Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package ffmpeg-4 for openSUSE:Factory checked in at 2025-08-09 19:59:04 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/ffmpeg-4 (Old) and /work/SRC/openSUSE:Factory/.ffmpeg-4.new.1085 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "ffmpeg-4" Sat Aug 9 19:59:04 2025 rev:85 rq:1298437 version:4.4.6 Changes: -------- --- /work/SRC/openSUSE:Factory/ffmpeg-4/ffmpeg-4.changes 2025-06-18 19:29:55.509529368 +0200 +++ /work/SRC/openSUSE:Factory/.ffmpeg-4.new.1085/ffmpeg-4.changes 2025-08-09 20:05:11.967730673 +0200 @@ -1,0 +2,7 @@ +Wed Jul 23 07:01:22 UTC 2025 - SongChuan Kang <sck...@suse.com> + +- Add ffmpeg-4-CVE-2025-7700.patch: Add check for the return value + of av_malloc_array() and av_calloc() to avoid potential NULL + pointer dereference(CVE-2025-7700, bsc#1246790). + +------------------------------------------------------------------- New: ---- ffmpeg-4-CVE-2025-7700.patch ----------(New B)---------- New: - Add ffmpeg-4-CVE-2025-7700.patch: Add check for the return value of av_malloc_array() and av_calloc() to avoid potential NULL ----------(New E)---------- ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ ffmpeg-4.spec ++++++ --- /var/tmp/diff_new_pack.EjhGw9/_old 2025-08-09 20:05:12.783764983 +0200 +++ /var/tmp/diff_new_pack.EjhGw9/_new 2025-08-09 20:05:12.787765151 +0200 @@ -142,6 +142,7 @@ Patch29: ffmpeg-4-CVE-2025-22921.patch Patch30: ffmpeg-avcodec-libdav1d-don-t-repeatedly-parse-the-same-seq.patch Patch31: ffmpeg-4-CVE-2024-36618.patch +Patch32: ffmpeg-4-CVE-2025-7700.patch BuildRequires: ladspa-devel BuildRequires: libgsm-devel BuildRequires: libmp3lame-devel ++++++ _scmsync.obsinfo ++++++ --- /var/tmp/diff_new_pack.EjhGw9/_old 2025-08-09 20:05:12.835767169 +0200 +++ /var/tmp/diff_new_pack.EjhGw9/_new 2025-08-09 20:05:12.839767338 +0200 @@ -1,5 +1,5 @@ -mtime: 1750142869 -commit: c97634de0a56f72a52e61f6c941daf61ab02a01e16e69a2a4feb41bdc629fee3 +mtime: 1754637233 +commit: 8bf39969f74af9912efd438e361797c9c6c9429b734746f57789257a3513a324 url: https://src.opensuse.org/jengelh/ffmpeg-4 revision: master ++++++ build.specials.obscpio ++++++ ++++++ ffmpeg-4-CVE-2025-7700.patch ++++++ >From 35a6de137a39f274d5e01ed0e0e6c4f04d0aaf07 Mon Sep 17 00:00:00 2001 From: Jiasheng Jiang <jiashengjiangc...@gmail.com> Date: Thu, 10 Jul 2025 16:26:39 +0000 Subject: [PATCH] libavcodec/alsdec.c: Add check for av_malloc_array() and av_calloc() Add check for the return value of av_malloc_array() and av_calloc() to avoid potential NULL pointer dereference. Fixes: dcfd24b10c ("avcodec/alsdec: Implement floating point sample data decoding") [Remodeled for ffmpeg-4.x - sck...@suse.com] Index: ffmpeg-4.4.6/libavcodec/alsdec.c =================================================================== --- ffmpeg-4.4.6.orig/libavcodec/alsdec.c +++ ffmpeg-4.4.6/libavcodec/alsdec.c @@ -2116,8 +2116,8 @@ static av_cold int decode_init(AVCodecCo ctx->nbits = av_malloc_array(ctx->cur_frame_length, sizeof(*ctx->nbits)); ctx->mlz = av_mallocz(sizeof(*ctx->mlz)); - if (!ctx->mlz || !ctx->acf || !ctx->shift_value || !ctx->last_shift_value - || !ctx->last_acf_mantissa || !ctx->raw_mantissa) { + if (!ctx->larray || !ctx->nbits || !ctx->mlz || !ctx->acf || !ctx->shift_value + || !ctx->last_shift_value || !ctx->last_acf_mantissa || !ctx->raw_mantissa) { av_log(avctx, AV_LOG_ERROR, "Allocating buffer memory failed.\n"); ret = AVERROR(ENOMEM); goto fail; @@ -2128,6 +2128,10 @@ static av_cold int decode_init(AVCodecCo for (c = 0; c < avctx->channels; ++c) { ctx->raw_mantissa[c] = av_mallocz_array(ctx->cur_frame_length, sizeof(**ctx->raw_mantissa)); + if (!ctx->raw_mantissa[c]) { + av_log(avctx, AV_LOG_ERROR, "Allocating buffer memory failed.\n"); + ret = AVERROR(ENOMEM); + goto fail; } }
