shithub: aacdec

Download patch

ref: 9332789ad9810f833f8007eabf3970d249a1c8fa
parent: 419cd2bcfb26af6737267ccd624c14ead35149e7
author: Fabian Greffrath <[email protected]>
date: Wed Sep 4 06:59:49 EDT 2019

prepare Changelog for the next 2.9.0 release

--- a/ChangeLog
+++ b/ChangeLog
@@ -1,3 +1,50 @@
+2.9.0:
+	[ Krzysztof Nikiel ]
+	* obsolete files removed
+	* add getopt.h as extra source
+
+	[ LoRd_MuldeR ]
+	* Fixed a number of compiler warnings because of unused variables
+	  + fixed use of un-initialized variable.
+	* Fixed indentation.
+	* More generalized solution that also fixes compilation with
+	  GCC < 4.7.3.
+	* Removed non-existing MSVC project from the solution file.
+
+	[ Cameron Cawley ]
+	* Fix compilation with GCC 4.7.4
+	* Fix compilation with MinGW
+
+	[ Michael Fink ]
+	* updated Visual Studio 2017 project for libfaad2.dll,
+	  also retrieving version from configure.ac file
+	* ignoring .user files from Visual Studio
+
+	[ Hugo Lefeuvre ]
+	* CVE-2019-6956: Buffer over read in the function ps_mix_phase()
+	  (libfaad/ps_dec.c) (Closes: #914641).
+	* CVE-2018-20196: Stack buffer overflow in the function calculate_gain
+	  (libfaad/sbr_hfadj.c).
+	* CVE-2018-20199, CVE-2018-20360: NULL pointer dereference in the function
+	  ifilter_bank (libfaad/filtbank.c).
+	* CVE-2018-20362: NULL pointer dereference vulnerability in the function
+	  ifilter_bank (libfaad/filtbank.c:275).
+	* CVE-2018-20194: Stack buffer underflow in function
+	  calculate_gain(libfaad/sbr_hfadj.c:1314).
+
+	[ Hugo Beauzée-Luyssen ]
+	* Fix a couple buffer overflows
+
+	[ Filip Roséen ]
+	* Add patch to prevent crash on SCE followed by CPE
+
+	[ Gianfranco Costamagna ]
+	* Fix link failure with gcc-9 and wl,asneeded flags
+
+	[ Fabian Greffrath ]
+	* Enable the frontend to be built reproducibly
+
+2.8.8:
 2.8.7:
 	- MSVC build fixes
 	- fixed a coulple bugs