From: Brad Smith Subject: UPDATE: libvpx 1.14.1 To: ports@openbsd.org Date: Sun, 2 Jun 2024 00:30:54 -0400 Here is an update to libvpx 1.14.1. 2024-05-21 v1.14.1 "Venetian Duck" This release includes enhancements and bug fixes. - Upgrading: This release is ABI compatible with the previous release. - Enhancement: Improved the detection of compiler support for AArch64 extensions, particularly SVE. Added vpx_codec_get_global_headers() support for VP9. - Bug fixes: Added buffer bounds checks to vpx_writer and vpx_write_bit_buffer. Fix to GetSegmentationData() crash in aq_mode=0 for RTC rate control. Fix to alloc for row_base_thresh_freq_fac. Free row mt memory before freeing cpi->tile_data. Fix to buffer alloc for vp9_bitstream_worker_data. Fix to VP8 race issue for multi-thread with pnsr_calc. Fix to uv width/height in vp9_scale_and_extend_frame_ssse3. Fix to integer division by zero and overflow in calc_pframe_target_size(). Fix to integer overflow in vpx_img_alloc() & vpx_img_wrap()(CVE-2024-5197). Fix to UBSan error in vp9_rc_update_framerate(). Fix to UBSan errors in vp8_new_framerate(). Fix to integer overflow in vp8 encodeframe.c. Handle EINTR from sem_wait(). Index: Makefile =================================================================== RCS file: /cvs/ports/multimedia/libvpx/Makefile,v retrieving revision 1.58 diff -u -p -u -p -r1.58 Makefile --- Makefile 28 May 2024 11:26:44 -0000 1.58 +++ Makefile 2 Jun 2024 04:28:52 -0000 @@ -2,8 +2,7 @@ COMMENT= Google VP8/VP9 video codec GH_ACCOUNT= webmproject GH_PROJECT= libvpx -GH_TAGNAME= v1.14.0 -REVISION= 0 +GH_TAGNAME= v1.14.1 EPOCH= 0 CATEGORIES= multimedia Index: distinfo =================================================================== RCS file: /cvs/ports/multimedia/libvpx/distinfo,v retrieving revision 1.24 diff -u -p -u -p -r1.24 distinfo --- distinfo 29 Feb 2024 09:43:31 -0000 1.24 +++ distinfo 2 Jun 2024 04:28:52 -0000 @@ -1,2 +1,2 @@ -SHA256 (libvpx-1.14.0.tar.gz) = XyHS2ycHHIpG8XJZKKECJ65Fxc0crTcn5Kr75HbjIfo= -SIZE (libvpx-1.14.0.tar.gz) = 5606471 +SHA256 (libvpx-1.14.1.tar.gz) = kBdHJU2Ap5N8kz0DvXxdQejmyIPgZl+tyxclQhZ8eXc= +SIZE (libvpx-1.14.1.tar.gz) = 5614104 Index: patches/patch-build_make_configure_sh =================================================================== RCS file: /cvs/ports/multimedia/libvpx/patches/patch-build_make_configure_sh,v retrieving revision 1.11 diff -u -p -u -p -r1.11 patch-build_make_configure_sh --- patches/patch-build_make_configure_sh 29 Feb 2024 09:43:31 -0000 1.11 +++ patches/patch-build_make_configure_sh 2 Jun 2024 04:28:52 -0000 @@ -1,7 +1,7 @@ Index: build/make/configure.sh --- build/make/configure.sh.orig +++ build/make/configure.sh -@@ -701,8 +701,8 @@ post_process_cmdline() { +@@ -735,8 +735,8 @@ post_process_cmdline() { } setup_gnu_toolchain() { @@ -12,7 +12,7 @@ Index: build/make/configure.sh AR=${AR:-${CROSS}ar} LD=${LD:-${CROSS}${link_with_cc:-ld}} AS=${AS:-${CROSS}as} -@@ -746,7 +746,7 @@ check_xcode_minimum_version() { +@@ -780,7 +780,7 @@ check_xcode_minimum_version() { process_common_toolchain() { if [ -z "$toolchain" ]; then @@ -21,8 +21,8 @@ Index: build/make/configure.sh # detect tgt_isa case "$gcctarget" in aarch64*) -@@ -1012,7 +1012,7 @@ EOF - +@@ -1028,7 +1028,7 @@ EOF + asm_conversion_cmd="cat" case ${tgt_cc} in gcc) - link_with_cc=gcc @@ -30,8 +30,8 @@ Index: build/make/configure.sh setup_gnu_toolchain arch_int=${tgt_isa##armv} arch_int=${arch_int%%te} -@@ -1230,7 +1230,7 @@ EOF - esac +@@ -1275,7 +1275,7 @@ EOF + ;; mips*) - link_with_cc=gcc @@ -39,7 +39,7 @@ Index: build/make/configure.sh setup_gnu_toolchain tune_cflags="-mtune=" if enabled dspr2; then -@@ -1281,7 +1281,7 @@ EOF +@@ -1326,7 +1326,7 @@ EOF check_add_asflags -KPIC ;; ppc64le*) @@ -48,7 +48,7 @@ Index: build/make/configure.sh setup_gnu_toolchain # Do not enable vsx by default. # https://bugs.chromium.org/p/webm/issues/detail?id=1522 -@@ -1338,7 +1338,7 @@ EOF +@@ -1383,7 +1383,7 @@ EOF esac ;; gcc*) @@ -57,7 +57,7 @@ Index: build/make/configure.sh tune_cflags="-march=" setup_gnu_toolchain #for 32 bit x86 builds, -O3 did not turn on this flag -@@ -1469,7 +1469,7 @@ EOF +@@ -1514,7 +1514,7 @@ EOF esac ;; loongarch*) @@ -66,7 +66,7 @@ Index: build/make/configure.sh setup_gnu_toolchain enabled lsx && check_inline_asm lsx '"vadd.b $vr0, $vr1, $vr1"' -@@ -1478,7 +1478,7 @@ EOF +@@ -1523,7 +1523,7 @@ EOF enabled lasx && soft_enable runtime_cpu_detect ;; *-gcc|generic-gnu)