From c7d526a909d7991216ae48521e4fbb39a71b6519b18d43daf7a22d02aabc1232 Mon Sep 17 00:00:00 2001 From: Jan Engelhardt Date: Mon, 22 Apr 2024 15:55:23 +0000 Subject: [PATCH] update patches with issue report links OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/ffmpeg-5?expand=0&rev=84 --- 0001-avfilter-af_dialoguenhance-do-output-scaling-once.patch | 2 ++ 0001-avfilter-af_dialoguenhance-fix-overreads.patch | 2 ++ 0001-avfilter-af_dialoguenhance-simplify-channels-copy.patch | 2 ++ 0001-avfilter-avf_showspectrum-fix-off-by-1-error.patch | 2 ++ 0001-avfilter-vf_codecview-fix-heap-buffer-overflow.patch | 2 ++ 0001-avutil-hwcontext-Don-t-assume-frames_uninit-is-reent.patch | 2 ++ 6 files changed, 12 insertions(+) diff --git a/0001-avfilter-af_dialoguenhance-do-output-scaling-once.patch b/0001-avfilter-af_dialoguenhance-do-output-scaling-once.patch index b858bcc..bfd6f74 100644 --- a/0001-avfilter-af_dialoguenhance-do-output-scaling-once.patch +++ b/0001-avfilter-af_dialoguenhance-do-output-scaling-once.patch @@ -2,6 +2,8 @@ From f1f973313b6edc460339c2dfa4675dd3ad72fe98 Mon Sep 17 00:00:00 2001 From: Paul B Mahol Date: Mon, 27 Nov 2023 11:52:37 +0100 Subject: [PATCH] avfilter/af_dialoguenhance: do output scaling once +References: https://bugzilla.opensuse.org/1222730 +References: CVE-2023-49528 --- libavfilter/af_dialoguenhance.c | 11 ++++------- diff --git a/0001-avfilter-af_dialoguenhance-fix-overreads.patch b/0001-avfilter-af_dialoguenhance-fix-overreads.patch index 0a0df78..591bfad 100644 --- a/0001-avfilter-af_dialoguenhance-fix-overreads.patch +++ b/0001-avfilter-af_dialoguenhance-fix-overreads.patch @@ -2,6 +2,8 @@ From 2d9ed64859c9887d0504cd71dbd5b2c15e14251a Mon Sep 17 00:00:00 2001 From: Paul B Mahol Date: Sat, 25 Nov 2023 12:54:28 +0100 Subject: [PATCH] avfilter/af_dialoguenhance: fix overreads +References: https://bugzilla.opensuse.org/1222730 +References: CVE-2023-49528 --- libavfilter/af_dialoguenhance.c | 17 +++++++++-------- diff --git a/0001-avfilter-af_dialoguenhance-simplify-channels-copy.patch b/0001-avfilter-af_dialoguenhance-simplify-channels-copy.patch index 76cc5b2..3f7bebf 100644 --- a/0001-avfilter-af_dialoguenhance-simplify-channels-copy.patch +++ b/0001-avfilter-af_dialoguenhance-simplify-channels-copy.patch @@ -2,6 +2,8 @@ From 4671fb7dfb8e72b228e04f3b81da7f2003c62240 Mon Sep 17 00:00:00 2001 From: Paul B Mahol Date: Mon, 27 Nov 2023 00:38:56 +0100 Subject: [PATCH] avfilter/af_dialoguenhance: simplify channels copy +References: https://bugzilla.opensuse.org/1222730 +References: CVE-2023-49528 --- libavfilter/af_dialoguenhance.c | 32 +++++++++++++++++--------------- diff --git a/0001-avfilter-avf_showspectrum-fix-off-by-1-error.patch b/0001-avfilter-avf_showspectrum-fix-off-by-1-error.patch index 25feb0a..fcec025 100644 --- a/0001-avfilter-avf_showspectrum-fix-off-by-1-error.patch +++ b/0001-avfilter-avf_showspectrum-fix-off-by-1-error.patch @@ -2,6 +2,8 @@ From ab0fdaedd1e7224f7e84ea22fcbfaa4ca75a6c06 Mon Sep 17 00:00:00 2001 From: Michael Niedermayer Date: Sun, 24 Dec 2023 20:31:02 +0100 Subject: [PATCH] avfilter/avf_showspectrum: fix off by 1 error +References: https://bugzilla.opensuse.org/1223087 +References: CVE-2024-31585 Fixes: out of array access Fixes: tickets/10749/poc15ffmpeg diff --git a/0001-avfilter-vf_codecview-fix-heap-buffer-overflow.patch b/0001-avfilter-vf_codecview-fix-heap-buffer-overflow.patch index 09ac8bc..00b9203 100644 --- a/0001-avfilter-vf_codecview-fix-heap-buffer-overflow.patch +++ b/0001-avfilter-vf_codecview-fix-heap-buffer-overflow.patch @@ -2,6 +2,8 @@ From 99debe5f823f45a482e1dc08de35879aa9c74bd2 Mon Sep 17 00:00:00 2001 From: Zhao Zhili Date: Fri, 29 Dec 2023 05:56:43 +0800 Subject: [PATCH] avfilter/vf_codecview: fix heap buffer overflow +References: https://bugzilla.opensuse.org/1223085 +References: CVE-2024-31582 And improve the performance by a little bit. diff --git a/0001-avutil-hwcontext-Don-t-assume-frames_uninit-is-reent.patch b/0001-avutil-hwcontext-Don-t-assume-frames_uninit-is-reent.patch index 8700084..6501dad 100644 --- a/0001-avutil-hwcontext-Don-t-assume-frames_uninit-is-reent.patch +++ b/0001-avutil-hwcontext-Don-t-assume-frames_uninit-is-reent.patch @@ -2,6 +2,8 @@ From 3bb00c0a420c3ce83c6fafee30270d69622ccad7 Mon Sep 17 00:00:00 2001 From: Zhao Zhili Date: Tue, 20 Feb 2024 20:08:55 +0800 Subject: [PATCH] avutil/hwcontext: Don't assume frames_uninit is reentrant +References: https://bugzilla.opensuse.org/1223070 +References: CVE-2024-31578 Fix heap use after free when vulkan_frames_init failed.