20287bc8ca8e692a59026bac19e7] | committer: Andreas Cadhalpun
smvjpegdec: make sure cur_frame is not negative
This fixes a heap-buffer-overflow detected by AddressSanitizer.
Reviewed-by: Michael
ffmpeg | branch: release/2.8 | Andreas Cadhalpun
| Thu Oct 20 22:51:55 2016 +0200|
[c5fb9df38aac5ff5e6c136f2bb7d946822ba4cc9] | committer: Andreas Cadhalpun
mpeg12dec: unref discarded picture from extradata
Otherwise another frame gets referenced into picture, triggering an assert
(from
ffmpeg | branch: release/2.8 | Andreas Cadhalpun
| Sat Nov 5 00:17:53 2016 +0100|
[0cc619e0d7567894bc0f92de963be050c3679492] | committer: Andreas Cadhalpun
mxfdec: fix NULL pointer dereference
Metadata streams have priv_data set to NULL.
Reviewed-by: Michael Niedermayer
Signed-off-by
ffmpeg | branch: release/2.8 | Andreas Cadhalpun
| Fri Nov 25 00:26:51 2016 +0100|
[b45e112bbdcc44a96907662136e49514a204543a] | committer: Andreas Cadhalpun
softfloat: decrease MIN_EXP to cover full float range
floats are not necessarily normalized, so a normalized softfloat needs
MIN_EXP
ffmpeg | branch: release/2.8 | Andreas Cadhalpun
| Sun Nov 13 23:10:06 2016 +0100|
[7552f6fc1bbb5d3a7f1d4c1e9ed89ae1f2e2299b] | committer: Andreas Cadhalpun
libschroedingerdec: fix leaking of framewithpts
Reviewed-by: Michael Niedermayer
Signed-off-by: Andreas Cadhalpun
(cherry picked from
ffmpeg | branch: release/2.8 | Andreas Cadhalpun
| Thu Nov 10 22:21:20 2016 +0100|
[22cd4aa22116a365d611091916a3eff74e21ec3f] | committer: Andreas Cadhalpun
sbgdec: prevent NULL pointer access
Reviewed-by: Josh de Kock
Signed-off-by: Andreas Cadhalpun
(cherry picked from commit
ffmpeg | branch: release/2.8 | Andreas Cadhalpun
| Sun Nov 27 00:47:03 2016 +0100|
[970781f5f29d3f7c9b1238b7ac6d94d70048b2f0] | committer: Andreas Cadhalpun
Update Changelog
> http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=970781f5f29d3f7c9b1238b7ac6d94d70048b2f0
---
Change
ffmpeg | branch: release/2.8 | Andreas Cadhalpun
| Wed Nov 9 01:09:35 2016 +0100|
[0b948b1b8d100491934f00bc6d72009de0c99b05] | committer: Andreas Cadhalpun
pnmdec: make sure v is capped by maxval
Otherwise put_bits can be called with a value that doesn't fit in the
sample_len, causi
ffmpeg | branch: release/2.8 | Andreas Cadhalpun
| Sun Nov 13 20:52:02 2016 +0100|
[ccda73a711ba0d194e97fac476f9676183281ae7] | committer: Andreas Cadhalpun
softfloat: handle -INT_MAX correctly
This is similar to commit 9ac61e73d0843ec4b83f4e3d47eded73234e406e.
Reviewed-by: Michael
ffmpeg | branch: release/2.8 | Andreas Cadhalpun
| Fri Nov 4 19:00:17 2016 +0100|
[0e8c44076d313c2addc26c2e03c9e6430fa8cecf] | committer: Andreas Cadhalpun
diracdec: check return code of get_buffer_with_edge
If it fails, buffers aren't allocated, causing NULL pointer dereferencing.
Rev
ffmpeg | branch: release/3.0 | Andreas Cadhalpun
| Thu Nov 17 22:53:51 2016 +0100|
[1c282152c1c7ca23c388ecb04e9997030fbba19a] | committer: Andreas Cadhalpun
mxfdec: fix NULL pointer dereference in mxf_read_packet_old
Metadata streams have priv_data set to NULL.
Reviewed-by: Josh de Kock
ffmpeg | branch: release/3.0 | Andreas Cadhalpun
| Fri Nov 4 19:00:17 2016 +0100|
[dcc8d2418acac6539e2533fc046f3d00f1c0c333] | committer: Andreas Cadhalpun
diracdec: check return code of get_buffer_with_edge
If it fails, buffers aren't allocated, causing NULL pointer dereferencing.
Rev
ffmpeg | branch: release/3.0 | Andreas Cadhalpun
| Mon Nov 14 21:41:45 2016 +0100|
[dbad79248704d4b7cfcabbe46a734c51c1ada9a0] | committer: Andreas Cadhalpun
libopusdec: default to stereo for invalid number of channels
This fixes an out-of-bounds read if avc->channels is 0.
Reviewed
ffmpeg | branch: release/3.0 | Andreas Cadhalpun
| Wed Nov 9 23:23:16 2016 +0100|
[5d2f1ffef1f26e4d66c8e63ab1101da179af11e6] | committer: Andreas Cadhalpun
pgssubdec: only set w/h/linesize when allocating data
Rects with positive w/h/linesize but no data are invalid.
Reviewed-by: Petri
ffmpeg | branch: release/3.0 | Andreas Cadhalpun
| Sun Oct 30 21:18:20 2016 +0100|
[aca7f5f0607789b26b1b5d0c2dbe3ae39a229806] | committer: Andreas Cadhalpun
interplayacm: increase bitstream buffer size by AV_INPUT_BUFFER_PADDING_SIZE
This fixes out-of-bounds reads by the bitstream reader
ffmpeg | branch: release/3.0 | Andreas Cadhalpun
| Thu Nov 10 22:21:20 2016 +0100|
[80b85300ae0b8c6c1bb813a4390d94e3ea87b1da] | committer: Andreas Cadhalpun
sbgdec: prevent NULL pointer access
Reviewed-by: Josh de Kock
Signed-off-by: Andreas Cadhalpun
(cherry picked from commit
ffmpeg | branch: release/3.0 | Andreas Cadhalpun
| Thu Oct 20 22:51:55 2016 +0200|
[30d542d55ddbcb2edb0f1351e1ecb6ad286b37ff] | committer: Andreas Cadhalpun
mpeg12dec: unref discarded picture from extradata
Otherwise another frame gets referenced into picture, triggering an assert
(from
ffmpeg | branch: release/3.0 | Andreas Cadhalpun
| Sun Nov 13 20:52:02 2016 +0100|
[48496e4d4fadd01ff3ce45d2540e8cf75ac5cd89] | committer: Andreas Cadhalpun
softfloat: handle -INT_MAX correctly
This is similar to commit 9ac61e73d0843ec4b83f4e3d47eded73234e406e.
Reviewed-by: Michael
ffmpeg | branch: release/3.0 | Andreas Cadhalpun
| Sat Nov 19 14:21:11 2016 +0100|
[48d24cca1308d7cc78aa99827b5449a8577a68a2] | committer: Andreas Cadhalpun
smacker: limit recursion depth of smacker_decode_bigtree
This fixes segmentation faults due to stack-overflow caused by too deep
ffmpeg | branch: release/3.0 | Andreas Cadhalpun
| Sun Nov 13 22:59:47 2016 +0100|
[57665e04e22a201d3c56072532c15ce6ba71353a] | committer: Andreas Cadhalpun
libschroedingerdec: don't produce empty frames
They are not valid and can cause problems/crashes for API users.
Reviewed-by: Mi
ffmpeg | branch: release/3.0 | Andreas Cadhalpun
| Fri Nov 4 22:58:49 2016 +0100|
[ef2d91e9c337f50edbc7631485bfec385601f4bb] | committer: Andreas Cadhalpun
lzf: update pointer p after realloc
This fixes heap-use-after-free detected by AddressSanitizer.
Reviewed-by: Luca Barbato
Signed-off
ffmpeg | branch: release/3.0 | Andreas Cadhalpun
| Sun Oct 30 21:41:11 2016 +0100|
[aa32d415275613e406a43d8f091d6981e4e1b872] | committer: Andreas Cadhalpun
interplayacm: validate number of channels
The number of channels is used as divisor in decode_frame, so it must
not be zero to avoid
ffmpeg | branch: release/3.0 | Andreas Cadhalpun
| Thu Nov 10 22:09:03 2016 +0100|
[69673d02790f7917d11055236ecfa20c9ff8771a] | committer: Andreas Cadhalpun
smvjpegdec: make sure cur_frame is not negative
This fixes a heap-buffer-overflow detected by AddressSanitizer.
Reviewed-by: Michael
ffmpeg | branch: release/3.0 | Andreas Cadhalpun
| Wed Nov 9 00:38:50 2016 +0100|
[e14cc2f1975b608b630725007bda10f49aa096a1] | committer: Andreas Cadhalpun
escape124: reject codebook size 0
It causes a cb_depth of 32, leading to assertion failures in get_bits.
Reviewed-by: Michael
ffmpeg | branch: release/3.0 | Andreas Cadhalpun
| Tue Nov 8 00:42:23 2016 +0100|
[5801482379cb053c2901da1058e86365aac563a1] | committer: Andreas Cadhalpun
matroskadec: fix NULL pointer dereference in webm_dash_manifest_read_header
The code assumes that s->streams[0] is valid.
Reviewed
ffmpeg | branch: release/3.0 | Andreas Cadhalpun
| Mon Nov 7 23:37:59 2016 +0100|
[3d82cebdd2bd5424b0eb37b0e39284da19fa0e5b] | committer: Andreas Cadhalpun
mpegts: prevent division by zero
Reviewed-by: Michael Niedermayer
Signed-off-by: Andreas Cadhalpun
(cherry picked from commit
ffmpeg | branch: release/3.0 | Andreas Cadhalpun
| Fri Nov 25 00:26:51 2016 +0100|
[88bf1d2749624cf78be0c5a5d74c169ad16ba99c] | committer: Andreas Cadhalpun
softfloat: decrease MIN_EXP to cover full float range
floats are not necessarily normalized, so a normalized softfloat needs
MIN_EXP
ffmpeg | branch: release/3.0 | Andreas Cadhalpun
| Thu Nov 24 23:57:46 2016 +0100|
[0496403c08ab35b20490a48aa9e3fdbd4d3bf27d] | committer: Andreas Cadhalpun
mss2: only use error correction for matching block counts
This fixes a heap-buffer-overflow in ff_er_frame_end when decoding mss2
with
ffmpeg | branch: release/3.0 | Andreas Cadhalpun
| Sat Nov 5 00:17:53 2016 +0100|
[e78d9f3f35e379ab7da729360e3eb5ad39c150fa] | committer: Andreas Cadhalpun
mxfdec: fix NULL pointer dereference
Metadata streams have priv_data set to NULL.
Reviewed-by: Michael Niedermayer
Signed-off-by
ffmpeg | branch: release/3.0 | Andreas Cadhalpun
| Thu Oct 20 20:13:54 2016 +0200|
[e8ab2bd2ac85ad0b1013f247d35032b7cd7f771e] | committer: Andreas Cadhalpun
dcstr: fix division by zero
Also check for possible overflows.
Reviewed-by: Michael Niedermayer
Signed-off-by: Andreas Cadhalpun
ffmpeg | branch: release/3.0 | Andreas Cadhalpun
| Sun Oct 30 20:47:22 2016 +0100|
[a1e6daeb1e92abf59e6b5a4229948ca54967f759] | committer: Andreas Cadhalpun
interplayacm: check for too large b
This fixes out-of-bounds reads.
Reviewed-by: Paul B Mahol
Signed-off-by: Andreas Cadhalpun
ffmpeg | branch: release/3.0 | Andreas Cadhalpun
| Mon Nov 7 01:16:14 2016 +0100|
[e6197a6ce986af0d2f29ed0b649f3ed531a6d66e] | committer: Andreas Cadhalpun
mpegaudio_parser: don't return AVERROR_PATCHWELCOME
The API does not allow returning AVERROR codes.
It triggers an asse
1 - 100 of 1134 matches
Mail list logo
