update patches with issue report links

OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/ffmpeg-5?expand=0&rev=84
2024-04-22 15:55:23 +00:00 · 2024-04-22 15:55:23 +00:00 · c7d526a909
commit c7d526a909
parent 4aec72184e
6 changed files with 12 additions and 0 deletions
--- a/0001-avfilter-af_dialoguenhance-do-output-scaling-once.patch
+++ b/0001-avfilter-af_dialoguenhance-do-output-scaling-once.patch
@ -2,6 +2,8 @@ From f1f973313b6edc460339c2dfa4675dd3ad72fe98 Mon Sep 17 00:00:00 2001
 From: Paul B Mahol <onemda@gmail.com>
 Date: Mon, 27 Nov 2023 11:52:37 +0100
 Subject: [PATCH] avfilter/af_dialoguenhance: do output scaling once
+References: https://bugzilla.opensuse.org/1222730
+References: CVE-2023-49528

 ---
 libavfilter/af_dialoguenhance.c | 11 ++++-------
--- a/0001-avfilter-af_dialoguenhance-fix-overreads.patch
+++ b/0001-avfilter-af_dialoguenhance-fix-overreads.patch
@ -2,6 +2,8 @@ From 2d9ed64859c9887d0504cd71dbd5b2c15e14251a Mon Sep 17 00:00:00 2001
 From: Paul B Mahol <onemda@gmail.com>
 Date: Sat, 25 Nov 2023 12:54:28 +0100
 Subject: [PATCH] avfilter/af_dialoguenhance: fix overreads
+References: https://bugzilla.opensuse.org/1222730
+References: CVE-2023-49528

 ---
 libavfilter/af_dialoguenhance.c | 17 +++++++++--------
--- a/0001-avfilter-af_dialoguenhance-simplify-channels-copy.patch
+++ b/0001-avfilter-af_dialoguenhance-simplify-channels-copy.patch
@ -2,6 +2,8 @@ From 4671fb7dfb8e72b228e04f3b81da7f2003c62240 Mon Sep 17 00:00:00 2001
 From: Paul B Mahol <onemda@gmail.com>
 Date: Mon, 27 Nov 2023 00:38:56 +0100
 Subject: [PATCH] avfilter/af_dialoguenhance: simplify channels copy
+References: https://bugzilla.opensuse.org/1222730
+References: CVE-2023-49528

 ---
 libavfilter/af_dialoguenhance.c | 32 +++++++++++++++++---------------
--- a/0001-avfilter-avf_showspectrum-fix-off-by-1-error.patch
+++ b/0001-avfilter-avf_showspectrum-fix-off-by-1-error.patch
@ -2,6 +2,8 @@ From ab0fdaedd1e7224f7e84ea22fcbfaa4ca75a6c06 Mon Sep 17 00:00:00 2001
 From: Michael Niedermayer <michael@niedermayer.cc>
 Date: Sun, 24 Dec 2023 20:31:02 +0100
 Subject: [PATCH] avfilter/avf_showspectrum: fix off by 1 error
+References: https://bugzilla.opensuse.org/1223087
+References: CVE-2024-31585

 Fixes: out of array access
 Fixes: tickets/10749/poc15ffmpeg
--- a/0001-avfilter-vf_codecview-fix-heap-buffer-overflow.patch
+++ b/0001-avfilter-vf_codecview-fix-heap-buffer-overflow.patch
@ -2,6 +2,8 @@ From 99debe5f823f45a482e1dc08de35879aa9c74bd2 Mon Sep 17 00:00:00 2001
 From: Zhao Zhili <zhilizhao@tencent.com>
 Date: Fri, 29 Dec 2023 05:56:43 +0800
 Subject: [PATCH] avfilter/vf_codecview: fix heap buffer overflow
+References: https://bugzilla.opensuse.org/1223085
+References: CVE-2024-31582

 And improve the performance by a little bit.

--- a/0001-avutil-hwcontext-Don-t-assume-frames_uninit-is-reent.patch
+++ b/0001-avutil-hwcontext-Don-t-assume-frames_uninit-is-reent.patch
@ -2,6 +2,8 @@ From 3bb00c0a420c3ce83c6fafee30270d69622ccad7 Mon Sep 17 00:00:00 2001
 From: Zhao Zhili <zhilizhao@tencent.com>
 Date: Tue, 20 Feb 2024 20:08:55 +0800
 Subject: [PATCH] avutil/hwcontext: Don't assume frames_uninit is reentrant
+References: https://bugzilla.opensuse.org/1223070
+References: CVE-2024-31578

 Fix heap use after free when vulkan_frames_init failed.