Accepting request 1311467 from multimedia:libs

- Add ffmpeg-4-CVE-2025-59728.patch: avformat/dashdec: Allocate space for appended "/" (bsc#1251137, CVE-2025-59728). OBS-URL: https://build.opensuse.org/request/show/1311467 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/ffmpeg-4?expand=0&rev=89
Accepting request 1309818 from multimedia:libs
2025-10-16 15:38:20 +00:00 · 2025-10-08 19:53:27 +00:00 · 2025-09-29 14:33:45 +00:00 · 2025-08-15 19:51:04 +00:00 · 2025-08-14 09:48:59 +00:00 · 2025-08-09 17:59:04 +00:00
17 changed files with 280 additions and 200 deletions
--- a/0001-libavcodec-arm-mlpdsp_armv5te-fix-label-format-to-wo.patch
+++ b/0001-libavcodec-arm-mlpdsp_armv5te-fix-label-format-to-wo.patch
@@ -1,58 +0,0 @@
-From 654bd47716c4f36719fb0f3f7fd8386d5ed0b916 Mon Sep 17 00:00:00 2001
-From: Ross Burton <ross.burton@arm.com>
-Date: Fri, 9 Aug 2024 11:32:00 +0100
-Subject: [PATCH] libavcodec/arm/mlpdsp_armv5te: fix label format to work with
- binutils 2.43
-MIME-Version: 1.0
-Content-Type: text/plain; charset=UTF-8
-Content-Transfer-Encoding: 8bit
-
-binutils 2.43 has stricter validation for labels[1] and results in errors
-when building ffmpeg for armv5:
-
-src/libavcodec/arm/mlpdsp_armv5te.S:232: Error: junk at end of line, first unrecognized character is `0'
-
-Remove the leading zero in the "01" label to resolve this error.
-
-[1] https://sourceware.org/git/?p=binutils-gdb.git;a=commit;h=226749d5a6ff0d5c607d6428d6c81e1e7e7a994b
-
-Signed-off-by: Ross Burton <ross.burton@arm.com>
-Signed-off-by: Martin Storsjö <martin@martin.st>
---
- libavcodec/arm/mlpdsp_armv5te.S | 6 +++---
- 1 file changed, 3 insertions(+), 3 deletions(-)
-
-diff --git a/libavcodec/arm/mlpdsp_armv5te.S b/libavcodec/arm/mlpdsp_armv5te.S
-index 4f9aa485fd..d31568611c 100644
--- a/libavcodec/arm/mlpdsp_armv5te.S
-+++ b/libavcodec/arm/mlpdsp_armv5te.S
-@@ -229,7 +229,7 @@ A .endif
-   .endif
- 
-         // Begin loop
-01:
-+1:
-   .if TOTAL_TAPS == 0
-         // Things simplify a lot in this case
-         // In fact this could be pipelined further if it's worth it...
-@@ -241,7 +241,7 @@ A .endif
-         str     ST0, [PST, #-4]!
-         str     ST0, [PST, #4 * (MAX_BLOCKSIZE + MAX_FIR_ORDER)]
-         str     ST0, [PSAMP], #4 * MAX_CHANNELS
-        bne     01b
-+        bne     1b
-   .else
-     .if \fir_taps & 1
-       .set LOAD_REG, 1
-@@ -333,7 +333,7 @@ T       orr     AC0, AC0, AC1
-         str     ST3, [PST, #-4]!
-         str     ST2, [PST, #4 * (MAX_BLOCKSIZE + MAX_FIR_ORDER)]
-         str     ST3, [PSAMP], #4 * MAX_CHANNELS
-        bne     01b
-+        bne     1b
-   .endif
-         b       99f
- 
-- 
-2.46.0
-
--- a/_scmsync.obsinfo
+++ b/_scmsync.obsinfo
@@ -0,0 +1,4 @@
+mtime: 1760495051
+commit: 0cacb49da48ff116c5cdfb43b3550578dc885e4023f39c1b49ac9ed044f4826f
+url: https://src.opensuse.org/jengelh/ffmpeg-4
+revision: master
--- a/build.specials.obscpio
+++ b/build.specials.obscpio
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:54bc21216667c7495f880e7b6c30fbb614b1435601485e86cced1fe4848ed11e
+size 256
--- a/ffmpeg-4-CVE-2024-36618.patch
+++ b/ffmpeg-4-CVE-2024-36618.patch
@@ -0,0 +1,23 @@
+commit 7a089ed8e049e3bfcb22de1250b86f2106060857
+Author: Andreas Rheinhardt <andreas.rheinhardt@outlook.com>
+Date:   Tue Mar 12 23:23:17 2024 +0100
+
+    avformat/avidec: Fix integer overflow iff ULONG_MAX < INT64_MAX
+    
+    Affects many FATE-tests, see
+    https://fate.ffmpeg.org/report.cgi?time=20240312011016&slot=ppc-linux-gcc-13.2-ubsan-altivec-qemu
+    
+    Reviewed-by: James Almer <jamrial@gmail.com>
+    Signed-off-by: Andreas Rheinhardt <andreas.rheinhardt@outlook.com>
+
+--- a/libavformat/avidec.c
+++ b/libavformat/avidec.c
+@@ -1694,7 +1694,7 @@
+     int *idx = av_mallocz_array(s->nb_streams, sizeof(*idx));
+     if (!idx)
+         return AVERROR(ENOMEM);
+-    for (min_pos = pos = 0; min_pos != INT64_MAX; pos = min_pos + 1LU) {
+    for (min_pos = pos = 0; min_pos != INT64_MAX; pos = min_pos + 1ULL) {
+         int64_t max_dts = INT64_MIN / 2;
+         int64_t min_dts = INT64_MAX / 2;
+         int64_t max_buffer = 0;
--- a/ffmpeg-4-CVE-2025-0518.patch
+++ b/ffmpeg-4-CVE-2025-0518.patch
@@ -1,29 +0,0 @@
-From b5b6391d64807578ab872dc58fb8aa621dcfc38a Mon Sep 17 00:00:00 2001
-From: Michael Niedermayer <michael@niedermayer.cc>
-Date: Mon, 6 Jan 2025 22:01:39 +0100
-Subject: [PATCH] avfilter/af_pan: Fix sscanf() use
-
-Fixes: Memory Data Leak
-
-Found-by: Simcha Kosman <simcha.kosman@cyberark.com>
-Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
---
- libavfilter/af_pan.c | 2 +-
- 1 file changed, 1 insertion(+), 1 deletion(-)
-
-diff --git a/libavfilter/af_pan.c b/libavfilter/af_pan.c
-index 0d20b0307b..5feb2439c7 100644
--- a/libavfilter/af_pan.c
-+++ b/libavfilter/af_pan.c
-@@ -196,7 +196,7 @@ static av_cold int init(AVFilterContext *ctx)
-         sign = 1;
-         while (1) {
-             gain = 1;
-            if (sscanf(arg, "%lf%n *%n", &gain, &len, &len))
-+            if (sscanf(arg, "%lf%n *%n", &gain, &len, &len) >= 1)
-                 arg += len;
-             if (parse_channel_name(&arg, &in_ch_id, &named)){
-                 av_log(ctx, AV_LOG_ERROR,
-- 
-2.44.0
-
--- a/ffmpeg-4-CVE-2025-22919.patch
+++ b/ffmpeg-4-CVE-2025-22919.patch
@@ -1,29 +0,0 @@
-From 1446e37d3d032e1452844778b3e6ba2c20f0c322 Mon Sep 17 00:00:00 2001
-From: James Almer <jamrial@gmail.com>
-Date: Mon, 30 Dec 2024 00:25:41 -0300
-Subject: [PATCH] avfilter/buffersrc: check for valid sample rate
-
-A sample rate <= 0 is invalid.
-
-Fixes an assert in ffmpeg_enc.c that assumed a valid sample rate would be set.
-Fixes ticket #11385.
-
-Signed-off-by: James Almer <jamrial@gmail.com>
---
- libavfilter/buffersrc.c | 5 +++++
- 1 file changed, 5 insertions(+)
-
--- a/libavfilter/buffersrc.c
-+++ b/libavfilter/buffersrc.c
-@@ -337,6 +337,11 @@
-         return AVERROR(EINVAL);
-     }
- 
-+    if (s->sample_rate <= 0) {
-+        av_log(ctx, AV_LOG_ERROR, "Sample rate not set\n");
-+        return AVERROR(EINVAL);
-+    }
-+
-     if (!s->time_base.num)
-         s->time_base = (AVRational){1, s->sample_rate};
- 
--- a/ffmpeg-4-CVE-2025-59728.patch
+++ b/ffmpeg-4-CVE-2025-59728.patch
@@ -0,0 +1,38 @@
+Index: ffmpeg-4.4.6/libavformat/dashdec.c
+===================================================================
+--- ffmpeg-4.4.6.orig/libavformat/dashdec.c
+++ ffmpeg-4.4.6/libavformat/dashdec.c
+@@ -730,7 +730,7 @@ static int resolve_content_path(AVFormat
+     }
+ 
+     tmp_max_url_size = aligned(tmp_max_url_size);
+-    text = av_mallocz(tmp_max_url_size);
+    text = av_mallocz(tmp_max_url_size + 1);
+     if (!text) {
+         updated = AVERROR(ENOMEM);
+         goto end;
+@@ -742,7 +742,7 @@ static int resolve_content_path(AVFormat
+     }
+     av_free(text);
+ 
+-    path = av_mallocz(tmp_max_url_size);
+    path = av_mallocz(tmp_max_url_size + 2);
+     tmp_str = av_mallocz(tmp_max_url_size);
+     if (!tmp_str || !path) {
+         updated = AVERROR(ENOMEM);
+@@ -764,6 +764,15 @@ static int resolve_content_path(AVFormat
+ 
+     node = baseurl_nodes[rootId];
+     baseurl = xmlNodeGetContent(node);
+    if (baseurl) {
+        size_t len = xmlStrlen(baseurl)+2;
+        char *tmp = xmlRealloc(baseurl, len);
+        if (!tmp) {
+            updated = AVERROR(ENOMEM);
+            goto end;
+        }
+        baseurl = tmp;
+    }
+     root_url = (av_strcasecmp(baseurl, "")) ? baseurl : path;
+     if (node) {
+         xmlNodeSetContent(node, root_url);
--- a/ffmpeg-4-CVE-2025-7700.patch
+++ b/ffmpeg-4-CVE-2025-7700.patch
@@ -0,0 +1,40 @@
+From 35a6de137a39f274d5e01ed0e0e6c4f04d0aaf07 Mon Sep 17 00:00:00 2001
+From: Jiasheng Jiang <jiashengjiangcool@gmail.com>
+Date: Thu, 10 Jul 2025 16:26:39 +0000
+Subject: [PATCH] libavcodec/alsdec.c: Add check for av_malloc_array() and
+ av_calloc()
+
+Add check for the return value of av_malloc_array() and av_calloc()
+to avoid potential NULL pointer dereference.
+
+Fixes: dcfd24b10c ("avcodec/alsdec: Implement floating point sample data decoding")
+
+[Remodeled for ffmpeg-4.x - sckang@suse.com]
+
+Index: ffmpeg-4.4.6/libavcodec/alsdec.c
+===================================================================
+--- ffmpeg-4.4.6.orig/libavcodec/alsdec.c
+++ ffmpeg-4.4.6/libavcodec/alsdec.c
+@@ -2116,8 +2116,8 @@ static av_cold int decode_init(AVCodecCo
+         ctx->nbits  = av_malloc_array(ctx->cur_frame_length, sizeof(*ctx->nbits));
+         ctx->mlz    = av_mallocz(sizeof(*ctx->mlz));
+ 
+-        if (!ctx->mlz || !ctx->acf || !ctx->shift_value || !ctx->last_shift_value
+-            || !ctx->last_acf_mantissa || !ctx->raw_mantissa) {
+        if (!ctx->larray || !ctx->nbits || !ctx->mlz || !ctx->acf || !ctx->shift_value
+            || !ctx->last_shift_value || !ctx->last_acf_mantissa || !ctx->raw_mantissa) {
+             av_log(avctx, AV_LOG_ERROR, "Allocating buffer memory failed.\n");
+             ret = AVERROR(ENOMEM);
+             goto fail;
+@@ -2128,6 +2128,11 @@ static av_cold int decode_init(AVCodecCo
+ 
+         for (c = 0; c < avctx->channels; ++c) {
+             ctx->raw_mantissa[c] = av_mallocz_array(ctx->cur_frame_length, sizeof(**ctx->raw_mantissa));
+            if (!ctx->raw_mantissa[c]) {
+                av_log(avctx, AV_LOG_ERROR, "Allocating buffer memory failed.\n");
+                ret = AVERROR(ENOMEM);
+                goto fail;
+            }
+         }
+     }
+ 
--- a/ffmpeg-4.4.5.tar.xz
+++ b/ffmpeg-4.4.5.tar.xz
--- a/ffmpeg-4.4.5.tar.xz.asc
+++ b/ffmpeg-4.4.5.tar.xz.asc
@@ -1,11 +0,0 @@
-----BEGIN PGP SIGNATURE-----
-
-iQFMBAABCgA2FiEE/PmG6hXm4pOlZE8QtDIvBNZ2WNgFAmamzJUYHGZmbXBlZy1k
-ZXZlbEBmZm1wZWcub3JnAAoJELQyLwTWdljYZP8H/27rVRh4/NOvhP5JN2FhhWfo
-BmAYgHWLag3a8P4yShGGgxhLjnd7LKOdSTIOb67Q7CgqzsQCV7c+VgUp068uhCod
-J0TgnefWzw+iR3zupKEVRoFEsy/3A5RWXVWx42B7WTpkkShQWXaPHvUdH9ELwwfK
-mq3TQMygmjjzDIa677i3uNUrb2CGyxdUXqGzmatUfrtXm0/mqUtz41neS5tuLQn5
-xXcpmtsElkLK4ZaQWRC8w6emEyx49MqyRw7tTjIh/lPN+KTBUtcrYgDeCJt25H9s
-2Hm9Obax0z2fPi71eP7GkbVXrGmwL1DcSegFW+TCW5CniWkWaWKe4+qDMepPtIo=
-=byXw
-----END PGP SIGNATURE-----
--- a/ffmpeg-4.4.6.tar.xz
+++ b/ffmpeg-4.4.6.tar.xz
--- a/ffmpeg-4.4.6.tar.xz.asc
+++ b/ffmpeg-4.4.6.tar.xz.asc
@@ -0,0 +1,11 @@
+-----BEGIN PGP SIGNATURE-----
+
+iQFMBAABCgA2FiEE/PmG6hXm4pOlZE8QtDIvBNZ2WNgFAmgom1oYHGZmbXBlZy1k
+ZXZlbEBmZm1wZWcub3JnAAoJELQyLwTWdljYtS0H/3h3yGALOlSSjBmZq/+wfw0k
+QrgDVTSzILA2xnhPq4d9b6JxcaiJFX2wweid0/JxTwOE8Ky0cU+ErArlmyB1OpNl
+KNzy0MXgPHV3X39Tnzgytl8nQSei2aAtg1asOscV6Lwp4e76VQOu2atLHenXq7n7
+xSxCqJG65opWi2yRvS89F7PmdF3VDeYNJGaukF4Lunq4OsOa/sybe45pfd/uhC/F
+aAh/64/U2mhGzl2q1rdv6WIeTxtRpT+umLuUU93g20gk8Y4L3fmwbWx9UxIjUw0X
+A16PQgDw7LmmTxS4NE9cHcTwCGtUvv7ajJs6oj2fPVGScLCLInLc1KkGGkSIqqE=
+=sHXx
+-----END PGP SIGNATURE-----
--- a/ffmpeg-4.changes
+++ b/ffmpeg-4.changes
@@ -1,3 +1,49 @@
+-------------------------------------------------------------------
+Wed Oct 15 02:12:04 UTC 2025 - SongChuan Kang <sckang@suse.com>
+
+- Add ffmpeg-4-CVE-2025-59728.patch: avformat/dashdec: Allocate
+  space for appended "/" (bsc#1251137, CVE-2025-59728).
+
+-------------------------------------------------------------------
+Tue Oct  7 12:34:56 UTC 2025 - olaf@aepfle.de
+
+- add missing closing brace to ffmpeg-4-CVE-2025-7700.patch 
+
+-------------------------------------------------------------------
+Mon Sep 29 07:25:31 UTC 2025 - Jan Engelhardt <jengelh@inai.de>
+
+- Add glslang16.patch to resolve FTBFS
+
+-------------------------------------------------------------------
+Wed Jul 23 07:01:22 UTC 2025 - SongChuan Kang <sckang@suse.com>
+
+- Add ffmpeg-4-CVE-2025-7700.patch: Add check for the return value
+  of av_malloc_array() and av_calloc() to avoid potential NULL
+  pointer dereference(CVE-2025-7700, bsc#1246790).
+
+-------------------------------------------------------------------
+Fri May 30 14:28:05 UTC 2025 - Cliff Zhao <qzhao@suse.com>
+
+- Add ffmpeg-4-CVE-2024-36618.patch:
+  Backport 7a089ed8 from upstream, avformat/avidec: Fix integer
+  overflow iff ULONG_MAX < INT64_MAX.
+  (CVE-2024-36618, bsc#1234020)
+
+-------------------------------------------------------------------
+Thu May 29 20:43:43 UTC 2025 - Jan Engelhardt <jengelh@inai.de>
+
+- Update to release 4.4.6
+  * lavc/libx265: unbreak build for X265_BUILD >= 210
+  * ARM: vp9mc: Load only 12 pixels in the 4 pixel wide
+    horizontal filter
+  * rtmpproto: Avoid rare crashes in the `fail:` codepath in
+    rtmp_open
+  * avcodec/snow: Fix off by 1 error in run_buffer
+  * avcodec/mpegvideo_enc: Check FLV1 resolution limits
+- Delete ffmpeg-CVE-2023-49502.patch,
+  0001-libavcodec-arm-mlpdsp_armv5te-fix-label-format-to-wo.patch,
+  ffmpeg-4-CVE-2025-0518.patch, ffmpeg-4-CVE-2025-22919.patch (merged)
+
 -------------------------------------------------------------------
 Wed Mar  5 09:46:09 UTC 2025 - Jan Engelhardt <jengelh@inai.de>

@@ -8,7 +54,7 @@ Wed Mar  5 09:46:09 UTC 2025 - Jan Engelhardt <jengelh@inai.de>
 Fri Feb 19 05:17:22 UTC 2025 - Cliff Zhao <qzhao@suse.com>

 - Add ffmpeg-4-CVE-2025-22921.patch:
-  Backporting 7f9c7f98 from upstream, clear array length when
+  Backport 7f9c7f98 from upstream, clear array length when
  freeing it.
  (CVE-2025-22921, bsc#1237382)

@@ -16,7 +62,7 @@ Fri Feb 19 05:17:22 UTC 2025 - Cliff Zhao <qzhao@suse.com>
 Fri Feb 19 04:27:06 UTC 2025 - Cliff Zhao <qzhao@suse.com>

 - Add ffmpeg-4-CVE-2025-25473.patch:
-  Backporting c08d3004 from upstream, clear FFFormatContext packet.
+  Backport c08d3004 from upstream, clear FFFormatContext packet.
  When packet_buffer is used in mux.c, and if a muxing process fails
  at a point where packets remained in said queue.
  (CVE-2025-25473, bsc#1237351)
@@ -25,7 +71,7 @@ Fri Feb 19 04:27:06 UTC 2025 - Cliff Zhao <qzhao@suse.com>
 Fri Feb 19 03:18:02 UTC 2025 - Cliff Zhao <qzhao@suse.com>

 - Add ffmpeg-4-CVE-2025-0518.patch:
-  Backporting b5b6391d from upstream, fixes memory data leak when
+  Backport b5b6391d from upstream, fixes memory data leak when
  use sscanf().
  (CVE-2025-0518, bsc#1236007)

@@ -33,7 +79,7 @@ Fri Feb 19 03:18:02 UTC 2025 - Cliff Zhao <qzhao@suse.com>
 Fri Feb 19 02:58:01 UTC 2025 - Cliff Zhao <qzhao@suse.com>

 - Add ffmpeg-4-CVE-2025-22919.patch:
-  Backporting 1446e37d from upstream, check for valid sample rate
+  Backport 1446e37d from upstream, check for valid sample rate
  As the sample rate <= 0 is invalid.
  (CVE-2025-22919, bsc#1237371)

@@ -41,7 +87,7 @@ Fri Feb 19 02:58:01 UTC 2025 - Cliff Zhao <qzhao@suse.com>
 Fri Feb 19 01:48:22 UTC 2025 - Cliff Zhao <qzhao@suse.com>

 - Add ffmpeg-4-CVE-2024-12361.patch:
-  Backporting 4065ff69 from upstream, add check for av_packet_new_side_data()
+  Backport 4065ff69 from upstream, add check for av_packet_new_side_data()
  to avoid null pointer dereference if allocation fails.
  (CVE-2024-12361, bsc#1237358)

@@ -49,7 +95,7 @@ Fri Feb 19 01:48:22 UTC 2025 - Cliff Zhao <qzhao@suse.com>
 Fri Feb 19 01:11:17 UTC 2025 - Cliff Zhao <qzhao@suse.com>

 - Add ffmpeg-4-CVE-2024-35368.patch:
-  Backporting 45133009 from upstream, After having created the
+  Backport 45133009 from upstream, After having created the
  AVBuffer that is put into frame->buf[0], ownership of several
  objects Fix double-free on the AVFrame is unreferenced.
  (CVE-2024-35368, bsc#1234028)
@@ -62,6 +108,8 @@ Mon Jan  6 11:53:32 UTC 2025 - Jan Engelhardt <jengelh@inai.de>
  Fixes: 51896/clusterfuzz-testcase-minimized-ffmpeg_dem_DXA_fuzzer-5730576523198464
  Fixes: signed integer overflow: 2147483566 + 82 cannot be represented in type 'int'
  (CVE-2024-36613, bsc#1235092)
+  avformat/cafdec: dont seek beyond 64bit (CVE-2024-36617, bsc#1234019).
+  avformat/westwood_vqa: Fix 2g packets (CVE-2024-36616, bsc#1234018).
 - Delete
  0001-avcodec-libsvtav1-remove-compressed_ten_bit_format-a.patch
  0001-avcodec-x86-mathops-clip-constants-used-with-shift-i.patch
@@ -72,6 +120,7 @@ Mon Jan  6 11:53:32 UTC 2025 - Jan Engelhardt <jengelh@inai.de>
  ffmpeg-CVE-2023-50010.patch
  ffmpeg-4-CVE-2024-32230.patch
  ffmpeg-4-CVE-2024-7055.patch (all merged)
+  (CVE-2023-51798, bsc#1223304)

 -------------------------------------------------------------------
 Tue Oct 15 08:18:54 UTC 2024 - Antonio Larrosa <alarrosa@suse.com>
@@ -82,7 +131,7 @@ Tue Oct 15 08:18:54 UTC 2024 - Antonio Larrosa <alarrosa@suse.com>
 Fri Sep  6 15:06:21 UTC 2024 - Cliff Zhao <qzhao@suse.com>

 - Add ffmpeg-4-CVE-2024-7055.patch:
-  Backporting 3faadbe2 from upstream, Use 64bit for input size check,
+  Backport 3faadbe2 from upstream, Use 64bit for input size check,
  Fixes: out of array read, Fixes: poc3.
  (CVE-2024-7055, bsc#1229026)

@@ -102,15 +151,15 @@ Fri Jul 26 13:19:42 UTC 2024 - Filip Kastl <filip.kastl@suse.com>
 Tue Jul  2 12:26:28 UTC 2024 - Cliff Zhao <qzhao@suse.com>

 - Add ffmpeg-4-CVE-2024-32230.patch:
-  Backporting 96449cfe from upstream, Fix 1 line and one column images.
+  Backport 96449cfe from upstream, Fix 1 line and one column images.
  (CVE-2024-32230, bsc#1227296)

 -------------------------------------------------------------------
 Tue Apr 27 11:38:35 UTC 2024 - Cliff Zhao <qzhao@suse.com>

 - Add ffmpeg-CVE-2023-50010.patch:
-  Backporting e4d2666b from upstream, fixes the out of array access.
-  (CVE-2023-a50010, bsc#1223256)
+  Backport e4d2666b from upstream, fixes the out of array access.
+  (CVE-2023-50010, bsc#1223256)

 -------------------------------------------------------------------
 Fri Apr 26 22:16:48 UTC 2024 - Jan Engelhardt <jengelh@inai.de>
@@ -122,34 +171,53 @@ Fri Apr 26 22:16:48 UTC 2024 - Jan Engelhardt <jengelh@inai.de>
 Thu Apr 23 16:14:18 UTC 2024 - Cliff Zhao <qzhao@suse.com>

 - Add ffmpeg-CVE-2023-51793.patch:
-  Backporting 0ecc1f0e from upstream, Fix odd height handling.
+  Backport 0ecc1f0e from upstream, Fix odd height handling.
  (CVE-2023-51793, bsc#1223272)

 -------------------------------------------------------------------
 Thu Apr 23 15:35:32 UTC 2024 - Cliff Zhao <qzhao@suse.com>

 - Add ffmpeg-CVE-2023-49502.patch:
-  Backporting 737ede40 from upstream, account for chroma sub-sampling
+  Backport 737ede40 from upstream, account for chroma sub-sampling
  in min size calculation.
  (CVE-2023-49502, bsc#1223235)

 -------------------------------------------------------------------
 Tue Apr 23 14:25:53 UTC 2024 - Jan Engelhardt <jengelh@inai.de>

- Address boo#1223304/CVE-2023-51798: add patch
-  0001-avfilter-vf_minterpolate-Check-pts-before-division.patch
+- Add 0001-avfilter-vf_minterpolate-Check-pts-before-division.patch:
+  Backport 68146f06 from upstream, Check pts before division.
+  (CVE-2023-51798, bsc#1223304)

 -------------------------------------------------------------------
 Mon Apr 22 12:41:55 UTC 2024 - Jan Engelhardt <jengelh@inai.de>

- Address boo#1223070/CVE-2024-31578: add patch
-  0001-avutil-hwcontext-Don-t-assume-frames_uninit-is-reent.patch
+- Add 0001-avutil-hwcontext-Don-t-assume-frames_uninit-is-reent.patch:
+  Backport 76a48e85 from upstream, Check length.
+  (CVE-2024-31578, bsc#1223070)
+
+-------------------------------------------------------------------
+Mon Feb 12 18:23:41 UTC 2024 - Stefan Dirsch <sndirsch@suse.com>
+
+- ffmpeg-avcodec-libdav1d-don-t-repeatedly-parse-the-same-seq.patch
+  * fixes build against dav1d, which has been updated in
+    SUSE:SLE-15-SP5:Update (where apparently no rebuild of ffmpeg-4
+    had been triggered)

 -------------------------------------------------------------------
 Fri Feb  2 09:34:15 UTC 2024 - Stefan Dirsch <sndirsch@suse.com>

- drop support for libmfx, which is no longer supported upstream
-  at all (boo#1219494)
+- no longer build against libmfx; build also 15.5 against libvpl
+ (boo#1230983, boo#1219494)
+
+- dropping support for libmfx below covers:
+  * libmfx: improper input validation (CVE-2023-48368, bsc#1226897)
+  * libmfx: improper buffer restrictions (CVE-2023-45221, bsc#1226898)
+  * libmfx: out-of-bounds read (CVE-2023-22656, bsc#1226899)
+  * libmfx: out-of-bounds write (CVE-2023-47282, bsc#1226900)
+  * libmfx: improper buffer restrictions (CVE-2023-47169, bsc#1226901)
+  * Multiple vulnerabilities in the Intel Media SDK (libmfx1) (bsc#1226892)
+  * Drop libmfx dependency from our product (jira #PED-10024)

 -------------------------------------------------------------------
 Tue Dec 26 13:36:38 UTC 2023 - Jan Engelhardt <jengelh@inai.de>
@@ -167,9 +235,9 @@ Wed Dec  6 08:50:00 UTC 2023 - Jan Engelhardt <jengelh@inai.de>
 Fri Nov  3 08:17:13 UTC 2023 - Marcus Meissner <meissner@suse.com>

 - Add ffmpeg-fix-new-binutils.patch:
-  Backporting 01fc3034 from upstream, Fix build with new binutils
+  Backport 01fc3034 from upstream, Fix build with new binutils
  (bsc#1215309)
- 
+
 -------------------------------------------------------------------
 Mon Oct 30 11:16:43 UTC 2023 - Jan Engelhardt <jengelh@inai.de>

@@ -298,6 +366,7 @@ Mon Oct 10 11:18:30 UTC 2022 - Bjørn Lie <bjorn.lie@gmail.com>

 - Update to version 4.4.3:
  * Stable bug fix release, mainly codecs, filter and format fixes.
+  * configure: extend SDL check to accept all 2.x versions (boo#1226308).
 - Drop ffmpeg-sdl2-detection.patch: Fixed upstream.
 - Refresh patches with quilt:
  * ffmpeg-libglslang-detection.patch
@@ -550,7 +619,7 @@ Fri Mar 31 00:41:22 UTC 2020 - Ismail Dönmez <idonmez@suse.com>
 - Add Samba support for Factory (as this needs a fix in Samba itself)
  Add --enable-libsmbclient to configure, add BR on pkgconfig(smbclient)
 - License is now GPLv3+ by default (--enable-version3)
- 
+
 -------------------------------------------------------------------
 Mon Mar 30 07:14:39 UTC 2020 - Tomáš Chvátal <tchvatal@suse.com>

@@ -679,6 +748,7 @@ Tue Aug  6 15:35:35 UTC 2019 - Ismail Dönmez <idonmez@suse.com>
  * mov muxer writes tracks with unspecified language instead
    of English by default
  * added support for using clang to compile CUDA kernels
+  * avcodec/g729_parser: Check channels (CVE-2022-1475, bsc#1198898)
 - Drop ffmpeg-avcodec-libdav1d-AV1-decoder-wrapper.patch, merged
  upstream.
 - Rebase and rename
@@ -883,7 +953,6 @@ Tue Nov 06 01:39:11 UTC 2018 - sean@suspend.net
  remove cve-2017-17555.diff (fixed upstream).

 -------------------------------------------------------------------
-
 Sat Nov 03 14:48:35 UTC 2018 - sean@suspend.net

 - Remove 0001-avformat-fivenc-Check-audio-packet-size.patch (fixed upstream (bsc#8591d16)
--- a/ffmpeg-4.spec
+++ b/ffmpeg-4.spec
@@ -108,7 +108,7 @@
 %define _major_version 4
 %define _major_expected 5
 Name:           ffmpeg-4
-Version:        4.4.5
+Version:        4.4.6
 Release:        0
 Summary:        Set of libraries for working with various multimedia formats
 License:        GPL-3.0-or-later
@@ -135,15 +135,16 @@ Patch11:        ffmpeg-libglslang-detection.patch
 Patch14:        ffmpeg-glslang-cxx17.patch
 Patch15:        0001-avutil-hwcontext-Don-t-assume-frames_uninit-is-reent.patch
 Patch16:        0001-avcodec-libsvtav1-unbreak-build-with-latest-svtav1.patch
-Patch17:        ffmpeg-CVE-2023-49502.patch
 Patch22:        ffmpeg-c99.patch
-Patch23:        0001-libavcodec-arm-mlpdsp_armv5te-fix-label-format-to-wo.patch
 Patch24:        ffmpeg-4-CVE-2024-35368.patch
 Patch25:        ffmpeg-4-CVE-2024-12361.patch
-Patch26:        ffmpeg-4-CVE-2025-22919.patch
-Patch27:        ffmpeg-4-CVE-2025-0518.patch
 Patch28:        ffmpeg-4-CVE-2025-25473.patch
 Patch29:        ffmpeg-4-CVE-2025-22921.patch
+Patch30:        ffmpeg-avcodec-libdav1d-don-t-repeatedly-parse-the-same-seq.patch
+Patch31:        ffmpeg-4-CVE-2024-36618.patch
+Patch32:        ffmpeg-4-CVE-2025-7700.patch
+Patch33:        glslang16.patch
+Patch34:        ffmpeg-4-CVE-2025-59728.patch
 BuildRequires:  ladspa-devel
 BuildRequires:  libgsm-devel
 BuildRequires:  libmp3lame-devel
--- a/ffmpeg-CVE-2023-49502.patch
+++ b/ffmpeg-CVE-2023-49502.patch
@@ -1,43 +0,0 @@
-From 737ede405b11a37fdd61d19cf25df296a0cb0b75
-From: Cosmin Stejerean <cosmin@cosmin.at>
-Date: Wed Dec 6 18:39:32 2023 +0800
-Subject: avfilter/bwdif: account for chroma sub-sampling in min size calculation
-References: https://bugzilla.opensuse.org/1223235
-References: CVE-2023-49502
-
-The current logic for detecting frames that are too small for the
-algorithm does not account for chroma sub-sampling, and so a sample
-where the luma plane is large enough, but the chroma planes are not
-will not be rejected. In that event, a heap overflow will occur.
-
-This change adjusts the logic to consider the chroma planes and makes
-the change to all three bwdif implementations.
-
-Fixes #10688
-
-Signed-off-by: Cosmin Stejerean <cosmin@cosmin.at>
-Reviewed-by: Thomas Mundt <tmundt75@gmail.com>
-Signed-off-by: Philip Langdale <philipl@overt.org>
-
-diff -Nura ffmpeg-4.4.4/libavfilter/vf_bwdif.c ffmpeg-4.4.4_new/libavfilter/vf_bwdif.c
--- ffmpeg-4.4.4/libavfilter/vf_bwdif.c	2023-04-13 02:01:50.000000000 +0800
-+++ ffmpeg-4.4.4_new/libavfilter/vf_bwdif.c	2024-04-26 02:21:48.162806014 +0800
-@@ -343,13 +343,14 @@
-     if(yadif->mode&1)
-         link->frame_rate = av_mul_q(link->src->inputs[0]->frame_rate, (AVRational){2,1});
- 
-    if (link->w < 3 || link->h < 4) {
-        av_log(ctx, AV_LOG_ERROR, "Video of less than 3 columns or 4 lines is not supported\n");
-+    yadif->csp = av_pix_fmt_desc_get(link->format);
-+    yadif->filter = filter;
-+
-+    if (AV_CEIL_RSHIFT(link->w, yadif->csp->log2_chroma_w) < 3 || AV_CEIL_RSHIFT(link->h, yadif->csp->log2_chroma_h) < 4) {
-+        av_log(ctx, AV_LOG_ERROR, "Video with planes less than 3 columns or 4 lines is not supported\n");
-         return AVERROR(EINVAL);
-     }
- 
-    yadif->csp = av_pix_fmt_desc_get(link->format);
-    yadif->filter = filter;
-     if (yadif->csp->comp[0].depth > 8) {
-         s->filter_intra = filter_intra_16bit;
-         s->filter_line  = filter_line_c_16bit;
--- a/ffmpeg-avcodec-libdav1d-don-t-repeatedly-parse-the-same-seq.patch
+++ b/ffmpeg-avcodec-libdav1d-don-t-repeatedly-parse-the-same-seq.patch
@@ -0,0 +1,36 @@
+commit e204846ec16c1ab34c7f3a681734cf5190433018
+Author: James Almer <jamrial@gmail.com>
+Date:   Fri Sep 3 13:50:32 2021 -0300
+
+    avcodec/libdav1d: fix compilation after recent libdav1d API changes
+
+    They were done in preparation for an upcoming 1.0 release.
+    Keep supporting previous releases for the time being.
+
+    Reviewed-by: BBB
+    Signed-off-by: James Almer <jamrial@gmail.com>
+
+--- a/libavcodec/libdav1d.c
+++ b/libavcodec/libdav1d.c
+@@ -202,6 +202,9 @@
+     Libdav1dContext *dav1d = c->priv_data;
+     Dav1dData *data = &dav1d->data;
+     Dav1dPicture pic = { 0 }, *p = &pic;
+#if FF_DAV1D_VERSION_AT_LEAST(5,1)
+    enum Dav1dEventFlags event_flags = 0;
+#endif
+     int res;
+
+     if (!data->sz) {
+@@ -280,6 +283,11 @@
+     frame->linesize[1] = p->stride[1];
+     frame->linesize[2] = p->stride[1];
+
+#if FF_DAV1D_VERSION_AT_LEAST(5,1)
+    dav1d_get_event_flags(dav1d->c, &event_flags);
+    if (c->pix_fmt == AV_PIX_FMT_NONE ||
+        event_flags & DAV1D_EVENT_FLAG_NEW_SEQUENCE)
+#endif
+     c->profile = p->seq_hdr->profile;
+     c->level = ((p->seq_hdr->operating_points[0].major_level - 2) << 2)
+                | p->seq_hdr->operating_points[0].minor_level;
--- a/glslang16.patch
+++ b/glslang16.patch
@@ -0,0 +1,25 @@
+From: <ej@inai.de>
+Date: 2025-09-29 09:24:26.262746656 +0200
+
+ffmpeg never used the remapper so... so why link it in the first place?!
+---
+ configure |    4 ++--
+ 1 file changed, 2 insertions(+), 2 deletions(-)
+
+Index: ffmpeg-4.4.6/configure
+===================================================================
+--- ffmpeg-4.4.6.orig/configure
+++ ffmpeg-4.4.6/configure
+@@ -6391,10 +6391,10 @@ enabled libfreetype       && require_pkg
+ enabled libfribidi        && require_pkg_config libfribidi fribidi fribidi.h fribidi_version_info
+ enabled libglslang && { check_lib libglslang glslang/Include/glslang_c_interface.h glslang_initialize_process \
+                             -lglslang -lMachineIndependent -lOSDependent -lHLSL -lOGLCompiler -lGenericCodeGen \
+-                            -lSPVRemapper -lSPIRV -lSPIRV-Tools-opt -lSPIRV-Tools -lpthread -lstdc++ -lm ||
+                            -lSPIRV -lSPIRV-Tools-opt -lSPIRV-Tools -lpthread -lstdc++ -lm ||
+                         require libglslang glslang/Include/glslang_c_interface.h glslang_initialize_process \
+                             -lglslang -lOSDependent -lHLSL -lOGLCompiler \
+-                            -lSPVRemapper -lSPIRV -lSPIRV-Tools-opt -lSPIRV-Tools -lpthread -lstdc++ -lm; }
+                            -lSPIRV -lSPIRV-Tools-opt -lSPIRV-Tools -lpthread -lstdc++ -lm; }
+ enabled libgme            && { check_pkg_config libgme libgme gme/gme.h gme_new_emu ||
+                                require libgme gme/gme.h gme_new_emu -lgme -lstdc++; }
+ enabled libgsm            && { for gsm_hdr in "gsm.h" "gsm/gsm.h"; do
Author	SHA256	Message	Date
Ana Guerrero	7a80cb672b	Accepting request 1311467 from multimedia:libs - Add ffmpeg-4-CVE-2025-59728.patch: avformat/dashdec: Allocate space for appended "/" (bsc#1251137, CVE-2025-59728). OBS-URL: https://build.opensuse.org/request/show/1311467 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/ffmpeg-4?expand=0&rev=89	2025-10-16 15:38:20 +00:00
Dominique Leuenberger	e548983eb9	Accepting request 1309818 from multimedia:libs - add missing closing brace to ffmpeg-4-CVE-2025-7700.patch OBS-URL: https://build.opensuse.org/request/show/1309818 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/ffmpeg-4?expand=0&rev=88	2025-10-08 19:53:27 +00:00
Ana Guerrero	c5c45b74d1	Accepting request 1307666 from multimedia:libs - Add glslang16.patch to resolve FTBFS OBS-URL: https://build.opensuse.org/request/show/1307666 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/ffmpeg-4?expand=0&rev=87	2025-09-29 14:33:45 +00:00
Dominique Leuenberger	9c7d618fd0	Accepting request 1299358 from multimedia:libs bsc ref udpate OBS-URL: https://build.opensuse.org/request/show/1299358 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/ffmpeg-4?expand=0&rev=86	2025-08-15 19:51:04 +00:00
OBS User unknown	806bbf2cd0	[info=677442bb8a7751a8b8beaa0bd61cd166afb5af62c9e289c47cca59706850303e] OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/ffmpeg-4?expand=0&rev=246	2025-08-14 09:48:59 +00:00
Dominique Leuenberger	3261bdd454	Accepting request 1298437 from multimedia:libs - Add ffmpeg-4-CVE-2025-7700.patch: Add check for the return value of av_malloc_array() and av_calloc() to avoid potential NULL pointer dereference(CVE-2025-7700, bsc#1246790). OBS-URL: https://build.opensuse.org/request/show/1298437 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/ffmpeg-4?expand=0&rev=85	2025-08-09 17:59:04 +00:00
OBS User unknown	ef6fd9f8f4	[info=8bf39969f74af9912efd438e361797c9c6c9429b734746f57789257a3513a324] OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/ffmpeg-4?expand=0&rev=245	2025-08-08 19:35:20 +00:00
OBS User unknown	9de009f296	[info=11b18021fb9d000e5c9493b739f350a4f6b98cbd8a6ee7507df017e133749edf] OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/ffmpeg-4?expand=0&rev=244	2025-07-28 08:48:00 +00:00
OBS User unknown	888f0fb018	[info=2f35f5fc34b59659cedc56a644aa169611341e1f3d66858c21a464aa28b10d59] OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/ffmpeg-4?expand=0&rev=243	2025-07-25 12:30:48 +00:00
OBS User unknown	be26357aff	[info=c3f1a1e693811a6fb222c5b6f84adbe36dd433e1d29e69c052bf4b6f1d5cae58] OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/ffmpeg-4?expand=0&rev=242	2025-07-25 12:18:50 +00:00
Ana Guerrero	c6364f59c1	Accepting request 1286274 from multimedia:libs add bugIDs OBS-URL: https://build.opensuse.org/request/show/1286274 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/ffmpeg-4?expand=0&rev=84	2025-06-18 17:29:49 +00:00
OBS User unknown	7f31f77bec	[info=c97634de0a56f72a52e61f6c941daf61ab02a01e16e69a2a4feb41bdc629fee3] OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/ffmpeg-4?expand=0&rev=241	2025-06-17 07:05:11 +00:00
Ana Guerrero	7f29d235f4	Accepting request 1284835 from multimedia:libs fix bugIDs OBS-URL: https://build.opensuse.org/request/show/1284835 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/ffmpeg-4?expand=0&rev=83	2025-06-11 14:21:32 +00:00
OBS User unknown	a8b3d79baa	[info=7a9fc524c2dc0f865f3c904696d75eb3ede85289b924bb044950da875d71fb50] OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/ffmpeg-4?expand=0&rev=240	2025-06-11 12:59:45 +00:00
Ana Guerrero	75a66d8c3b	Accepting request 1283411 from multimedia:libs - Add ffmpeg-4-CVE-2024-36618.patch: OBS-URL: https://build.opensuse.org/request/show/1283411 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/ffmpeg-4?expand=0&rev=82	2025-06-10 06:57:46 +00:00
OBS User unknown	90c139f607	[info=b0492f21788e3531689b3d71465d576aed32d6c7b6bb7d04a6d851c1c6c6a711] OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/ffmpeg-4?expand=0&rev=239	2025-06-05 15:58:42 +00:00
Dominique Leuenberger	bfd7399b34	Accepting request 1281551 from multimedia:libs - Update to release 4.4.6 OBS-URL: https://build.opensuse.org/request/show/1281551 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/ffmpeg-4?expand=0&rev=81	2025-06-01 19:36:33 +00:00
OBS User unknown	9ca9a7bc26	[info=420e661938e4368d566150fe417d839dd54c1787c020fe7f7bd9c4d6cdcebe6b] OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/ffmpeg-4?expand=0&rev=238	2025-05-30 18:31:20 +00:00
OBS User unknown	0b07fabbd2	[info=86b52e2cf6201f5d2442903c83280299966679862585a7a13361e87c9bffff21] OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/ffmpeg-4?expand=0&rev=237	2025-05-29 20:57:58 +00:00
Ana Guerrero	952a216a39	Accepting request 1256073 from multimedia:libs OBS-URL: https://build.opensuse.org/request/show/1256073 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/ffmpeg-4?expand=0&rev=80	2025-03-28 08:35:54 +00:00
OBS User unknown	d124a61f70	[info=2ddfcb257c4def857918761587f2fed206c5baa5c74592ae5648d10e6952095e] OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/ffmpeg-4?expand=0&rev=236	2025-03-25 21:16:28 +00:00
Ana Guerrero	0a0296793c	Accepting request 1252555 from multimedia:libs fix changelog order OBS-URL: https://build.opensuse.org/request/show/1252555 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/ffmpeg-4?expand=0&rev=79	2025-03-13 14:04:15 +00:00
OBS User unknown	7c4f05ea0c	[info=5d7becce2922140a0cba7bad200cf85e644953395c6565bd7406b306572f1c50] OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/ffmpeg-4?expand=0&rev=235	2025-03-12 17:55:19 +00:00
Ana Guerrero	8107b8436b	Accepting request 1252220 from multimedia:libs - Add 0001-avcodec-libsvtav1-unbreak-build-with-latest-svtav1.patch to build with SVT-AV1 3.0.0. - sync with SLE changelog (forward from qzhao) OBS-URL: https://build.opensuse.org/request/show/1252220 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/ffmpeg-4?expand=0&rev=78	2025-03-12 14:20:24 +00:00
OBS User unknown	171f3bb6d9	[info=46737e4a9b4b9e54bf1fc706c0687cedd2971788e3d017d686eac1f7f95d372a] OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/ffmpeg-4?expand=0&rev=234	2025-03-12 07:09:04 +00:00
OBS User unknown	20f03e350a	[info=65b6edb8950ac36ce172939f560046c58edf60405b04f3f6d3b8dc3c32442a5b] OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/ffmpeg-4?expand=0&rev=233	2025-03-05 10:23:53 +00:00
Ana Guerrero	93a8c4cc84	Accepting request 1249550 from multimedia:libs forward #13 from qzhao OBS-URL: https://build.opensuse.org/request/show/1249550 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/ffmpeg-4?expand=0&rev=77	2025-03-03 15:04:35 +00:00
OBS User unknown	fefed69fa3	[info=f7026a3e88fc7d3d1e3f9c65247ffb2393f90718f2ec1a207e006758528c970c] OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/ffmpeg-4?expand=0&rev=232	2025-03-02 15:16:44 +00:00
Dominique Leuenberger	1c0fe99c62	Accepting request 1249416 from multimedia:libs - Add ffmpeg-4-CVE-2024-35368.patch: Backporting 45133009 from upstream, After having created the AVBuffer that is put into frame->buf[0], ownership of several objects Fix double-free on the AVFrame is unreferenced. (CVE-2024-35368, bsc#1234028) OBS-URL: https://build.opensuse.org/request/show/1249416 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/ffmpeg-4?expand=0&rev=76	2025-03-02 11:17:21 +00:00
Dominique Leuenberger	abbfbfa335	Accepting request 1249264 from multimedia:libs fix order of changelog messages (forward from manfred-h) OBS-URL: https://build.opensuse.org/request/show/1249264 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/ffmpeg-4?expand=0&rev=75	2025-03-01 18:16:13 +00:00
OBS User unknown	5794b0d7ba	[info=bdf0a9b75cdd2ec4b51fcca4dbf10a2206639b0ba7bf3934833fbb286fb59f3b] OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/ffmpeg-4?expand=0&rev=231	2025-03-01 15:21:16 +00:00
OBS User unknown	258a85a375	[info=230356c4f514abb518f1818f1d8d4c89c01d95dc2d7d1ae500dc9effa6bed41f] OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/ffmpeg-4?expand=0&rev=230	2025-02-28 15:37:47 +00:00
Dominique Leuenberger	d2683da3c3	Accepting request 1248239 from multimedia:libs OBS-URL: https://build.opensuse.org/request/show/1248239 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/ffmpeg-4?expand=0&rev=74	2025-02-25 15:40:19 +00:00
OBS User unknown	d0ef177e63	[info=71230d5ab33ebb8b540bce6771743d3d17a008cbe9ffb2831c8c2522bb9e4f9a] OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/ffmpeg-4?expand=0&rev=229	2025-02-24 20:19:57 +00:00
Dominique Leuenberger	fe6b3d0bf9	Accepting request 1247765 from multimedia:libs - Adjust bconds to build the package in SLFO without xvidcore. OBS-URL: https://build.opensuse.org/request/show/1247765 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/ffmpeg-4?expand=0&rev=73	2025-02-22 19:05:32 +00:00
OBS User unknown	5ceafeff26	[info=b6a9351332f68f9e2bb88064077f83991397ad6f174d995f76f27f9fb779232e] OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/ffmpeg-4?expand=0&rev=228	2025-02-22 00:33:23 +00:00
Ana Guerrero	7d49465fd5	Accepting request 1235206 from multimedia:libs - Update to release 4.4.5 OBS-URL: https://build.opensuse.org/request/show/1235206 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/ffmpeg-4?expand=0&rev=72	2025-01-07 19:50:08 +00:00
OBS User unknown	34eff8d181	[info=52f36ca5b3383586c1ae8abf1b64353de97005272d185339a0eca858376b3ac2] OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/ffmpeg-4?expand=0&rev=227	2025-01-06 12:57:32 +00:00
Ana Guerrero	1362fec4c8	Accepting request 1201542 from multimedia:libs - Add ffmpeg-4-CVE-2024-7055.patch: OBS-URL: https://build.opensuse.org/request/show/1201542 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/ffmpeg-4?expand=0&rev=71	2024-09-18 13:26:16 +00:00
OBS User unknown	c4e27141b5	[info=79e46abe5636072004aa47101b1fe0b5408a73862b22b9beadc828972944d9f3] OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/ffmpeg-4?expand=0&rev=226	2024-09-17 07:58:30 +00:00
Dominique Leuenberger	92c18e9e93	Accepting request 1196704 from multimedia:libs - Add 0001-libavcodec-arm-mlpdsp_armv5te-fix-label-format-to-wo.patch [boo#1229338] OBS-URL: https://build.opensuse.org/request/show/1196704 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/ffmpeg-4?expand=0&rev=70	2024-08-29 13:42:50 +00:00
OBS User unknown	dc18ee5b7c	[info=9e43e5445b98d8995b81b0fc26eca3b5334fb0e654fa27f34d5f3cd90ff11654] OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/ffmpeg-4?expand=0&rev=225	2024-08-28 11:02:36 +00:00
Dominique Leuenberger	84317f8495	Accepting request 1190554 from multimedia:libs - Add ffmpeg-4-CVE-2024-32230.patch: Backporting 96449cfe from upstream, Fix 1 line and one column images. (CVE-2024-32230, bsc#1227296) OBS-URL: https://build.opensuse.org/request/show/1190554 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/ffmpeg-4?expand=0&rev=69	2024-08-01 20:03:26 +00:00
OBS User unknown	529d52fc41	[info=32083452007930a19f6845ff9dabd64715f2bca36f8a20c936c161f6f8480517] OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/ffmpeg-4?expand=0&rev=224	2024-07-31 04:06:23 +00:00
Dominique Leuenberger	4034f76215	Accepting request 1189862 from multimedia:libs - Add ffmpeg-c99.patch so that the package conforms to the C99 standard and builds on i586 with GCC 14. OBS-URL: https://build.opensuse.org/request/show/1189862 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/ffmpeg-4?expand=0&rev=68	2024-07-30 09:53:18 +00:00
OBS User unknown	d024d21553	[info=d4a851e48e2ef17c1f3c81416ee204973636088059021e1c36a028ddbb7991c7] OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/ffmpeg-4?expand=0&rev=223	2024-07-27 05:17:58 +00:00
Jan Engelhardt	b97361eb25	[info=90ca7e24a6cbe5b7139f3c99d355ae4ecd32b73586c4e953d7b4bf8e6d02cfaf] OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/ffmpeg-4?expand=0&rev=222	2024-07-09 14:10:53 +00:00