diff options
author | Reinhard Tartler <siretart@tauware.de> | 2012-06-03 19:22:09 +0200 |
---|---|---|
committer | Reinhard Tartler <siretart@tauware.de> | 2012-06-03 19:22:09 +0200 |
commit | ee66a7198eea0ab3aefae0b3de5a17473f4374cf (patch) | |
tree | a8422d07e2ff015f77dc436728ec2e1bbd69ad0e | |
parent | 50336dc4f12d629492b236c84b9ea2adead720db (diff) | |
download | ffmpeg-ee66a7198eea0ab3aefae0b3de5a17473f4374cf.tar.gz |
Update changelog for 0.7.6 release
-rw-r--r-- | Changelog | 18 |
1 files changed, 18 insertions, 0 deletions
@@ -1,6 +1,24 @@ Entries are sorted chronologically from oldest to youngest within each release, releases are sorted from youngest to oldest. +version 0.7.6: + +Security Updates: + +- vqavideo: return error if image size is not a multiple of block size (CVE-2012-0947) +- h263dec: Disallow width/height changing with frame threads (CVE-2011-3937) +- adpcm: ADPCM Electronic Arts has always two channels (CVE-2012-0852) +- h264: Add check for invalid chroma_format_idc (CVE-2012-0851) +- dpcm: ignore extra unpaired bytes in stereo streams (CVE-2011-3951) +- rtpdec_asf: Fix integer underflow that could allow remote code execution (CVE-2011-4031) +- aacsbr: prevent out of bounds memcpy() (CVE-2012-0850) +- kmvc: Check palsize (CVE-2011-3952) + +Further bugfixes in the following codecs: + + ea, png, qdm2, tqi, motionpixels, and a compilation failure with gcc 4.7 + + version 0.7.5: Security updates: |