[FFmpeg-cvslog] Update changelog for 0.7.6 release
Reinhard Tartler
git at videolan.org
Mon Jun 4 13:07:45 CEST 2012
ffmpeg | branch: release/0.8 | Reinhard Tartler <siretart at tauware.de> | Sun Jun 3 19:22:09 2012 +0200| [ee66a7198eea0ab3aefae0b3de5a17473f4374cf] | committer: Reinhard Tartler
Update changelog for 0.7.6 release
> http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=ee66a7198eea0ab3aefae0b3de5a17473f4374cf
---
Changelog | 18 ++++++++++++++++++
1 file changed, 18 insertions(+)
diff --git a/Changelog b/Changelog
index 425f6e2..f434aa1 100644
--- a/Changelog
+++ b/Changelog
@@ -1,6 +1,24 @@
Entries are sorted chronologically from oldest to youngest within each release,
releases are sorted from youngest to oldest.
+version 0.7.6:
+
+Security Updates:
+
+- vqavideo: return error if image size is not a multiple of block size (CVE-2012-0947)
+- h263dec: Disallow width/height changing with frame threads (CVE-2011-3937)
+- adpcm: ADPCM Electronic Arts has always two channels (CVE-2012-0852)
+- h264: Add check for invalid chroma_format_idc (CVE-2012-0851)
+- dpcm: ignore extra unpaired bytes in stereo streams (CVE-2011-3951)
+- rtpdec_asf: Fix integer underflow that could allow remote code execution (CVE-2011-4031)
+- aacsbr: prevent out of bounds memcpy() (CVE-2012-0850)
+- kmvc: Check palsize (CVE-2011-3952)
+
+Further bugfixes in the following codecs:
+
+ ea, png, qdm2, tqi, motionpixels, and a compilation failure with gcc 4.7
+
+
version 0.7.5:
Security updates:
More information about the ffmpeg-cvslog
mailing list