7ee536e87a
matroskadec: Fix a bug where a pointer was cached to an array that might later move due to a realloc()
Fixes bug #190
Chromium bug #100492
related to CVE-2011-3893
Signed-off-by: Reinhard Tartler <siretart@tauware.de>
(cherry-picked from commit faaec4676c1f625431e290a4a46747
14 years ago
8acc0546bb
matroskadec: fix out of bounds write
Signed-off-by: Janne Grunau <janne-libav@jannau.net>
(cherry picked from commit 723229c11fd51c7b4cbe
14 years ago
23aaa82b1d
vqa: fix double free on corrupted streams
Signed-off-by: Michael Niedermayer <michaelni@gmx.at>
(cherry picked from commit e3123856c7
14 years ago
62da9203fd
Check for out of bound writes in the avs demuxer.
Signed-off-by: Michael Niedermayer <michaelni@gmx.at>
(cherry picked from commit 5d44c061cf
14 years ago
2e1e3c1e41
Check for corrupted data in avs demuxer.
Signed-off-by: Michael Niedermayer <michaelni@gmx.at>
(cherry picked from commit 1cce7def0a
14 years ago
648dc68098
Reject audio tracks with invalid interleaver parameters in RM demuxer.
Signed-off-by: Michael Niedermayer <michaelni@gmx.at>
(cherry picked from commit 4907f8135824e0a9e451
14 years ago
71132596ae
segafilm: Fix potential division by 0 on corrupted segafilm streams in the demuxer.
Signed-off-by: Michael Niedermayer <michaelni@gmx.at>
14 years ago
d6f8b65417
segafilm: Check for memory allocation failures in segafilm demuxer.
Signed-off-by: Michael Niedermayer <michaelni@gmx.at>
(cherry picked from commit 7cbe025758
14 years ago
6108f04d4f
Fixed segfault on corrupted smacker streams in the demuxer.
Signed-off-by: Michael Niedermayer <michaelni@gmx.at>
(cherry picked from commit d0121e8d96
14 years ago
52b8edc94c
oggdec: fix out of bound write in the ogg demuxer
Between ogg_save() and ogg_restore() calls, the number of streams
could have been reduced.
Signed-off-by: Luca Barbato <lu_zero@gentoo.org>
(cherry picked from commit 0e7efb9d23
14 years ago
2e17744a90
Fixed off by one packet size allocation in the smacker demuxer.
Signed-off-by: Martin Storsjö <martin@martin.st>
(cherry picked from commit a92d0fa5d2
14 years ago
19431d4d4e
ape demuxer: fix segfault on memory allocation failure.
Signed-off-by: Anton Khirnov <anton@khirnov.net>
(cherry picked from commit 273aab99bf
14 years ago
ecd6fa11c2
Check for invalid packet size in the smacker demuxer.
Signed-off-by: Martin Storsjö <martin@martin.st>
(cherry picked from commit e055932f56
14 years ago
4f07a3aa2c
Fix memory (re)allocation in matroskadec.c, related to MSVR-11-0080.
Whitespace of the patch cleaned up by Aurel
Some of the issues have been reported by Steve Manzuik / Microsoft Vulnerability Research (MSVR)
Signed-off-by: Michael Niedermayer <michaelni@gmx.at>
(cherry picked from commit 956c901c6877d2ef13a8
14 years ago
18c5fe919f
Do not attempt to decode APE file with no frames
This fixes invalid reads/writes with this sample:
http://packetstorm.linuxsecurity.com/1103-exploits/vlc105-dos.txt
(cherry picked from commit 8312e3fc90
15 years ago
11f6eebdd3
consolidate .gitignore patters into a single file
Signed-off-by: Janne Grunau <janne-ffmpeg@jannau.net>
(cherry picked from commit 2c3589bfda
15 years ago
9109a58867
convert svn:ignore properties to .gitignore files
Signed-off-by: Janne Grunau <janne-ffmpeg@jannau.net>
(cherry picked from commit 348b8218f7
15 years ago
2dea9a1266
unbreak compilation and finish backport r24280 by mstorsjo
Originally committed as revision 25324 to svn://svn.ffmpeg.org/ffmpeg/branches/0.5
15 years ago
84e6629de3
aviobuf: Do short seeks forward by reading and skipping data instead of a proper seek
This improves performance on e.g. seekable http.
backport r24280 by mstorsjo
Originally committed as revision 24428 to svn://svn.ffmpeg.org/ffmpeg/branches/0.5
15 years ago
c46038f6b7
fix 'seektest' again
backport r19270 by rbultje:
Remove any reference to ASFContext.packet_size and replace it with
AVFormatContext.packet_size. See "[PATCH] asf*.c/h: use
AVFormatContext->packet_size instead of own copy" thread on ML.
and r19361 by reimar:
Check for packet_length 0, it is already treated as invalid by the padding check,
but that resulted in a confusing/wrong error message.
Originally committed as revision 22147 to svn://svn.ffmpeg.org/ffmpeg/branches/0.5
16 years ago
a317cd5722
Avoid divisions by 0 in the ASF demuxer if packet_size is not valid.
r19330 by reimar
Originally committed as revision 22080 to svn://svn.ffmpeg.org/ffmpeg/branches/0.5
16 years ago
ef84190a1a
Fix possible buffer over-read in vorbis_comment, fix it double to be sure.
First, make s signed, so that comparisons against end - p will not be made as
unsigned, making the check incorrectly pass if p is beyond end.
Also ensure that p will never be > end, so the code is correct also if
buf is not padded.
backported r20014 by reimar
Originally committed as revision 21711 to svn://svn.ffmpeg.org/ffmpeg/branches/0.5
16 years ago
7db16a8173
check stream existence before assignment, fix #1222
backported r19259 by bcoudurier
Originally committed as revision 21710 to svn://svn.ffmpeg.org/ffmpeg/branches/0.5
16 years ago
e91ba7dc9d
add one missing check for stream existence in read_elst, fix #1364
backported patch r19792 by bcoudurier
Originally committed as revision 21709 to svn://svn.ffmpeg.org/ffmpeg/branches/0.5
16 years ago
95f90d27d2
Disable parsing for ogg streams where no ogg header was found,
if no header was found the parser was not initialized and thus will
crash when trying to use it.
Originally committed as revision 21708 to svn://svn.ffmpeg.org/ffmpeg/branches/0.5
16 years ago
1e9ac36f66
Make arguments of av_set_pts_info() unsigned.
Fixes issue1240/mpeg1/smclockmpeg1.avi.3.1
Originally committed as revision 21707 to svn://svn.ffmpeg.org/ffmpeg/branches/0.5
16 years ago
a9785f58c6
backport symbol versioning patch
Originally committed as revision 21595 to svn://svn.ffmpeg.org/ffmpeg/branches/0.5
16 years ago
07679e680c
revert r16717, r16718, r16719, EAGAIN handling, this causes FFserver to hang
Originally committed as revision 17737 to svn://svn.ffmpeg.org/ffmpeg/branches/0.5
17 years ago
0ffbc258aa
Change a bunch of codec long_names to be more consistent and descriptive.
Originally committed as revision 17716 to svn://svn.ffmpeg.org/ffmpeg/trunk
17 years ago
827f7e285b
deprecate old metadata API
Originally committed as revision 17690 to svn://svn.ffmpeg.org/ffmpeg/trunk
17 years ago
bc718b4720
fix missed usage of old metadata API in mov demuxer
Originally committed as revision 17689 to svn://svn.ffmpeg.org/ffmpeg/trunk
17 years ago
012867f05b
use new metadata API in libavformat/utils.c
Originally committed as revision 17687 to svn://svn.ffmpeg.org/ffmpeg/trunk
17 years ago
feacba6c26
use new metadata API in r3d demuxer
Originally committed as revision 17686 to svn://svn.ffmpeg.org/ffmpeg/trunk
17 years ago
ec26457064
new metadata API is now officially part of public API
Originally committed as revision 17682 to svn://svn.ffmpeg.org/ffmpeg/trunk
17 years ago
95030323d1
simplify metadata conversion and fixes gcc-2.95 at the same time
Originally committed as revision 17681 to svn://svn.ffmpeg.org/ffmpeg/trunk
17 years ago
4022fe01a6
Change the timebase of the raw demuxer to one that can represent the ts of fields.
Originally committed as revision 17675 to svn://svn.ffmpeg.org/ffmpeg/trunk
17 years ago
9e6c124a87
Disable MPEG-1/2 style timestamp calculation for H264. It still randomizes
the timestamps because delay is not known for the first few frames.
Originally committed as revision 17674 to svn://svn.ffmpeg.org/ffmpeg/trunk
17 years ago
719e721a14
Add some basic metadata conversion tables for matroska and asf.
Add missing const qualifiers for metadata_conv in AV{In|Out}putFormat.
Originally committed as revision 17671 to svn://svn.ffmpeg.org/ffmpeg/trunk
17 years ago
f610a9f284
add a metadata conversion API
Originally committed as revision 17670 to svn://svn.ffmpeg.org/ffmpeg/trunk
17 years ago
3aa7ac6dd2
Document ff_rtp_codec_id()
Originally committed as revision 17666 to svn://svn.ffmpeg.org/ffmpeg/trunk
17 years ago
4c6b49bf74
Change TS seeking so it returns position/timestamp of a key frame.
Patch by Ivan Schreter, schreter gmx net
Originally committed as revision 17665 to svn://svn.ffmpeg.org/ffmpeg/trunk
17 years ago
d3da8a4565
Fix typo in a comment
Originally committed as revision 17664 to svn://svn.ffmpeg.org/ffmpeg/trunk
17 years ago
c3efd98c09
Document ff_rtp_enc_name()
Originally committed as revision 17663 to svn://svn.ffmpeg.org/ffmpeg/trunk
17 years ago
344bcea46d
cosmetics: indentation
Originally committed as revision 17662 to svn://svn.ffmpeg.org/ffmpeg/trunk
17 years ago
d3a5794958
Document ff_rtp_get_codec_info()
Originally committed as revision 17661 to svn://svn.ffmpeg.org/ffmpeg/trunk
17 years ago
81f052cb7d
Separate the raw FLAC demuxer from raw.c and put in a new file,
flacdec.c.
Originally committed as revision 17660 to svn://svn.ffmpeg.org/ffmpeg/trunk
17 years ago
2d243fb3fc
Rename movenc.c MOVContext to MOVMuxContext, since MOVContext is already used
in mov.c for the demuxer. See "[PATCH] rename movenc.c MOVContext to
MOVMuxContext" thread on the mailinglist.
Originally committed as revision 17659 to svn://svn.ffmpeg.org/ffmpeg/trunk
17 years ago
f166f2f435
Revert "Improve frame rate guessing for streams with two fields per frame."
This reverts r17656, which broke many tests. Further investigation
is necessary.
Originally committed as revision 17658 to svn://svn.ffmpeg.org/ffmpeg/trunk
17 years ago
5fa61b26f7
Improve frame rate guessing for streams with two fields per frame.
Patch by Ivan Schreter, schreter gmx net
Originally committed as revision 17656 to svn://svn.ffmpeg.org/ffmpeg/trunk
17 years ago
73914d56d9
use new metadata API in nut muxer
This is only a straight conversion of current code, so for now, it won't
mux generic metadata. It will only mux Title, Author and Copyright.
Originally committed as revision 17653 to svn://svn.ffmpeg.org/ffmpeg/trunk
17 years ago
Chris Evans
Ronald S. Bultje
Laurent Aimar
Michael Niedermayer
Kostya
Janne Grunau
Reinhard Tartler
Baptiste Coudurier
Diego Biurrun
Aurelien Jacobs
Luca Abeni
Ivan Schreter
Justin Ruggles
Måns Rullgård