-
Committer:
Package Import Robot
-
Author(s):
Reinhard Tartler
-
Date:
2013-02-16 10:16:46 UTC
-
mfrom:
(0.1.17)
-
Revision ID:
package-import@ubuntu.com-20130216101646-okuiccio27f3pgh2
Tags: 4:0.5.10-1
* New upstream release. New release fixes: (Closes: #688849)
- mpeg12: do not decode extradata more than once (CVE-2012-2803)
- vp6: properly fail on unsupported feature (CVE-2012-2783)
- vp56: release frames on error (CVE-2012-2783)
- shorten: Use separate pointers for the allocated memory for decoded samples (CVE-2012-0858)
- cavsdec: check for changing w/h (CVE-2012-2777 and CVE-2012-2784)
- avidec: use actually read size instead of requested size CVE-2012-2788
- avsdec: Set dimensions instead of relying on the demuxer (CVE-2012-2801)