- vqavideo: return error if image size is not a multiple of block size (CVE-2012-0947)
- h263dec: Disallow width/height changing with frame threads (CVE-2011-3937)
- adpcm: ADPCM Electronic Arts has always two channels (CVE-2012-0852)
- h264: Add check for invalid chroma_format_idc (CVE-2012-0851)
- dpcm: ignore extra unpaired bytes in stereo streams (CVE-2011-3951)
- rtpdec_asf: Fix integer underflow that could allow remote code execution (CVE-2011-4031)
- aacsbr: prevent out of bounds memcpy() (CVE-2012-0850)
- kmvc: Check palsize (CVE-2011-3952)
Further bugfixes in the following codecs: ea, png, qdm2, tqi, motionpixels
From Brad, ok jasper@.
- Fix MPEG2 parsing.
- Enable direct rendering for H.264.
- Fix DR1 frame garbage collector when using multithreaded decoding.
- Fix U-plane conversion (YUVJ444P -> YUV420).
- Add support for FLAC with Matroska.
- mmx_yuv2rgb() optimizations.
from Brad (maintainer)
the previous version has not been updated for 2.1. From myself and Brad.
Maintainer timeout.
While there, switch to a pkg/DESCR more closely approximating
English, the original from upstream was rather confusing ..
here is the new port and the new stuff:
* Fix a bug where not the entire saved cert wouldn't be checked
* Add an include_config setting to load additional configuration
settings
* Add option to display when a download completes
* Rewrite mutex implementation to work around some bogus buggy mutex
implementation messages
* Make bunch of settings work in runtime vs start-of-day
* Add option to select search engine when used the first time
* Add ctrl-enter to prefix www. and postfix .com
* Add stop keybinding
* Fix a bunch of tiny bugs and general code improvement
OK sthen@
