projects / libde265.git / log
? search:
summary | shortlog | log | commit | commitdiff | tree
first ⋅ prev ⋅ next
libde265.git
2 years agolibde265 (1.0.9-1.1) unstable; urgency=medium
commit | commitdiff | tree
Tobias Frost [Sun, 22 Jan 2023 12:19:20 +0000 (12:19 +0000)]
libde265 (1.0.9-1.1) unstable; urgency=medium

  * Non-maintainer upload.
  * Apply patches to mitigate asan failures:
    reject_reference_pics_from_different_sps.patch and
    use_sps_from_the_image.patch.
  * Combined, this two patches fixes:
    - CVE-2022-43243, CVE-2022-43248, CVE-2022-43253 (Closes: #1025816)
    - CVE-2022-43235, CVE-2022-43236, CVE-2022-43237, CVE-2022-43238,
      CVE-2022-43239, CVE-2022-43240, CVE-2022-43241, CVE-2022-43242,
      CVE-2022-43244, CVE-2022-43250, CVE-2022-43252 (Closes: #1027179)
    - CVE-2022-47655
  * Additional patch recycle_sps_if_possible.patch to avoid over-rejecting
    valid video streams due to reject_reference_pics_from_different_sps.patch.
  * Modifying past changelog entries to indicate when vulnerabilities were
    fixed:
    - In 1.0.9-1, in total 11 CVE's. see #1004963 and #1014999
    - In 1.0.3-1, 1 CVE, see #1029396
  * drop unused Build-Depends: libjpeg-dev, libpng-dev and libxv-dev
    (Closes: #981260)

[dgit import unpatched libde265 1.0.9-1.1]

2 years agoImport libde265_1.0.9-1.1.debian.tar.xz
commit | commitdiff | tree
Tobias Frost [Sun, 22 Jan 2023 12:19:20 +0000 (12:19 +0000)]
Import libde265_1.0.9-1.1.debian.tar.xz

[dgit import tarball libde265 1.0.9-1.1 libde265_1.0.9-1.1.debian.tar.xz]

3 years agoImport libde265_1.0.9.orig.tar.gz
commit | commitdiff | tree
Joachim Bauch [Tue, 25 Oct 2022 08:15:37 +0000 (09:15 +0100)]
Import libde265_1.0.9.orig.tar.gz

[dgit import orig libde265_1.0.9.orig.tar.gz]

Unnamed repository; edit this file 'description' to name the repository.