[FFmpeg-cvslog] Update changelog for 0.7.6 release

Reinhard Tartler git at videolan.org
Mon Jun 4 13:13:43 CEST 2012


ffmpeg | branch: release/0.7 | Reinhard Tartler <siretart at tauware.de> | Sun Jun  3 19:22:09 2012 +0200| [ee66a7198eea0ab3aefae0b3de5a17473f4374cf] | committer: Reinhard Tartler

Update changelog for 0.7.6 release

> http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=ee66a7198eea0ab3aefae0b3de5a17473f4374cf
---

 Changelog |   18 ++++++++++++++++++
 1 file changed, 18 insertions(+)

diff --git a/Changelog b/Changelog
index 425f6e2..f434aa1 100644
--- a/Changelog
+++ b/Changelog
@@ -1,6 +1,24 @@
 Entries are sorted chronologically from oldest to youngest within each release,
 releases are sorted from youngest to oldest.
 
+version 0.7.6:
+
+Security Updates:
+
+- vqavideo: return error if image size is not a multiple of block size (CVE-2012-0947)
+- h263dec: Disallow width/height changing with frame threads (CVE-2011-3937)
+- adpcm: ADPCM Electronic Arts has always two channels (CVE-2012-0852)
+- h264: Add check for invalid chroma_format_idc (CVE-2012-0851)
+- dpcm: ignore extra unpaired bytes in stereo streams (CVE-2011-3951)
+- rtpdec_asf: Fix integer underflow that could allow remote code execution (CVE-2011-4031)
+- aacsbr: prevent out of bounds memcpy() (CVE-2012-0850)
+- kmvc: Check palsize (CVE-2011-3952)
+
+Further bugfixes in the following codecs:
+
+  ea, png, qdm2, tqi, motionpixels, and a compilation failure with gcc 4.7
+
+
 version 0.7.5:
 
 Security updates:



More information about the ffmpeg-cvslog mailing list