frispete/ffmpeg-7
SHA256
1
0
Fork 0
forked from jengelh/ffmpeg-7
Code Pull Requests Activity

Compare commits

merge into: frispete:master
Branches Tags
frispete:master frispete:factory jengelh:master jengelh:factory
...
pull from: jengelh:master
Branches Tags
jengelh:master jengelh:factory frispete:master frispete:factory

4 Commits
master ... master

Author SHA256 Message Date
Jan Engelhardt
89aa33ff4f Reword work-around-abi-break.patch 2025-07-23 15:33:52 +02:00
Jan Engelhardt
b2122e4c37 Bump changelog date for vvenc addition 2025-07-23 15:29:16 +02:00
Jan Engelhardt
500bdcfaa8 Merge 'Add vvenc build conditional' (#20) 
Reviewed-on: jengelh/ffmpeg-7#20
 2025-07-23 15:28:08 +02:00
Jonathan Kang
abbd0684ea Add ffmpeg-CVE-2025-7700.patch 2025-07-23 15:17:30 +08:00
4 changed files with 63 additions and 9 deletions
Expand all files Collapse all files

17
ffmpeg-7.changes
View File

@@ -1,14 +1,21 @@
-------------------------------------------------------------------
Wed Jul 23 13:28:49 UTC 2025 - Hans-Peter Jansen <hp@urpla.net>
- Add vvenc build conditional
-------------------------------------------------------------------
Wed Jul 23 07:01:22 UTC 2025 - SongChuan Kang <sckang@suse.com>
- Add ffmpeg-CVE-2025-7700.patch: Add check for the return value
of av_malloc_array() and av_calloc() to avoid potential NULL
pointer dereference(CVE-2025-7700, bsc#1246790).
------------------------------------------------------------------- -------------------------------------------------------------------
Wed Jun 25 08:40:15 UTC 2025 - Yifan Jiang <yfjiang@suse.com> Wed Jun 25 08:40:15 UTC 2025 - Yifan Jiang <yfjiang@suse.com>
- Built with noopenh264, drop ffmpeg-dlopen-openh264.patch - Built with noopenh264, drop ffmpeg-dlopen-openh264.patch
(jsc#PED-12607) (jsc#PED-12607)
-------------------------------------------------------------------
Wed Jun 18 10:24:31 UTC 2025 - Hans-Peter Jansen <hp@urpla.net>
- Add vvenc build conditional
------------------------------------------------------------------- -------------------------------------------------------------------
Thu Jun 12 17:48:49 UTC 2025 - Jan Engelhardt <jengelh@inai.de> Thu Jun 12 17:48:49 UTC 2025 - Jan Engelhardt <jengelh@inai.de>

1
ffmpeg-7.spec
View File

@@ -123,6 +123,7 @@ Patch15: 11013-avcodec-decode-clean-up-if-get_hw_frames_parameters-.patch
Patch18: ffmpeg-7-CVE-2025-25473.patch Patch18: ffmpeg-7-CVE-2025-25473.patch
Patch19: ffmpeg-7-CVE-2025-22921.patch Patch19: ffmpeg-7-CVE-2025-22921.patch
Patch20: 0001-avcodec-libsvtav1-unbreak-build-with-latest-svtav1.patch Patch20: 0001-avcodec-libsvtav1-unbreak-build-with-latest-svtav1.patch
Patch21: ffmpeg-CVE-2025-7700.patch
BuildRequires: ladspa-devel BuildRequires: ladspa-devel
BuildRequires: libgsm-devel BuildRequires: libgsm-devel
BuildRequires: nasm BuildRequires: nasm

45
ffmpeg-CVE-2025-7700.patch Normal file
View File

@@ -0,0 +1,45 @@
From 35a6de137a39f274d5e01ed0e0e6c4f04d0aaf07 Mon Sep 17 00:00:00 2001
From: Jiasheng Jiang <jiashengjiangcool@gmail.com>
Date: Thu, 10 Jul 2025 16:26:39 +0000
Subject: [PATCH] libavcodec/alsdec.c: Add check for av_malloc_array() and
av_calloc()
Add check for the return value of av_malloc_array() and av_calloc()
to avoid potential NULL pointer dereference.
Fixes: dcfd24b10c ("avcodec/alsdec: Implement floating point sample data decoding")
Signed-off-by: Jiasheng Jiang <jiashengjiangcool@gmail.com>
Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
---
libavcodec/alsdec.c | 8 ++++++--
1 file changed, 6 insertions(+), 2 deletions(-)
diff --git a/libavcodec/alsdec.c b/libavcodec/alsdec.c
index 734eec8bf8..97b04a95f9 100644
--- a/libavcodec/alsdec.c
+++ b/libavcodec/alsdec.c
@@ -2119,8 +2119,8 @@ static av_cold int decode_init(AVCodecContext *avctx)
ctx->nbits = av_malloc_array(ctx->cur_frame_length, sizeof(*ctx->nbits));
ctx->mlz = av_mallocz(sizeof(*ctx->mlz));
- if (!ctx->mlz || !ctx->acf || !ctx->shift_value || !ctx->last_shift_value
- || !ctx->last_acf_mantissa || !ctx->raw_mantissa) {
+ if (!ctx->larray || !ctx->nbits || !ctx->mlz || !ctx->acf || !ctx->shift_value
+ || !ctx->last_shift_value || !ctx->last_acf_mantissa || !ctx->raw_mantissa) {
av_log(avctx, AV_LOG_ERROR, "Allocating buffer memory failed.\n");
return AVERROR(ENOMEM);
}
@@ -2132,6 +2132,10 @@ static av_cold int decode_init(AVCodecContext *avctx)
for (c = 0; c < channels; ++c) {
ctx->raw_mantissa[c] = av_calloc(ctx->cur_frame_length, sizeof(**ctx->raw_mantissa));
+ if (!ctx->raw_mantissa[c]) {
+ av_log(avctx, AV_LOG_ERROR, "Allocating buffer memory failed.\n");
+ return AVERROR(ENOMEM);
+ }
}
}
--
2.25.1

9
work-around-abi-break.patch
View File

@@ -13,11 +13,12 @@ ffmpeg, which can cause inadvertent mixing of library versions on
openSUSE, and precompiled Linux distributions in general. openSUSE, and precompiled Linux distributions in general.
Upstream says "we only add new functions" - which is ok in its own Upstream says "we only add new functions" - which is ok in its own
right. verdefs, if you have them, *must*not* change under any right. New symbols must be in a new verdef section though, existing
circumstances, but that is what they broke: the set of symbols sections *must*not* change under *any* circumstances, but that is
included in the "LIBAVFORMAT_59" verdef changed between 5.0 and 5.1. what they broke: the set of symbols included in the "LIBAVFORMAT_59"
verdef changed between 5.0 and 5.1.
$ abidiff abidiff /usr/lib64/libavformat.so.59.16.100 usr/lib64/libavformat.so.59.27.100 $ abidiff /usr/lib64/libavformat.so.59.16.100 usr/lib64/libavformat.so.59.27.100
Functions changes summary: 0 Removed, 0 Changed, 0 Added function Functions changes summary: 0 Removed, 0 Changed, 0 Added function
Variables changes summary: 0 Removed, 0 Changed, 0 Added variable Variables changes summary: 0 Removed, 0 Changed, 0 Added variable
Function symbols changes summary: 0 Removed, 1 Added function symbol not referenced by debug info Function symbols changes summary: 0 Removed, 1 Added function symbol not referenced by debug info