[SCM] libav/squeeze: update debian/changelog
siretart at users.alioth.debian.org
siretart at users.alioth.debian.org
Thu May 10 20:27:44 UTC 2012
The following commit has been merged in the squeeze branch:
commit 535bbb10cae0be51b2f8c4b8228037d3f66a1461
Author: Reinhard Tartler <siretart at tauware.de>
Date: Thu May 10 20:51:59 2012 +0200
update debian/changelog
diff --git a/debian/changelog b/debian/changelog
index ecf762d..4e03e59 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,28 @@
+ffmpeg (4:0.5.8-1) stable-security; urgency=low
+
+ * New upstream release. New release fixes:
+ - In 0.5.8:
+ - id3v2: fix skipping extended header in id3v2.4
+ - nsvdec: Several bugfixes related to CVE-2011-3940
+ - dv: check stype
+ - dv: Fix null pointer dereference due to ach=0
+ - dv: Fix small stack overread related to CVE-2011-3929 and CVE-2011-3936.
+ - atrac3: Fix crash in tonal component decoding, fixes CVE-2012-0853
+ - mjpegbdec: Fix overflow in SOS, fixes CVE-2011-3947
+ - motionpixels: Clip YUV values after applying a gradient.
+ - vqavideo: return error if image size is not a multiple of block size,
+ fixes CVE-2012-0947.
+ - In 0.5.7:
+ - vorbis: An additional defense in the Vorbis codec. (CVE-2011-3895)
+ - vorbisdec: Fix decoding bug with channel handling.
+ - matroskadec: Fix a bug where a pointer was cached to an array that might
+ later move due to a realloc(). (CVE-2011-3893)
+ - vorbis: Avoid some out-of-bounds reads. (CVE-2011-3893)
+ - vp3: fix oob read for negative tokens and memleaks on error, (CVE-2011-3892)
+ - vp3: fix streams with non-zero last coefficient.
+
+ -- Reinhard Tartler <siretart at tauware.de> Thu, 10 May 2012 20:51:54 +0200
+
ffmpeg (4:0.5.6-3) stable-security; urgency=low
* Also disable the cavsvideo parser in addition to the CAVS decoder on
--
Libav/FFmpeg packaging
More information about the pkg-multimedia-commits
mailing list