[Bug 1393522] Re: Sync ffmpeg 7:2.4.3-1 (universe) from Debian sid (main)
Daniel Holbach
daniel.holbach at ubuntu.com
Tue Nov 18 08:27:15 UTC 2014
Synced and sitting in the NEW queue (as it was removed from Ubuntu
earlier):
https://launchpad.net/ubuntu/vivid/+queue?queue_state=0&queue_text=ffmpeg
Please set this bug to "Fix released" once it was accepted in Ubuntu.
Thanks.
** Changed in: ubuntu
Status: New => Fix Committed
** Changed in: ubuntu
Status: Fix Committed => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Sponsors Team, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1393522
Title:
Sync ffmpeg 7:2.4.3-1 (universe) from Debian sid (main)
Status in Ubuntu:
Fix Released
Bug description:
Please sync ffmpeg 7:2.4.3-1 (universe) from Debian sid (main)
All changelog entries:
ffmpeg (7:2.4.3-1) unstable; urgency=medium
* Import new upstream bugfix release 2.4.3.
- Refresh Change-symbol-versioning.patch.
- Add new symbols to the libavdevice symbols file.
* Enable libbs2b on arm64, since it is now available.
* Disable frei0r and libx264 on x32, libsoxr and openal on sparc64
and libopencv on m68k, sh4, sparc64 and x32, because they are not
(yet) avialable there.
* Disable assembler optimizations on x32, as they wouldn't work there.
* Include config.log in the build-log, when compiling fails.
* Add fix-hppa-tests.patch to work around a gcc bug on hppa.
-- Andreas Cadhalpun <Andreas.Cadhalpun at googlemail.com> Wed, 05 Nov
2014 01:18:23 +0100
ffmpeg (7:2.4.2-1) unstable; urgency=medium
* Import new upstream bugfix release 2.4.2.
* Drop tests_Cat-err-file-in-case-of-error.patch included upstream.
* Disable assembler optimizations on armel to fix the tests.
-- Andreas Cadhalpun <Andreas.Cadhalpun at googlemail.com> Mon, 06 Oct
2014 21:13:39 +0200
ffmpeg (7:2.4.1-1) unstable; urgency=medium
* Import new upstream bugfix release 2.4.1.
* Drop patches included upstream:
- avcodec-x86-vp9lpf_Always-include-x86util.asm.patch
- fix-build-when-AV_READ_TIME-is-unavailable.patch
- vf_deshake-rename-Transform.vector-to-Transform.vec.patch
* Disable Altivec on powerpc to fix test failures.
* Cherry-pick tests_Cat-err-file-in-case-of-error.patch to ease debugging
of test failures.
* Add Breaks and Replaces on old ffmpeg packages to qt-faststart.
* Disable optimizations on mips(el) to fix test failures.
* Don't enable libbs2b on arm64, because it is not (yet) available there.
* Disable assembler optimizations on ppc64el to (hopefully) fix the tests.
* Upload to unstable.
-- Andreas Cadhalpun <Andreas.Cadhalpun at googlemail.com> Fri, 26 Sep
2014 21:58:10 +0200
ffmpeg (7:2.4-2) experimental; urgency=medium
* Cherrypick patches from upstream:
- fix-build-when-AV_READ_TIME-is-unavailable.patch:
This fixes building on armel, mipsel and s390x.
- vf_deshake-rename-Transform.vector-to-Transform.vec.patch:
This fixes building on powerpc and ppc64el.
- avcodec-x86-vp9lpf_Always-include-x86util.asm.patch:
This fixes the executable stack lintian warning for libavcodec on i386.
* Add lintian overrides for shlib-with-non-pic-code on i386, where non-PIC
code is allowed.
* Don't enable opencl, because it is considered experimental.
* Bump policy to 3.9.6 (no changes required).
* Mark ffmpeg-doc as Multi-Arch: foreign.
* Install the headers in the triplet subdirectory of /usr/include.
This is necessary, because some headers (e.g. libavutil/avconfig.h)
are architecture-dependant.
-- Andreas Cadhalpun <Andreas.Cadhalpun at googlemail.com> Thu, 18 Sep
2014 21:54:12 +0200
ffmpeg (7:2.4-1) experimental; urgency=medium
* Import new major upstream release 2.4. (Closes: #729203)
- Fixes CVE-2014-5271: proresenc_ks: fix buffer overflow
- Fixes CVE-2014-5272: iff: fix out of array access
- The non-free image tests/lena.pnm is not shipped anymore.
* Switch Vcs-Browser to the cgit interface.
* In the development packages add symbolic links from the standard lib*.so
library names to the suffixed ones.
This makes it possible to use the normal linker flags, e.g. '-lavcodec',
to link against the FFmpeg libraries with '-ffmpeg' suffix.
* Add missing copyright holders/years to debian/copyright.
* Fix wildcard-matches-nothing-in-dep5-copyright lintian warnings.
* Add qt-faststart to the Recommends: of the ffmpeg binary package.
* Configure with --enable-libshine, since libshine >= 3.0.0 is now available
in Debian.
* Drop pkg-config_file_without_build_suffix.patch and instead create symlinks
from the lib*.pc files to the suffixed lib*-ffmpeg.pc files.
* Install similar symlinks for the static libraries.
* Don't hardcode default.css as CSS filename in debian/ffmpeg-doc.install.
* Drop patches included upstream:
- makeinfo.patch
- Fix-spelling.patch
* Update Change-symbol-versioning.patch.
* Adapt the packaging to the changed library soversions.
* Generalize ffmpeg.lintian-overrides with wildcards.
* Add debian/missing-sources with the sources of the minified CSS files in
the upstream tarball.
* Create the minified CSS files during package build instead of using the
ones shipped in the tarball.
For this add cleancss and node-less to Build-Depends-Indep.
* Update debian/copyright.
-- Andreas Cadhalpun <Andreas.Cadhalpun at googlemail.com> Sun, 14 Sep
2014 23:53:23 +0200
ffmpeg (7:2.3.1-1) experimental; urgency=medium
* Import new upstream release 2.3.1. (Closes: #729203)
- Fix integer overflow in LZO code. (CVE-2014-4610)
* Fix FTBFS in Ubuntu caused by the -Bsymbolic-functions linker flag.
Thanks to Guillaume Martres for pointing out the fix that Fabian Greffrath
created for the Libav package.
* Don't ignore test failures anymore, since gcc-4.9 has been fixed to
compile FFmpeg correctly. (see #746944)
* Enable libdc1394 only on linux. This fixes FTBFS on !linux-any.
* Use wildcards instead of multiarch paths and sonames in lintian
overrides.
* Fix building on hurd (patch included upstream in 2.2.3).
* Improve the description of the debug package.
* Drop fix-tests.patch. Instead export the LD_LIBRARY_PATH in debian/rules.
* Improve the comment in debian/copyright, explaining the effective license
of the binary packages.
* Change 'Comments:' to the correct 'Comment:' in debian/copyright.
* Add some missing files to debian/copyright.
* Call the upstream Makefile from debian/rules to build the apidoc
instead of calling the doxy-wrapper directly.
* Add _FFMPEG to the symbol versions of the libraries to ensure that there
is no confusion, if a binary is linked against FFmpeg and another shared
library, which is linked against Libav.
* Update patches to apply cleanly to 2.3.
* Add new symbols to the .symbols files.
* Update lintian overrides.
* Include config.log in the build-log, when configure fails.
* Add libgnutls28-dev build-dependency, which was previously pulled in as
a dependency of another build-dependency.
* Install the release notes into /usr/share/doc/ffmpeg.
* Add build-dependencies and enable in debian/rules:
- libbs2b
- libfribidi
* Update debian/copyright.
* Update the dependencies of the *-dev packages.
* Use packaged libjs-jquery instead of the jquery created by doxygen.
* Add Fix-spelling patch to fix spelling errors.
* Mark architecture-dependent symbols as optional.
-- Andreas Cadhalpun <Andreas.Cadhalpun at googlemail.com> Sat, 09 Aug
2014 14:00:38 +0200
ffmpeg (7:2.2.1-1) experimental; urgency=medium
* Reintroduce FFmpeg to Debian. (Closes: #729203)
There are far to many changes since FFmpeg 0.5 to mention them here, see:
https://git.videolan.org/?p=ffmpeg.git;a=shortlog;h=n2.2.1
Many security issues have been fixed as well, see:
https://ffmpeg.org/security.html
Among them are:
- 0.5: CVE-2008-4610
- 0.10: CVE-2011-3941, CVE-2011-3944, CVE-2011-3934, CVE-2011-3946
- 0.11: CVE-2012-5359, CVE-2012-5360, CVE-2012-5361
- 1.1: CVE-2012-6618, CVE-2013-0844, CVE-2013-0846, CVE-2013-0848,
CVE-2013-0849, CVE-2013-0850, CVE-2013-0854, CVE-2013-0856,
CVE-2013-0858
- 1.1.1: CVE-2013-0860
- 1.1.2: CVE-2013-0865, CVE-2013-0867, CVE-2013-0868, CVE-2013-0869
- 1.1.3: CVE-2013-0873, CVE-2013-2277
- 1.2: CVE-2012-5150, CVE-2013-0894, CVE-2013-2495, CVE-2013-2496
- 2.0: CVE-2013-3670, CVE-2013-3672
- 2.1: CVE-2013-7009, CVE-2013-7010, CVE-2013-7011, CVE-2013-7015,
CVE-2013-7020
- 2.1.4: CVE-2014-2263
-- Andreas Cadhalpun <Andreas.Cadhalpun at googlemail.com> Wed, 07 May
2014 16:40:18 +0200
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+bug/1393522/+subscriptions
More information about the Ubuntu-sponsors
mailing list