Package Release Info

ffmpeg2-2.8.13-2.1

Update Info: openSUSE-2017-1152
Available in Package Hub : 12 SP2-SP5

platforms

AArch64
ppc64le
s390x
x86-64

subpackages

ffmpeg2-devel
libavcodec56
libavdevice56
libavfilter5
libavformat56
libavresample2
libavutil54
libpostproc53
libswresample1
libswscale3

Change Logs

* Tue Sep 12 2017 jengelh@inai.de
- Add patches 0001-avformat-asfdec-Fix-DoS-in-asf_build_simple_index.patch
  [CVE-2017-14223] [boo#1058019],
  0001-avformat-mov-Fix-DoS-in-read_tfra.patch
  [CVE-2017-14222] [boo#1058020]
* Mon Sep 04 2017 jengelh@inai.de
- Update to new bugfix release 2.8.13
  * avformat/hls: Fix DoS due to infinite loop
    [CVE-2017-14058] [boo#1056762]
  * avformat/asfdec: Fix DoS due to lack of eof check
    [CVE-2017-14057] [boo#1056761]
  * avformat/cinedec: Fix DoS due to lack of eof check
    [CVE-2017-14059] [boo#1056763]
  * avformat/rl2: Fix DoS due to lack of eof check
    (code not enabled in openSUSE, though in packman)
    [CVE-2017-14056] [boo#1056760]
  * avformat/mvdec: Fix DoS due to lack of eof check
    [CVE-2017-14055] [boo#1056766]
  * avformat/mxfdec: Fix Sign error in mxf_read_primer_pack
    [CVE-2017-14169] [boo#1057536]
  * avformat/mxfdec: Fix DoS issues in mxf_read_index_entry_array
    [CVE-2017-14170] [boo#1057537]
  * avformat/nsvdec: Fix DoS due to lack of eof check in
    nsvs_file_offset loop. [CVE-2017-14171] [boo#1057539]
  * avutil/pixdesc: av_color_primaries_name NULL deref fixed
    [CVE-2017-14225] [boo#1058018]
* Sat Aug 26 2017 jengelh@inai.de
- Unconditionalize celt, ass, openjpeg, webp, libva, vdpau.
* Fri Aug 25 2017 olaf@aepfle.de
- Build unconditionally with lame and twolame
Version: 2.8.12-15.1
* Mon Jun 19 2017 idonmez@suse.com
- Update to new upstream release 2.8.12
  * Lots of integer overflow fixes, see the included Changelog for
    full details. bsc#1046211
Version: 2.8.11-12.1
* Mon May 22 2017 davejplater@gmail.com
- Sync with multimedia:libs/ffmpeg2
* Tue Apr 18 2017 jengelh@inai.de
- Enable AC3 and MP3 decoding to match multimedia:libs/ffmpeg (3.x)
* Sat Apr 01 2017 jengelh@inai.de
- Update to new upstream release 2.8.11
  * pgssubdec: reset rle_data_len/rle_remaining_len on allocation
  error
  * avformat/oggdec: Skip streams in duration correction that did
  not had their duration set.
  * avcodec/mpeg4videodec: Fix undefined shifts in
  mpeg4_decode_sprite_trajectory()
  * avformat/avidec: skip odml master index chunks in avi_sync
  * avcodec/pngdec: Fix off by 1 size in decode_zbuf()
  * lavf/mov.c: Avoid heap allocation wrap in mov_read_hdlr
  * lavf/mov.c: Avoid heap allocation wrap in mov_read_uuid
  * resolved CVE-2016-9561 [boo#1015120],
  CVE-2017-7863 [boo#1034179], CVE-2017-7865 [boo#1034177],
  CVE-2017-7866 [boo#1034176]
* Sat Apr 01 2017 davejplater@gmail.com
- Update to 2.8.10 to fix boo#1022920 VUL-0: CVE-2016-10190
- Removed patches 0001-avcodec-ansi-Check-dimensions.patch,
  0001-avcodec-cavsdsp-use-av_clip_uint8-for-idct.patch,
  0001-avformat-avidec-Remove-ancient-assert.patch and
  0001-avformat-avidec-Check-nb_streams-in-read_gab2_sub.patch.
  They are incorporated in this version.
- Upstream changes:
  * avformat/http: Match chunksize checks to master..3.0
  * Changelog: fix typos
  * ffserver: Check chunk size
  * Avoid using the term "file" and prefer "url" in some docs
  and comments
  * avformat/rtmppkt: Check for packet size mismatches
  * zmqsend: Initialize ret to 0
  * configure: check for strtoull on msvc
  * http: move chunk handling from http_read_stream() to
  http_buf_read().
  * http: make length/offset-related variables unsigned.
  * avcodec/flacdec: Fix undefined shift in decode_subframe()
  * avcodec/get_bits: Fix get_sbits_long(0)
  * avformat/ffmdec: Check media type for chunks
  * avcodec/flacdec: Fix signed integer overflow in
  decode_subframe_fixed()
  * avcodec/flacdsp_template: Fix undefined shift in
  flac_decorrelate_indep_c
  * avformat/oggparsespeex: Check frames_per_packet and packet_size
  * avformat/utils: Check start/end before computing duration in
  update_stream_timings()
  * avcodec/flac_parser: Update nb_headers_buffered
  * avformat/idroqdec: Check chunk_size for being too large
  * filmstripdec: correctly check image dimensions
  * mss2: only use error correction for matching block counts
  * softfloat: decrease MIN_EXP to cover full float range
  * libopusdec: default to stereo for invalid number of channels
  * sbgdec: prevent NULL pointer access
  * smacker: limit recursion depth of smacker_decode_bigtree
  * mxfdec: fix NULL pointer dereference in mxf_read_packet_old
  * libschroedingerdec: fix leaking of framewithpts
  * libschroedingerdec: don't produce empty frames
  * softfloat: handle -INT_MAX correctly
  * pnmdec: make sure v is capped by maxval
  * smvjpegdec: make sure cur_frame is not negative
  * icodec: correctly check avio_read return value
  * icodec: fix leaking pkt on error
  * dvbsubdec: fix division by zero in compute_default_clut
  * proresdec_lgpl: explicitly check coff[3] against slice_data_size
  * escape124: reject codebook size 0
  * mpegts: prevent division by zero
  * matroskadec: fix NULL pointer dereference in
  webm_dash_manifest_read_header
  * mpegaudio_parser: don't return AVERROR_PATCHWELCOME
  * mxfdec: fix NULL pointer dereference
  * diracdec: check return code of get_buffer_with_edge
  * ppc: pixblockdsp: do unaligned block accesses correctly again
  * mpeg12dec: unref discarded picture from extradata
  * cavsdec: unref frame before referencing again
  * avformat: prevent triggering request_probe assert in ff_read_packet
  * avformat/mpeg: Adjust vid probe threshold to correct mis-detection
  * avcodec/rv40: Test remaining space in loop of get_dimension()
  * avcodec/ituh263dec: Avoid spending a long time in slice sync
  * avcodec/movtextdec: Add error message for tsmb_size check
  * avcodec/movtextdec: Fix tsmb_size check==0 check
  * avcodec/movtextdec: Fix potential integer overflow
  * avcodec/sunrast: Fix input buffer pointer check
  * avcodec/tscc:  Check side data size before use
  * avcodec/rawdec: Check side data size before use
  * avcodec/msvideo1: Check side data size before use
  * avcodec/qpeg:  Check side data size before use
  * avcodec/qtrle:  Check side data size before use
  * avcodec/msrle:  Check side data size before use
  * avcodec/kmvc:  Check side data size before use
  * avcodec/idcinvideo: Check side data size before use
  * avcodec/cinepak: Check side data size before use
  * avcodec/8bps: Check side data size before use
  * avcodec/dvdsubdec: Fix off by 1 error
  * avcodec/dvdsubdec: Fix buf_size check
  * vp9: change order of operations in adapt_prob().
  * avcodec/interplayvideo: Check side data size before use
  * avformat/mxfdec: Check size to avoid integer overflow in
  mxf_read_utf16_string()
  * avcodec/mpegvideo_enc: Clear mmx state in
  ff_mpv_reallocate_putbitbuffer()
  * avcodec/utils: Clear MMX state before returning from
  avcodec_default_execute*()
  * cmdutils: fix typos
  * lavfi: fix typos
  * lavc: fix typos
  * tools: fix grammar error
  * avutil/mips/generic_macros_msa: rename macro variable which
  causes segfault for mips r6
  * videodsp: fix 1-byte overread in top/bottom READ_NUM_BYTES
  iterations.
  * avformat/avidec: Check nb_streams in read_gab2_sub()
  * avformat/avidec: Remove ancient assert
  * lavc/movtextdec.c: Avoid infinite loop on invalid data.
  * avcodec/ansi: Check dimensions
  * avcodec/cavsdsp: use av_clip_uint8() for idct
  * resolved CVE-2016-10190 [boo#1022920],
  CVE-2016-10191 [boo#1022921], CVE-2016-10192 [boo#1022922]
* Sat Feb 11 2017 olaf@aepfle.de
- Make sure each subpkg comes from the same src.rpm
* Fri Oct 28 2016 olaf@aepfle.de
- Enable libfdk_aac if it is available at buildtime
* Sat Oct 08 2016 jengelh@inai.de
- Add 0001-avcodec-ansi-Check-dimensions.patch,
  0001-avcodec-cavsdsp-use-av_clip_uint8-for-idct.patch
  0001-avformat-avidec-Check-nb_streams-in-read_gab2_sub.patch
  0001-avformat-avidec-Remove-ancient-assert.patch [boo#1003806]
* Wed Sep 28 2016 dimstar@opensuse.org
- Have libavcodec56 additionally provide libavcodec56(unrestricted)
  when building unrestricted: allow third party packages to require
  the unrestricted codec. The existing -full provides is not
  suitable as it can be provided by multiple libavcodec* packages,
  whereas we require a specific ABI version.
* Tue Sep 27 2016 jengelh@inai.de
- Update to new maintenance release 2.8.8
  * avformat/oggparsevp8: fix pts calculation on pages ending with an invisible frame
  * avcodec/mjpegdec: Do not try to detect last scan but apply idct after all scans for progressive jpeg
  * avformat/oggparseopus: Check that granule pos is within the supported range
  * avformat/utils: Check bps before using it in a shift in ff_get_pcm_codec_id()
  * ffmpeg: Check that r_frame_rate is set before attempting to use it
  * avformat/utils: Do not compute the bitrate from duration == 0
  * avformat/utils: Check negative bps before shifting in ff_get_pcm_codec_id()
  * avformat/avidec: Detect index with too short entries
  * avformat/oggparseopus: Fix Undefined behavior in oggparseopus.c and libavformat/utils.c
  * avformat/allformats: Making av_register_all() thread-safe.
  * avcodec/vp9_parser: Check the input frame sizes for being consistent
  * avformat/oggdec: Fix integer overflow with invalid pts
  * avcodec/ffv1enc: Fix assertion failure with non zero bits per sample
  * avcodec/diracdec: Check numx/y
  * avformat/avidec: Fix infinite loop in avi_read_nikon()
- Add 0001-avcodec-exr-Check-tile-positions.patch [bnc#998636]
* Fri Aug 12 2016 jengelh@inai.de
- Make a copy of existing ffmpeg 3.x package (specfiles, patches)
  and add the most recent ffmpeg 2.x series tarball.
  This is for VLC?
- Update to new upstream release 2.8.7
  * swscale/x86/output: Fix yuv2planeX_16* with unaligned destination
  * libwebpenc_animencoder: zero initialize the
  WebPAnimEncoderOptions struct
  * avcodec/avpacket: Fix off by 5 error
* Tue May 31 2016 robert.munteanu@gmail.com
- Guard usage of opencore using bcond_with, boo#980542
* Thu Apr 28 2016 aloisio@gmx.com
- Dropped dcadec (libdca was merged upstream)
* Mon Apr 25 2016 jengelh@inai.de
- Add ffmpeg-codec-choice.diff
* Sun Apr 17 2016 olaf@aepfle.de
- Remove ffmpeg-devel subpackage.
  All users have been converted to pkgconfig
  Add Provides/Obsoletes to libavdevice-devel
* Sun Apr 10 2016 jengelh@inai.de
- Add ffmpeg-new-coder-errors.diff
* Wed Apr 06 2016 jengelh@inai.de
- Another try at organizing the codec-enable list.
  Enable video: AYUV, Dirac, MJPEG, rawvideo, Theora, VP8, VP9, WebP,
  zlib
  Enable audio: Celt, GSM, Opus, Speex, Vorbis
  Enable subtitle: ASS/SSA text, SRT text, UTF-8 plaintext
* Tue Feb 16 2016 olaf@aepfle.de
- Update included pkgconfig files to require the exact version
  of ffmpeg pc files, instead of any later version
  ffmpeg-pkgconfig-version.patch
* Mon Feb 15 2016 idonmez@suse.com
- Remove the optional vo-aacenc dependency, upstream removed it.
* Tue Feb 02 2016 aloisio@gmx.com
- Update to version 2.8.6
  * avcodec/jpeg2000dec: More completely check cdef
  * avutil/opt: check for and handle errors in av_opt_set_dict2()
  * avcodec/flacenc: fix calculation of bits required in case
    of custom sample rate
  * avformat: Document urls a bit
  * avformat/libquvi: Set default demuxer and protocol
    limitations
  * avformat/concat: Check protocol prefix
  * doc/demuxers: Document enable_drefs and use_absolute_path
  * avcodec/mjpegdec: Check for end for both bytes in unescaping
  * avcodec/mpegvideo_enc: Check for integer overflow in
    ff_mpv_reallocate_putbitbuffer()
  * avformat/avformat: Replace some references to filenames by
    urls
  * avcodec/wmaenc: Check ff_wma_init() for failure
  * avcodec/mpeg12enc: Move high resolution thread check to
    before initializing threads
  * avformat/img2dec: Use AVOpenCallback
  * avformat/avio: Limit url option parsing to the documented
    cases
  * avformat/img2dec: do not interpret the filename by default
    if a IO context has been opened
  * avcodec/ass_split: Fix null pointer dereference in
    ff_ass_style_get()
  * mov: Add an option to toggle dref opening
  * avcodec/gif: Fix lzw buffer size
  * avcodec/put_bits: Assert buf_ptr in flush_put_bits()
  * avcodec/tiff: Check subsample & rps values more completely
  * swscale/swscale: Add some sanity checks for srcSlice*
    parameters
  * swscale/x86/rgb2rgb_template: Fix planar2x() for short
    width
  * swscale/swscale_unscaled: Fix odd height inputs for
    bayer_to_yv12_wrapper()
  * swscale/swscale_unscaled: Fix odd height inputs for
    bayer_to_rgb24_wrapper()
  * avcodec/aacenc: Check both channels for finiteness
  * asfdec_o: check for too small size in asf_read_unknown
  * asfdec_o: break if EOF is reached after
    asf_read_packet_header
  * asfdec_o: make sure packet_size is non-zero before seeking
  * asfdec_o: prevent overflow causing seekback
  * asfdec_o: check avio_skip in asf_read_simple_index
  * asfdec_o: reject size > INT64_MAX in asf_read_unknown
  * asfdec_o: only set asf_pkt->data_size after sanity checks
  * Merge commit '8375dc1dd101d51baa430f34c0bcadfa37873896'
  * dca: fix misaligned access in avpriv_dca_convert_bitstream
  * brstm: fix missing closing brace
  * brstm: also allocate b->table in read_packet
  * brstm: make sure an ADPC chunk was read for adpcm_thp
  * vorbisdec: reject rangebits 0 with non-0 partitions
  * vorbisdec: reject channel mapping with less than two
    channels
  * ffmdec: reset packet_end in case of failure
  * avformat/ipmovie: put video decoding_map_size into packet
    and use it in decoder
  * avformat/brstm: fix overflow
* Sun Jan 17 2016 idonmez@suse.com
- Update to version 2.8.5
  * Fixes CVE-2016-1897 and CVE-2016-1898 [boo#961937]