ffmpeg | branch: master | Andreas Cadhalpun
| Fri Nov 4 23:33:02 2016 +0100| [43de8b328b62cf21ec176c3989065168da471a5f] |
committer: Luca Barbato
lzf: update pointer p after realloc
This fixes heap-use-after-free detected by AddressSanitizer.
Signed-off-by: Andreas Cadhalpun
Signed-off-by
ffmpeg | branch: master | Andreas Cadhalpun
| Mon Nov 14 21:41:45 2016 +0100| [f92d7bdfddfaac04b3bb31f2749d173ca1d8ba6d] |
committer: Anton Khirnov
libopusdec: default to stereo for invalid number of channels
This fixes an out-of-bounds read if avc->channels is 0.
Signed-off-by: Andr
ffmpeg | branch: master | Andreas Cadhalpun
| Thu Nov 24 23:57:46 2016 +0100| [1762a39e09a3edc27d1ef7bc50070f496b893aa4] |
committer: Luca Barbato
mss2: only use error correction for matching block counts
This fixes a heap-buffer-overflow in ff_er_frame_end when decoding mss2
with coded_width
ffmpeg | branch: master | Andreas Cadhalpun
| Fri Dec 2 22:52:44 2016 +0100| [dc2ad094931de2b28c63eaa5614756ed74e2579e] |
committer: Vittorio Giovara
libschroedingerdec: fix leaking of framewithpts
Also preserve the return value from ff_get_buffer().
Signed-off-by: Andreas Cadhalpun
Signed
ffmpeg | branch: master | Andreas Cadhalpun
| Sun Nov 13 23:24:45 2016 +0100| [8c3a643808fc89c8003478ea952187cd9fe5d27a] |
committer: Vittorio Giovara
libschroedingerdec: don't produce empty frames
They are not valid and can cause problems/crashes for API users.
Signed-off-by: An
ffmpeg | branch: master | Andreas Cadhalpun
| Thu Nov 24 01:06:35 2016 +0100| [fc85646ad495f3418042468da415af73a7a07334] |
committer: Vittorio Giovara
libopusdec: fix out-of-bounds read
Signed-off-by: Andreas Cadhalpun
> http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commi
ffmpeg | branch: master | Andreas Cadhalpun
| Tue Jan 31 01:59:38 2017 +0100| [612cc0712836af2f025b0c68b11da29b9f259d5a] |
committer: Diego Biurrun
pgssubdec: reset rle_data_len/rle_remaining_len on allocation error
The code relies on their validity and otherwise can try to access a NULL
ffmpeg | branch: master | Andreas Cadhalpun
| Sat Nov 19 14:21:11 2016 +0100| [0ccddbad200c1d9439c5a836501917d515cddf76] |
committer: Sean McGovern
smacker: limit recursion depth of smacker_decode_bigtree
This fixes segmentation faults due to stack-overflow caused by too deep
recursion
ffmpeg | branch: master | Andreas Cadhalpun
| Tue Oct 11 20:28:35 2016 +0200| [7a65aef00d113a38e0d1a54df49eead9df6aa15c] |
committer: Andreas Cadhalpun
configure: fix detection of libopenjpeg
Use check_lib2 to test the header together with the function. This is
necessary, because
ffmpeg | branch: master | Andreas Cadhalpun
| Thu Oct 13 22:14:46 2016 +0200| [56706ac0d5723cb549fec2602e798ab1bf6004cd] |
committer: Andreas Cadhalpun
libopenjpegenc: fix out-of-bounds reads when filling the edges
The calculation of width/height should round up, not round down to
prevent
ffmpeg | branch: master | Andreas Cadhalpun
| Thu Oct 13 21:16:35 2016 +0200| [69c8505f3bf54f316e9dc8bec1c71dfa1febec63] |
committer: Andreas Cadhalpun
libopenjpegenc: stop reusing image data buffer for openjpeg 2
openjpeg 2 sets the data pointers of the image components to NULL,
causing
ffmpeg | branch: master | Andreas Cadhalpun
| Sun Oct 16 21:47:00 2016 +0200| [eb751f06db9f627c8b5c63d08836a39f7572bf56] |
committer: Andreas Cadhalpun
matroskadec: fix NULL pointer dereference
The problem was introduced in commit 1273bc6.
Reviewed-by: James Almer
Signed-off-by: Andreas
ffmpeg | branch: release/3.1 | Andreas Cadhalpun
| Thu Oct 13 22:14:46 2016 +0200|
[d391719be19be2f2716dcb1da9f88b0b4214e4c4] | committer: Andreas Cadhalpun
libopenjpegenc: fix out-of-bounds reads when filling the edges
The calculation of width/height should round up, not round down to
ffmpeg | branch: release/3.1 | Andreas Cadhalpun
| Thu Oct 13 21:16:35 2016 +0200|
[a22155dacd935e745c439a8646626c13f7e6aae4] | committer: Andreas Cadhalpun
libopenjpegenc: stop reusing image data buffer for openjpeg 2
openjpeg 2 sets the data pointers of the image components to NULL,
causing
ffmpeg | branch: release/3.1 | Andreas Cadhalpun
| Mon Oct 17 18:13:44 2016 +0200|
[a2d3e7392d2de3919e21cdb1ef0685c58b849e09] | committer: Andreas Cadhalpun
Changelog: update for recent commits
Signed-off-by: Andreas Cadhalpun
> http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commi
ffmpeg | branch: release/3.0 | Andreas Cadhalpun
| Thu Oct 13 21:16:35 2016 +0200|
[de42af2beef7ecc3bf44d746c316de437b8be274] | committer: Andreas Cadhalpun
libopenjpegenc: stop reusing image data buffer for openjpeg 2
openjpeg 2 sets the data pointers of the image components to NULL,
causing
ffmpeg | branch: release/3.0 | Andreas Cadhalpun
| Tue Oct 11 20:28:35 2016 +0200|
[ada229e66fea11e33a11df2f02dc287304842a48] | committer: Andreas Cadhalpun
configure: fix detection of libopenjpeg
Use check_lib2 to test the header together with the function. This is
necessary, because
ffmpeg | branch: release/3.0 | Andreas Cadhalpun
| Mon Oct 17 18:15:04 2016 +0200|
[f309b698e6b72644ab1ff09a62078beb12a1bf7b] | committer: Andreas Cadhalpun
Changelog: update for recent commits
Signed-off-by: Andreas Cadhalpun
> http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commi
ffmpeg | branch: release/3.0 | Andreas Cadhalpun
| Thu Oct 13 22:14:46 2016 +0200|
[0887f1835d69d65fef45eb9aa0183bb06954f52a] | committer: Andreas Cadhalpun
libopenjpegenc: fix out-of-bounds reads when filling the edges
The calculation of width/height should round up, not round down to
ffmpeg | branch: release/3.1 | Andreas Cadhalpun
| Tue Oct 11 20:28:35 2016 +0200|
[1a43626fdf30ecd348809a1639af896c1c71aba5] | committer: Andreas Cadhalpun
configure: fix detection of libopenjpeg
Use check_lib2 to test the header together with the function. This is
necessary, because
ffmpeg | branch: master | Andreas Cadhalpun
| Sun Oct 16 22:29:13 2016 +0200| [c143a9c96ff907a8fe4598529664aec7cb156708] |
committer: Andreas Cadhalpun
aiffdec: fix division by zero
Reviewed-by: Michael Niedermayer
Signed-off-by: Andreas Cadhalpun
> http://git.videolan.org/gitweb.
ffmpeg | branch: master | Andreas Cadhalpun
| Sun Oct 16 22:39:47 2016 +0200| [9959a52b14bcfa3e5baeb3fc8a86c04bbc0d3d5d] |
committer: Andreas Cadhalpun
astdec: fix division by zero
Reviewed-by: Michael Niedermayer
Signed-off-by: Andreas Cadhalpun
> http://git.videolan.org/gitweb.
ffmpeg | branch: master | Andreas Cadhalpun
| Sun Oct 16 22:42:32 2016 +0200| [bc7e128a6e8e2a79d0ff7cab5e8a799b3ea042ea] |
committer: Andreas Cadhalpun
westwood_aud: prevent division by zero
Reviewed-by: Michael Niedermayer
Signed-off-by: Andreas Cadhalpun
> http://git.videolan.
ffmpeg | branch: master | Andreas Cadhalpun
| Wed Oct 19 19:23:49 2016 +0200| [a5b4476a602f31e451b11ca0c18bc92be130a50e] |
committer: Andreas Cadhalpun
avformat: prevent triggering request_probe assert in ff_read_packet
If probe_codec is called with pkt == NULL, it sets probe_packets to 0
and
ffmpeg | branch: master | Andreas Cadhalpun
| Wed Oct 19 23:40:41 2016 +0200| [ee5f0f1d355fa0fd9194ac97a2c8598c93ed328b] |
committer: Andreas Cadhalpun
rsd: limit number of channels
Negative values don't make sense and too large values can cause
overflows. For AV_CODEC_ID_ADPCM_THP this
ffmpeg | branch: master | Andreas Cadhalpun
| Thu Oct 20 20:13:54 2016 +0200| [b0a043f51b8cc3b420dc3ceaa38fe9aa344799aa] |
committer: Andreas Cadhalpun
dcstr: fix division by zero
Also check for possible overflows.
Reviewed-by: Michael Niedermayer
Signed-off-by: Andreas Cadhalpun
> h
ffmpeg | branch: master | Andreas Cadhalpun
| Thu Oct 20 22:51:55 2016 +0200| [a92f8edf0c51781e152651cce2e753ad6e359eb2] |
committer: Andreas Cadhalpun
mpeg12dec: unref discarded picture from extradata
Otherwise another frame gets referenced into picture, triggering an assert
(from commit
ffmpeg | branch: master | Andreas Cadhalpun
| Thu Oct 20 20:08:15 2016 +0200| [93c39db5f1544d1220488cfeb93bfe812a52f374] |
committer: Andreas Cadhalpun
aiff: check block_align in aiff_read_packet
It can be unset in avcodec_parameters_from_context and a value of 0
causes SIGFPE crashes
ffmpeg | branch: master | Andreas Cadhalpun
| Thu Oct 20 22:14:22 2016 +0200| [1966ea012fd72abc8003e95dc3c8ad9e9f197913] |
committer: Andreas Cadhalpun
cavsdec: unref frame before referencing again
This fixes asserts (from commit 13aae8) in av_frame_ref and
av_frame_move_ref.
Reviewed-by
ffmpeg | branch: master | Andreas Cadhalpun
| Thu Oct 13 23:08:01 2016 +0200| [c8a6eb58d7ebc9c1585bc450aa9e0358f6822df0] |
committer: Andreas Cadhalpun
doc: fix spelling errors
Thanks to Mathieu Malaterre for reporting the
Que/Queue typo. (https://bugs.debian.org/839542)
Reviewed-by: Lou
ffmpeg | branch: master | Andreas Cadhalpun
| Sat Oct 22 01:18:38 2016 +0200| [178eebd79e5bf3f4a4471576cd1a48bf9df59e09] |
committer: Andreas Cadhalpun
mpegts: handle AVMEDIA_TYPE_UNKNOWN correctly
It is negative, so can't be used for left shifting.
This fixes ubsan runtime error:
ffmpeg | branch: master | Andreas Cadhalpun
| Sat Oct 22 20:12:30 2016 +0200| [2506a7cc09ca6c7d3bf064ae8d16828a81f6a417] |
committer: Andreas Cadhalpun
faq: use relative links to own documentation
This way locally installed documentation refers to itself instead of the
website.
Bud-Id: https
ffmpeg | branch: master | Andreas Cadhalpun
| Thu Oct 27 22:34:48 2016 +0200| [940b8908b94404a65f9f55e33efb4ccc6c81383c] |
committer: Andreas Cadhalpun
apng: use side data to pass extradata to muxer
This fixes creating apng files, which is broken since commit
ffmpeg | branch: master | Andreas Cadhalpun
| Fri Oct 28 01:38:51 2016 +0200| [97792e85c338d129342f5812e2a52048373e57d6] |
committer: Andreas Cadhalpun
fate: add apng encoding/muxing test
Also test the fallback to png creation for a single frame.
Reviewed-by: James Almer
Signed-off-by
ffmpeg | branch: master | Andreas Cadhalpun
| Tue Oct 25 19:09:46 2016 +0200| [890eb3d7c477b9fd2c6b1fa0785aca1d02a12e29] |
committer: Andreas Cadhalpun
configure: make sure LTO does not optimize out the test functions
Fixes trac ticket #5909
Bud-Id: https://bugs.gentoo.org/show_bug.cgi?id
ffmpeg | branch: master | Andreas Cadhalpun
| Sat Oct 29 16:55:14 2016 +0200| [1e660fe88d2dd8fdcb0136b4cee3152f61ebc6c5] |
committer: Andreas Cadhalpun
doc: fix spelling errors
Reviewed-by: Lou Logan
Signed-off-by: Andreas Cadhalpun
> http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=com
ffmpeg | branch: master | Andreas Cadhalpun
| Sun Oct 30 20:47:22 2016 +0100| [14e4e26559697cfdea584767be4e68474a0a9c7f] |
committer: Andreas Cadhalpun
interplayacm: check for too large b
This fixes out-of-bounds reads.
Reviewed-by: Paul B Mahol
Signed-off-by: Andreas Cadhalpun
> h
ffmpeg | branch: master | Andreas Cadhalpun
| Sun Oct 30 21:41:11 2016 +0100| [5540d6c1343e6d1e06d6601b7d35884761711e3e] |
committer: Andreas Cadhalpun
interplayacm: validate number of channels
The number of channels is used as divisor in decode_frame, so it must
not be zero to avoid SIGFPE
ffmpeg | branch: master | Andreas Cadhalpun
| Sun Oct 30 21:18:20 2016 +0100| [60178e78f2fe9a7bfb9da0abc985835e2ebfd2f1] |
committer: Andreas Cadhalpun
interplayacm: increase bitstream buffer size by AV_INPUT_BUFFER_PADDING_SIZE
This fixes out-of-bounds reads by the bitstream reader
ffmpeg | branch: master | Andreas Cadhalpun
| Tue Nov 1 01:05:01 2016 +0100| [9d83b209d8861f1daf55f6719b1e0c226ed7269a] |
committer: Andreas Cadhalpun
mov: immediately return from mov_fix_index without old index entries
If there are no index entries, e_old = st->index_entries is only
ffmpeg | branch: master | Andreas Cadhalpun
| Tue Nov 1 17:36:47 2016 +0100| [719c15aa9ad6983200b78e5dbc17443f649c8af9] |
committer: Andreas Cadhalpun
fate: add streamcopy test for apng
Reviewed-by: James Almer
Signed-off-by: Andreas Cadhalpun
> http://git.videolan.org/gitweb.
ffmpeg | branch: master | Andreas Cadhalpun
| Tue Nov 1 17:06:51 2016 +0100| [e0c6b32046f4bab7d34be77dd2f03b2a80c86d39] |
committer: Andreas Cadhalpun
apngdec: use side data to pass extradata to the decoder
Fixes remuxing apng streams coming from the apng demuxer.
This is a regression since
ffmpeg | branch: master | Andreas Cadhalpun
| Mon Oct 17 20:26:51 2016 +0200| [f84ae3f04aa074afeaeafe6b478d603ce46df55e] |
committer: Andreas Cadhalpun
avformat: close parser if codec changed
The parser depends on the codec and thus must not be used with a different one.
If it is, the '
ffmpeg | branch: master | Andreas Cadhalpun
| Wed Nov 2 21:28:49 2016 +0100| [3932ccc472ad4f4d370dcfc1c2f574b0f3acb88c] |
committer: Andreas Cadhalpun
ppc: pixblockdsp: do unaligned block accesses correctly again
This was broken by the following Libav commit:
4c387c7 ppc: dsputil: do
ffmpeg | branch: master | Andreas Cadhalpun
| Fri Nov 4 19:00:17 2016 +0100| [db79dedb1ae5dd38432eee3f09155e26f3f2d95a] |
committer: Andreas Cadhalpun
diracdec: check return code of get_buffer_with_edge
If it fails, buffers aren't allocated, causing NULL pointer dereferencing.
Review
ffmpeg | branch: master | Andreas Cadhalpun
| Fri Nov 4 18:59:31 2016 +0100| [8a4ea9644833d43fdfe8579c0cb569f8a0930206] |
committer: Andreas Cadhalpun
diracdec: use correct buffer for slice_params_buf realloc
This fixes a double-free detected by AddressSanitizer.
The problem was introduced
ffmpeg | branch: master | Andreas Cadhalpun
| Fri Nov 4 19:00:01 2016 +0100| [24d20496d2e6e1df6456c5231d892269dd1fcf38] |
committer: Andreas Cadhalpun
diracdec: clear slice_params_num_buf on allocation failure
Otherwise it can be non-zero next time decode_lowdelay is called, causing
ffmpeg | branch: master | Andreas Cadhalpun
| Sat Nov 5 00:17:53 2016 +0100| [0efb6106118c17308b3fdc3190f5e5bf84b01d5c] |
committer: Andreas Cadhalpun
mxfdec: fix NULL pointer dereference
Metadata streams have priv_data set to NULL.
Reviewed-by: Michael Niedermayer
Signed-off-by: Andreas
ffmpeg | branch: master | Andreas Cadhalpun
| Fri Nov 4 22:58:49 2016 +0100| [bb6a7b6f75ac544c956e3eefee297700ef4d3468] |
committer: Andreas Cadhalpun
lzf: update pointer p after realloc
This fixes heap-use-after-free detected by AddressSanitizer.
Reviewed-by: Luca Barbato
Signed-off-by
ffmpeg | branch: master | Andreas Cadhalpun
| Sun Oct 23 16:23:55 2016 +0200| [fc022e77eed66ccfd7ac1788ba23f790c6769dee] |
committer: Andreas Cadhalpun
mov: validate sample_rate
A negative sample rate doesn't make sense and triggers assertions in
av_rescale_rnd.
fate-aac-al07_96 fai
ffmpeg | branch: master | Andreas Cadhalpun
| Sun Oct 23 17:19:20 2016 +0200| [54b8fbbc5dc9b74e0a96d7730bfacc8bc1b59e85] |
committer: Andreas Cadhalpun
voc_packet: validate sample_rate
A negative sample rate doesn't make sense and triggers assertions in
av_rescale_rnd.
Signed-off-by: An
ffmpeg | branch: master | Andreas Cadhalpun
| Sun Oct 23 17:08:51 2016 +0200| [f748e3b5a219061db021d8b6b7ebb097c65f23c5] |
committer: Andreas Cadhalpun
nuv: validate sample_rate
A negative sample rate doesn't make sense and triggers assertions in
av_rescale_rnd.
Signed-off-by: An
ffmpeg | branch: master | Andreas Cadhalpun
| Sun Oct 23 17:06:45 2016 +0200| [2c818c3821e4e1646610112d4e01fdcc33071901] |
committer: Andreas Cadhalpun
mvdec: validate sample_rate
A negative sample rate doesn't make sense and triggers assertions in
av_rescale_rnd.
Signed-off-by: An
ffmpeg | branch: master | Andreas Cadhalpun
| Sun Oct 23 16:38:52 2016 +0200| [a398f054fdb9b0f0b5a91c231fba6ce014143f71] |
committer: Andreas Cadhalpun
mov: validate time_scale
A negative timescale doesn't make sense and triggers assertions in
av_rescale_rnd.
Signed-off-by: Andreas Cadh
ffmpeg | branch: master | Andreas Cadhalpun
| Sun Oct 23 17:25:15 2016 +0200| [34aeb5dbc4fe7267df5f0ebe2ec84c5a8d36a896] |
committer: Andreas Cadhalpun
xmv: validate sample_rate
AVCodecParameters.sample_rate is a signed integer, so
XMVAudioPacket.sample_rate should be, too.
A negative sample
ffmpeg | branch: master | Andreas Cadhalpun
| Sun Oct 23 16:05:01 2016 +0200| [0009457dc09739685ee192c90d6691e1663c8b9c] |
committer: Andreas Cadhalpun
ffmdec: validate sample_rate
A negative sample rate doesn't make sense and triggers assertions in
av_rescale_rnd.
Signed-off-by: An
ffmpeg | branch: master | Andreas Cadhalpun
| Sun Oct 23 15:47:40 2016 +0200| [2eb05eaa682ec49eade91e358ace4e1415695686] |
committer: Andreas Cadhalpun
adxdec: validate sample_rate
A negative sample rate doesn't make sense and triggers assertions in
av_rescale_rnd.
Signed-off-by: An
ffmpeg | branch: master | Andreas Cadhalpun
| Sun Oct 23 17:12:49 2016 +0200| [eb205eda3fec9959037c419548b1ebfaa6c59c33] |
committer: Andreas Cadhalpun
oggparsespeex: validate sample_rate
A negative sample rate doesn't make sense and triggers assertions in
av_rescale_rnd.
Signed-o
ffmpeg | branch: master | Andreas Cadhalpun
| Sun Oct 23 17:03:04 2016 +0200| [074775462283e59657fbd18e76435371a2b80fda] |
committer: Andreas Cadhalpun
mpeg4audio: validate sample_rate
A negative sample rate doesn't make sense and triggers assertions in
av_rescale_rnd.
Also check for e
ffmpeg | branch: master | Andreas Cadhalpun
| Sun Oct 23 15:54:01 2016 +0200| [872fcfcc0f01230ef761e286b0c6a18817e0a162] |
committer: Andreas Cadhalpun
bfi: validate sample_rate
A negative sample rate doesn't make sense and triggers assertions in
av_rescale_rnd.
Reviewed-by: Mi
ffmpeg | branch: master | Andreas Cadhalpun
| Sun Oct 23 16:48:01 2016 +0200| [9d36602abc4ef5b69b92feadf868c77e5e9ccc7d] |
committer: Andreas Cadhalpun
mov: validate sidx timescale
A negative timescale doesn't make sense and triggers assertions in
av_rescale_rnd.
Signed-off-by: An
ffmpeg | branch: master | Andreas Cadhalpun
| Mon Nov 7 19:43:16 2016 +0100| [2c90316b46fce5785bc6af72c8fd369c3104] |
committer: Andreas Cadhalpun
hls: fix leaking avio_opts on hls_read_header error
Use the hls_close function to reduce code duplication.
Reviewed-by: Michael Niedermayer
ffmpeg | branch: master | Andreas Cadhalpun
| Mon Nov 7 00:09:54 2016 +0100| [a305e0e5c0de4bb90c153ef067b08f437fe2483d] |
committer: Andreas Cadhalpun
hls: move hls_close above hls_read_header
This is needed for the following commit.
Reviewed-by: Michael Niedermayer
Signed-off-by: Andreas
ffmpeg | branch: master | Andreas Cadhalpun
| Mon Nov 7 01:16:14 2016 +0100| [5249706e9d2ec5ed1b07d8ffdbb8fb9104261f6d] |
committer: Andreas Cadhalpun
mpegaudio_parser: don't return AVERROR_PATCHWELCOME
The API does not allow returning AVERROR codes.
It triggers an asse
ffmpeg | branch: master | Andreas Cadhalpun
| Tue Nov 8 00:42:23 2016 +0100| [ff100c9dd97d2f1f456ff38b192edf84f9744738] |
committer: Andreas Cadhalpun
matroskadec: fix NULL pointer dereference in webm_dash_manifest_read_header
The code assumes that s->streams[0] is valid.
Reviewed
ffmpeg | branch: master | Andreas Cadhalpun
| Mon Nov 7 23:37:59 2016 +0100| [1bbb18fe82fc77a10d45fa53bd2738d2c54de6c6] |
committer: Andreas Cadhalpun
mpegts: prevent division by zero
Reviewed-by: Michael Niedermayer
Signed-off-by: Andreas Cadhalpun
> http://git.videolan.org/gitweb.
ffmpeg | branch: master | Andreas Cadhalpun
| Tue Nov 8 23:53:52 2016 +0100| [467eece1bea5c8325c6974190ba61f1bba88a3f3] |
committer: Andreas Cadhalpun
icodec: fix leaking pkt on error
Reviewed-by: Michael Niedermayer
Signed-off-by: Andreas Cadhalpun
> http://git.videolan.org/gitweb.
ffmpeg | branch: master | Andreas Cadhalpun
| Tue Nov 8 23:54:41 2016 +0100| [d54c95a1435a8a3fcd599108ec85b7f56a0fcbf9] |
committer: Andreas Cadhalpun
icodec: add ico_read_close to fix leaking ico->images
Reviewed-by: Michael Niedermayer
Signed-off-by: Andreas Cadhalpun
>
ffmpeg | branch: master | Andreas Cadhalpun
| Wed Nov 9 00:38:50 2016 +0100| [226d35c84591f1901c2a13819031549909faa1f5] |
committer: Andreas Cadhalpun
escape124: reject codebook size 0
It causes a cb_depth of 32, leading to assertion failures in get_bits.
Reviewed-by: Michael Niedermayer
ffmpeg | branch: master | Andreas Cadhalpun
| Tue Nov 8 22:32:42 2016 +0100| [c82b8ef0e4f226423ddd644bfe37e6a15d070924] |
committer: Andreas Cadhalpun
dvbsubdec: fix division by zero in compute_default_clut
This problem was introduced in commit
4b90dcb8493552c17a811c8b1e6538dae4061f9d
ffmpeg | branch: master | Andreas Cadhalpun
| Wed Nov 9 23:49:46 2016 +0100| [1e33035ee7a8d9fb7a4b8b6cc54842e72b36ed70] |
committer: Andreas Cadhalpun
proresdec_lgpl: explicitly check coff[3] against slice_data_size
The implicit checks via v_data_size and a_data_size don't work in the
ffmpeg | branch: master | Andreas Cadhalpun
| Tue Nov 8 23:29:28 2016 +0100| [89eb398c7fc4cb9a15e55bdf2ab6435b5332e377] |
committer: Andreas Cadhalpun
icodec: correctly check avio_read return value
It can read less than the requested amount, in which case buf contains
uninitialized data
ffmpeg | branch: master | Andreas Cadhalpun
| Thu Nov 10 22:09:03 2016 +0100| [360bc0d90aa66cf21e9f488e77d21db18e01ec9c] |
committer: Andreas Cadhalpun
smvjpegdec: make sure cur_frame is not negative
This fixes a heap-buffer-overflow detected by AddressSanitizer.
Reviewed-by: Michael
ffmpeg | branch: master | Andreas Cadhalpun
| Thu Nov 10 20:31:02 2016 +0100| [484151df7c8f4fb45229b9b3a585efd3faa62501] |
committer: Andreas Cadhalpun
pnm: limit maxval to UINT16_MAX
From 'man ppm': The maximum color value (Maxval), again in ASCII decimal.
Must be
ffmpeg | branch: master | Andreas Cadhalpun
| Wed Nov 9 01:09:35 2016 +0100| [cdb5479c9ddc886f0b8661db585405ebab343e80] |
committer: Andreas Cadhalpun
pnmdec: make sure v is capped by maxval
Otherwise put_bits can be called with a value that doesn't fit in the
sample_len, causi
ffmpeg | branch: master | Andreas Cadhalpun
| Sat Nov 12 23:45:52 2016 +0100| [7112b56a3413b68261e3db0314343e26c75be83b] |
committer: Andreas Cadhalpun
vp9_mc_template: limit assert to SCALED == 0
The handling of the other block sizes was limited to 'SCALED == 0'
ffmpeg | branch: master | Andreas Cadhalpun
| Sun Nov 13 18:22:12 2016 +0100| [25012c56448a48487cdc9699465e640871dbcd60] |
committer: Andreas Cadhalpun
filmstripdec: correctly check image dimensions
This prevents a division by zero in read_packet.
Reviewed-by: Paul B Mahol
Signed-off-by
ffmpeg | branch: master | Andreas Cadhalpun
| Sun Nov 13 20:52:02 2016 +0100| [0edd569466eb45b134690b9f4efbb57eda86f58d] |
committer: Andreas Cadhalpun
softfloat: handle -INT_MAX correctly
This is similar to commit 9ac61e73d0843ec4b83f4e3d47eded73234e406e.
Reviewed-by: Michael Niedermayer
ffmpeg | branch: master | Andreas Cadhalpun
| Tue Nov 15 00:11:30 2016 +0100| [1abcd972c4c0e16f1e83be2fd32a251f51b2946d] |
committer: Andreas Cadhalpun
mlz: limit next_code to data buffer size
This fixes a heap-buffer-overflow detected by AddressSanitizer.
Reviewed-by: Michael Niedermayer
ffmpeg | branch: master | Andreas Cadhalpun
| Sun Nov 13 23:10:06 2016 +0100| [3c0328d58d98664b05efdd377d3fe66a569d385e] |
committer: Andreas Cadhalpun
libschroedingerdec: fix leaking of framewithpts
Reviewed-by: Michael Niedermayer
Signed-off-by: Andreas Cadhalpun
> h
ffmpeg | branch: master | Andreas Cadhalpun
| Tue Nov 15 22:11:05 2016 +0100| [90ebf3c428352eb1d4116bf97b470ceca295d7d6] |
committer: Andreas Cadhalpun
dds: limit 4 bpp handling to AV_PIX_FMT_PAL8
This fixes NULL pointer dereferencing for formats, where frame->data[1]
is not allocated.
ffmpeg | branch: master | Andreas Cadhalpun
| Sun Nov 13 22:59:47 2016 +0100| [a86ebbf7f641bc797002ddea7fb517759722cd1b] |
committer: Andreas Cadhalpun
libschroedingerdec: don't produce empty frames
They are not valid and can cause problems/crashes for API users.
Reviewed-by: Mi
ffmpeg | branch: master | Andreas Cadhalpun
| Wed Nov 16 20:47:35 2016 +0100| [ce3147eb198770b558acf6c05f33cb807a413707] |
committer: Andreas Cadhalpun
exr: reindent after previous commit
Signed-off-by: Andreas Cadhalpun
> http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commi
ffmpeg | branch: master | Andreas Cadhalpun
| Wed Nov 16 20:46:56 2016 +0100| [ffdc5d09e498bee8176c9e35df101c01c546a738] |
committer: Andreas Cadhalpun
exr: fix out-of-bounds read
channel_index can be -1.
This problem was introduced in commit
2dd7b46132e2801ef34fe1b5c27e0113cdcfa2f9
ffmpeg | branch: release/3.2 | Andreas Cadhalpun
| Fri Nov 4 19:00:17 2016 +0100|
[31cebfe789ff07248726043daaa6b5375ce57389] | committer: Andreas Cadhalpun
diracdec: check return code of get_buffer_with_edge
If it fails, buffers aren't allocated, causing NULL pointer dereferencing.
Rev
ffmpeg | branch: release/3.2 | Andreas Cadhalpun
| Mon Nov 7 23:37:59 2016 +0100|
[9dee25fbc79661b8d11039eacb6b4cf8fe2fc1f9] | committer: Andreas Cadhalpun
mpegts: prevent division by zero
Reviewed-by: Michael Niedermayer
Signed-off-by: Andreas Cadhalpun
(cherry picked from commit
ffmpeg | branch: release/3.2 | Andreas Cadhalpun
| Tue Nov 8 23:29:28 2016 +0100|
[1615d83dcf6ed0401be2f8afbdd8af8d2fc56815] | committer: Andreas Cadhalpun
icodec: correctly check avio_read return value
It can read less than the requested amount, in which case buf contains
uninitialized data
ffmpeg | branch: release/3.2 | Andreas Cadhalpun
| Thu Oct 27 22:34:48 2016 +0200|
[1af7ddecda33b3f25304ae71d8421c966f1263f3] | committer: Andreas Cadhalpun
apng: use side data to pass extradata to muxer
This fixes creating apng files, which is broken since commit
ffmpeg | branch: release/3.2 | Andreas Cadhalpun
| Wed Nov 9 23:49:46 2016 +0100|
[1ed4b527321f4380d18aeb4306574f4b6ec610c7] | committer: Andreas Cadhalpun
proresdec_lgpl: explicitly check coff[3] against slice_data_size
The implicit checks via v_data_size and a_data_size don't work i
ffmpeg | branch: release/3.2 | Andreas Cadhalpun
| Fri Nov 4 22:58:49 2016 +0100|
[c72ac9ffd017ce04238f380260d8fc9e22266d7b] | committer: Andreas Cadhalpun
lzf: update pointer p after realloc
This fixes heap-use-after-free detected by AddressSanitizer.
Reviewed-by: Luca Barbato
Signed-off
ffmpeg | branch: release/3.2 | Andreas Cadhalpun
| Wed Nov 9 00:38:50 2016 +0100|
[72a2d6ff56ce2e06a756d1f86cae300944838096] | committer: Andreas Cadhalpun
escape124: reject codebook size 0
It causes a cb_depth of 32, leading to assertion failures in get_bits.
Reviewed-by: Michael
ffmpeg | branch: release/3.2 | Andreas Cadhalpun
| Tue Nov 8 22:32:42 2016 +0100|
[581cce0cca80e9a999edfa74b0b756856da484f0] | committer: Andreas Cadhalpun
dvbsubdec: fix division by zero in compute_default_clut
This problem was introduced in commit
4b90dcb8493552c17a811c8b1e6538dae4061f9d
ffmpeg | branch: release/3.2 | Andreas Cadhalpun
| Sun Oct 30 20:47:22 2016 +0100|
[c90d521f161b20b94097e89a74c3465cfc5d2471] | committer: Andreas Cadhalpun
interplayacm: check for too large b
This fixes out-of-bounds reads.
Reviewed-by: Paul B Mahol
Signed-off-by: Andreas Cadhalpun
ffmpeg | branch: release/3.2 | Andreas Cadhalpun
| Sat Nov 5 00:17:53 2016 +0100|
[c11fd9de7653cd95005b5f7432a61a2e4c1145f1] | committer: Andreas Cadhalpun
mxfdec: fix NULL pointer dereference
Metadata streams have priv_data set to NULL.
Reviewed-by: Michael Niedermayer
Signed-off-by
ffmpeg | branch: release/3.2 | Andreas Cadhalpun
| Fri Oct 28 01:38:51 2016 +0200|
[e622d7723bcfc4a4bbdb9d17f6db1dbc82776f57] | committer: Andreas Cadhalpun
fate: add apng encoding/muxing test
Also test the fallback to png creation for a single frame.
Reviewed-by: James Almer
Signed-off-by
ffmpeg | branch: release/3.2 | Andreas Cadhalpun
| Mon Nov 7 01:16:14 2016 +0100|
[1e4979f780a8b80f0ca9ed7bafa2fbbdfd54413a] | committer: Andreas Cadhalpun
mpegaudio_parser: don't return AVERROR_PATCHWELCOME
The API does not allow returning AVERROR codes.
It triggers an asse
ffmpeg | branch: release/3.2 | Andreas Cadhalpun
| Sun Oct 30 21:41:11 2016 +0100|
[266cf258cc9377fa46acf78dfcb354b4cb12ef6f] | committer: Andreas Cadhalpun
interplayacm: validate number of channels
The number of channels is used as divisor in decode_frame, so it must
not be zero to avoid
ffmpeg | branch: release/3.2 | Andreas Cadhalpun
| Tue Nov 15 00:11:30 2016 +0100|
[a2c7840a6b69671adec490cac375f51e09a654b4] | committer: Andreas Cadhalpun
mlz: limit next_code to data buffer size
This fixes a heap-buffer-overflow detected by AddressSanitizer.
Reviewed-by: Michael
ffmpeg | branch: release/3.2 | Andreas Cadhalpun
| Tue Nov 8 23:53:52 2016 +0100|
[41359d381a2b5f5057502b2839b5eb42af69804f] | committer: Andreas Cadhalpun
icodec: fix leaking pkt on error
Reviewed-by: Michael Niedermayer
Signed-off-by: Andreas Cadhalpun
(cherry picked from commit
ffmpeg | branch: release/3.2 | Andreas Cadhalpun
| Tue Oct 25 19:09:46 2016 +0200|
[e92f585bd90ede07a252113ba4bf8e79cd5852de] | committer: Andreas Cadhalpun
configure: make sure LTO does not optimize out the test functions
Fixes trac ticket #5909
Bud-Id: https://bugs.gentoo.org/show_bug.cgi
1 - 100 of 1134 matches
Mail list logo
