dirkmueller/ffmpeg-4
SHA256
1
0
Fork 0
forked from pool/ffmpeg-4
Code Pull Requests Activity

Accepting request 904700 from home:AZhou:branches:multimedia:libs

Browse Source 
- Add ffmpeg-CVE-2020-22046.patch: Backport from upstream to fix
  a denial of service vulnerability exists in FFmpeg 4.2 due to a
  memory leak in the avpriv_float_dsp_allocl function in
  libavutil/float_dsp.c (bsc#1186849).
- Add ffmpeg-CVE-2021-33815.patch: Backport from upstream to fix
  dwa_uncompress in libavcodec/exr.c in FFmpeg 4.4 allows an
  out-of-bounds array access because dc_count is not strictly
  checked (bsc#1186865).

OBS-URL: https://build.opensuse.org/request/show/904700
OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/ffmpeg-4?expand=0&rev=166
This commit is contained in:
Jan Engelhardt
2021-07-08 13:26:34 +00:00
committed by Git OBS Bridge
parent 4d3af889b9
commit 1e8f598ca6
4 changed files with 90 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
ffmpeg-4.changes
View File

@@ -1,3 +1,15 @@
-------------------------------------------------------------------
Thu Jul 8 06:43:28 UTC 2021 - Alynx Zhou <alynx.zhou@suse.com>
- Add ffmpeg-CVE-2020-22046.patch: Backport from upstream to fix
a denial of service vulnerability exists in FFmpeg 4.2 due to a
memory leak in the avpriv_float_dsp_allocl function in
libavutil/float_dsp.c (bsc#1186849).
- Add ffmpeg-CVE-2021-33815.patch: Backport from upstream to fix
dwa_uncompress in libavcodec/exr.c in FFmpeg 4.4 allows an
out-of-bounds array access because dc_count is not strictly
checked (bsc#1186865).
-------------------------------------------------------------------
Fri Jun 4 12:29:16 UTC 2021 - Jan Engelhardt <jengelh@inai.de>