1 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
2 <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
4 <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
5 <meta name="keywords" content="OpenJPEG, current, changes, changelog" />
6 <meta name="description" content="Log of changes in the package" />
7 <link rel="stylesheet" type="text/css" href="../../../css/common.css" />
8 <link rel="stylesheet" type="text/css" href="../../../css/changelog.css" />
12 OpenJPEG current: changelog
18 <table cellpadding='0' cellspacing='0'><tr><td align='center'><h1 class='tool'><a title='Home: ABI tracker for OpenJPEG' href='../../../timeline/openjpeg/index.html' class='tool'>ABI<br/>Tracker</a></h1></td><td width='30px;'></td><td><h1>(OpenJPEG)</h1></td></tr></table><hr/>
21 <h1>Changelog from Git</h1><br/><br/>
22 <div class='changelog'>
23 <pre class='wrap'>commit ffa9a4f6585dc199fb850dee4255e7a7b84aad63
24 Author: Even Rouault <even.rouault@spatialys.com>
25 Date: 2017-07-30 18:46:34 +0200
27 Fix warnings in USE_JPIP compilation mode
29 commit c22cbd8bdf8ff2ae372f94391a4be2d322b36b41
30 Author: Even Rouault <even.rouault@spatialys.com>
31 Date: 2017-07-30 18:43:25 +0200
33 Avoid heap buffer overflow in function pnmtoimage of convert.c, and unsigned integer overflow in opj_image_create() (CVE-2016-9118, #861)
35 commit 83342f2aafcab4599b49f780e35fd249e8402b61
36 Author: Even Rouault <even.rouault@spatialys.com>
37 Date: 2017-07-30 18:18:59 +0200
39 Fix Doxygen warnings (patch derived from Winfried's doxygen-dif.txt.zip, #849)
41 commit 4748318136626dd9e841ea1aa8b52adfbab26772
42 Author: Even Rouault <even.rouault@spatialys.com>
43 Date: 2017-07-30 17:26:03 +0200
45 j2k.c: remove hardcoded constants related to m_state, and useless FIXME
47 commit e23e0c94d0eb30623bc67be19c38c22ee5378344
48 Author: Even Rouault <even.rouault@spatialys.com>
49 Date: 2017-07-30 16:48:15 +0200
51 Avoid p_stream->m_user_data_length >= (OPJ_UINT64)p_stream->m_byte_offset assertion in opj_stream_get_number_byte_left(). Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2786. Credit to OSS Fuzz
53 commit 1ed8d67797ef57143e2c855b602016bf9d89337d
54 Author: Even Rouault <even.rouault@spatialys.com>
55 Date: 2017-07-30 15:35:47 +0200
57 opj_j2k_set_decode_area: replace assertions by runtime checks. Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2795. Credit to OSS Fuzz
59 commit 68832af20e3b3710424947e12762b6b52d3b6ac0
60 Author: Even Rouault <even.rouault@spatialys.com>
61 Date: 2017-07-30 15:22:24 +0200
63 opj_tcd_dc_level_shift_decode: avoid int32 overflow when prec == 31. Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2799. Credit to OSS Fuzz
65 commit 517bf6fd86dae18b62390a03533d30da0e5bb701
66 Author: Even Rouault <even.rouault@spatialys.com>
67 Date: 2017-07-29 21:11:23 +0200
69 src/bin/jpwl/convert.c: fix memleak (fix suggested by maddin200, #631)
71 commit 51eb86d8f7a6297a4f0e8ca44977b72532de0353
72 Author: Even Rouault <even.rouault@spatialys.com>
73 Date: 2017-07-29 19:43:23 +0200
75 Fix warnings in pi.c raised by VS11 analyze (#190)
77 commit 397f62c0a838e15d667ef50e27d5d011d2c79c04
78 Author: Even Rouault <even.rouault@spatialys.com>
79 Date: 2017-07-29 19:13:49 +0200
81 Fix write heap buffer overflow in opj_mqc_byteout(). Discovered by Ke Liu of Tencent's Xuanwu LAB (#835)
83 commit 11445eddad7e7fa5b273d1c83c91011c44e5d586
84 Author: Even Rouault <even.rouault@spatialys.com>
85 Date: 2017-07-29 19:03:13 +0200
87 opj_pi_update_decode_poc(): limit layno1 to the number of layers (CVE-2016-1626 and CVE-2016-1628, #850)
89 This has been recently fixed in a less elegant way per
90 80818c39f5bfbac37768fcee95b0ffeceaa77264
92 commit 3fbe71369019df0b47c7a2be4fab8c05768f2f32
93 Author: Even Rouault <even.rouault@spatialys.com>
94 Date: 2017-07-29 18:38:16 +0200
96 opj_tcd_get_decoded_tile_size(): fix potential UINT32 overflow (#854, CVE-2016-5152)
98 Fix derived from https://pdfium.googlesource.com/pdfium.git/+/d8cc503575463ff3d81b22dad292665f2c88911e/third_party/libopenjpeg20/0018-tcd_get_decoded_tile_size.patch
100 commit 5a3e7aaf339943bc988adbada39a1fc8f5046899
101 Author: Even Rouault <even.rouault@spatialys.com>
102 Date: 2017-07-29 17:56:12 +0200
104 color_cielab_to_rgb(): reject images with components of different dimensions to void read heap buffer overflow (#909)
106 commit 784d4d47e97b5d0fccccbd931349997a0e2074cc
107 Author: Even Rouault <even.rouault@spatialys.com>
108 Date: 2017-07-29 17:51:10 +0200
110 Fix breakage of 2fa0fc61f2d546c8b67e7c5a9cbc61d98e1f7af0 (#970)
112 commit 2fa0fc61f2d546c8b67e7c5a9cbc61d98e1f7af0
113 Author: Even Rouault <even.rouault@spatialys.com>
114 Date: 2017-07-29 17:28:55 +0200
116 imagetopnm(): make sure the alpha component has same dimension as other components to avoid read heap buffer overflow (#970)
118 commit db9ef99f6dd054a84fa8382c02869fb0656abfc8
119 Author: Even Rouault <even.rouault@spatialys.com>
120 Date: 2017-07-29 16:34:35 +0200
122 opj_t1_decode_cblk(): avoid undefined shift behaviour. Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2487. Credit to OSS Fuzz
124 commit f6551f822fe020843299bd807ec6989abd070b2c
125 Author: Even Rouault <even.rouault@spatialys.com>
126 Date: 2017-07-29 16:29:11 +0200
128 opj_t1_clbl_decode_processor(): avoid undefined behaviour if roishift >= 31. Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2506. Credit to OSS Fuzz
130 commit 9906fbf737692486cebabe98169988d818e2e66a
131 Author: Even Rouault <even.rouault@spatialys.com>
132 Date: 2017-07-29 16:22:36 +0200
134 Avoid assertion in opj_j2k_merge_ppt() in case premature EOC is encountered in opj_j2k_read_tile_header(). Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2785. Credit to OSS Fuzz
136 commit 71b4f5b124d14ed609763b11e19d2d480bc32f58
137 Author: Even Rouault <even.rouault@spatialys.com>
138 Date: 2017-07-29 15:52:11 +0200
140 opj_pi_next_pcrl(): avoid undefined shift behaviour. Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2787. Credit to OSS Fuzz
142 commit d6654d906c1ae66590b6d600458a91f1ee923de5
143 Author: Even Rouault <even.rouault@spatialys.com>
144 Date: 2017-07-28 22:15:47 +0200
146 opj_int_ceildiv(): fix int32 overflow. Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2494. Credit to OSS Fuzz
148 commit 361c4506fdfb9b6f0e41d86d5d0ea1efb5704ecf
149 Author: Even Rouault <even.rouault@spatialys.com>
150 Date: 2017-07-28 22:06:26 +0200
152 opj_tcd_dc_level_shift_decode(): avoid int overflow. Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2516. Credit to OSS Fuzz
154 commit 7bdbe490cba9990916f94a40379cc787434340ff
155 Author: Even Rouault <even.rouault@spatialys.com>
156 Date: 2017-07-28 21:55:22 +0200
158 Fix null pointer dereference in opj_jp2_apply_pclr(). Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2558. Credit to OSS Fuzz
160 commit 16aeb9282f6b3877aa8365c461ba8d3d1338adae
161 Author: Even Rouault <even.rouault@spatialys.com>
162 Date: 2017-07-28 21:39:30 +0200
164 Fix null pointer dereference in opj_j2k_add_mct() (#895)
166 Fixes openjeg-crashes-2017-07-27/issue879-poc1.j2k of #895
168 commit c5bf5ef4d6552e9159aaad29cb27826acd1a3389
169 Author: Even Rouault <even.rouault@spatialys.com>
170 Date: 2017-07-28 21:29:55 +0200
172 Avoid use-after-free when a MCT marker is found after a MCC one (#895)
174 Fixes openjeg-crashes-2017-07-27/issue880-poc2.j2k of #895
176 commit e03e9474667e5117341351699f0b1dbb06f93346
177 Author: Even Rouault <even.rouault@spatialys.com>
178 Date: 2017-07-27 22:29:17 +0200
180 Avoid undefined shift behaviour if bit depth == 32 (#895)
182 Fixes openjeg-crashes-2017-07-27/id:000000,sig:11,src:003798,op:ext_AO,pos:128.jp2
184 commit 820fcfe8bb101a2862c076b02c9b6b636ce39d2f
185 Author: Even Rouault <even.rouault@spatialys.com>
186 Date: 2017-07-27 19:34:54 +0200
188 opj_j2k_update_image_data / opj_tcd_update_tile_data: fix unaligned load/store (#895)
190 When components don't have the same width, unaligned load/store are possible.
192 Fixes openjeg-crashes-2017-07-27/id:000000,sig:11,src:001342,op:flip4,pos:162.jp2 of #895
194 commit 6c4e5bacb9d9791fc6ff074bd7958b3820d70514
195 Author: Even Rouault <even.rouault@spatialys.com>
196 Date: 2017-07-27 19:22:14 +0200
198 opj_pi_next_rpcl / opj_pi_next_pcrl / opj_pi_next_cprl: avoid int overflow (#895)
200 Fixes int overflow on openjeg-crashes-2017-07-27/id:000000,sig:08,src:000879,op:flip2,pos:128.jp2
202 commit 178194c093422c9564efc41f9ecb5c630b43f723
203 Author: Even Rouault <even.rouault@spatialys.com>
204 Date: 2017-07-27 18:51:51 +0200
206 opj_jp2_check_color(): replace assertion regarding mtyp by runtime check (#672, #895)
208 Fixes test case openjeg-crashes-2017-07-27/id:000000,sig:06,src:000001,op:flip1,pos:808.jp2
211 commit d6fa30099797c68c6a67decf58571dd59dbf734b
212 Author: Even Rouault <even.rouault@spatialys.com>
213 Date: 2017-07-26 23:25:38 +0200
215 Avoids undefined shift behaviour in m_dc_level_shift computation
217 Fixes warning found on clusterfuzz-testcase-minimized-5146316340461568
218 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2495
222 commit a88cbb6a0b3539461dfb29922102953b7a7fc3a7
223 Author: Even Rouault <even.rouault@spatialys.com>
224 Date: 2017-07-26 22:53:59 +0200
226 Fix various undefined shift behaviour in pi.c
228 Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2496
231 commit 6c5fe9407b7768eb2ac55b83511bc103551d207a
232 Author: Even Rouault <even.rouault@spatialys.com>
233 Date: 2017-07-26 22:22:44 +0200
235 Avoid potential undefined shift behaviour in opj_bio_read() from opj_t2_read_packet_header()
237 Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2485
240 commit dbf527bf2a53bc88e6cf1373991002ec0e8e22a1
241 Merge: 5e795d9 94c4b73
242 Author: Even Rouault <even.rouault@mines-paris.org>
243 Date: 2017-07-26 22:05:32 +0200
245 Merge pull request #800 from rouault/tier1_optimizations_multithreading_pterm_check
247 Implement predictive termination check
249 commit 94c4b7300cc515330bf798bb45eb0d68e2c84aa0
250 Author: Even Rouault <even.rouault@spatialys.com>
251 Date: 2017-07-26 21:39:50 +0200
253 T1 decoder: check code stream errors when predictable termination is enabled and emit a warning when errors are found
255 commit 5e795d90a1e47616e0c7a2e39381c13ccf7fd6dd
256 Author: Even Rouault <even.rouault@spatialys.com>
257 Date: 2017-07-26 21:06:38 +0200
259 Spelling fixes (patch by ka7, #890, rebased on top of master)
261 commit 2be20ce7d9996e960d79f3ad6ec439a9895849ed
262 Author: Even Rouault <even.rouault@spatialys.com>
263 Date: 2017-07-26 21:04:01 +0200
265 Reformat src/bin/wx/OPJViewer/source/OPJThreads.cpp src/bin/wx/OPJViewer/source/imagjpeg2000.cpp wrapping/java/openjp2/JavaOpenJPEG.c
267 commit 94cc97c58acfa574e734fac5eb673c516c0ac469
268 Author: Even Rouault <even.rouault@spatialys.com>
269 Date: 2017-07-26 20:13:09 +0200
271 opj_decompress: fix null pointer dereference on comps[].data on id_000167,sig_11,src_006079,op_havoc,rep_4 (#939)
273 commit 8d2e69e37d01bf6a0440d3109d92235c3c586ffe
274 Author: Even Rouault <even.rouault@spatialys.com>
275 Date: 2017-07-26 19:49:38 +0200
277 Fix assertion / memory leak in opj_j2k_merge_ppt() on corrupted images (#939)
279 Fixes issue on id:000020,sig:06,src:001958,op:flip4,pos:149 that has two
280 SOT markers for the same tile with the same tile part number, causing
281 opj_j2k_merge_ppt() to be called several times.
283 commit 5c5319984b81e2aa32d1d83abdef0cdb8dbe7b18
284 Author: Even Rouault <even.rouault@spatialys.com>
285 Date: 2017-07-26 18:05:56 +0200
287 Avoid division by zero in opj_pi_next_rpcl, opj_pi_next_pcrl, opj_pi_next_cprl (#938)
289 Fixes crash on id_000004,sig_06,src_000679,op_arith8,pos_49,val_-17
291 commit 80818c39f5bfbac37768fcee95b0ffeceaa77264
292 Author: Even Rouault <even.rouault@spatialys.com>
293 Date: 2017-07-26 12:24:26 +0200
295 Avoid index out of bounds access to pi->include[] (#938)
297 Fix id:000098,sig:11,src:005411,op:havoc,rep:2 test case
299 commit d27ccf01c68a31ad62b33d2dc1ba2bb1eeaafe7b
300 Author: Even Rouault <even.rouault@spatialys.com>
301 Date: 2017-07-26 11:30:56 +0200
303 Avoid division by zero in opj_pi_next_rpcl, opj_pi_next_pcrl and opj_pi_next_cprl (#938)
305 Fixes issues with id:000026,sig:08,src:002419,op:int32,pos:60,val:+32 and
306 id:000019,sig:08,src:001098,op:flip1,pos:49
308 commit 39e962a0ca5e53722f6badda8e93681aad412cf1
309 Merge: 60f8ddf 90ced71
310 Author: Even Rouault <even.rouault@mines-paris.org>
311 Date: 2017-07-13 13:33:21 +0200
313 Merge pull request #969 from jeroen/staticlibs
315 install static libraries
317 commit 90ced71601f05e87b4fa922261554eeeb11118b9
318 Author: Jeroen <jeroenooms@gmail.com>
319 Date: 2017-07-13 11:34:15 +0200
321 install static libraries
323 commit 60f8ddf577b20ccbb3dc0559b624115b9ba522ba
324 Author: Even Rouault <even.rouault@spatialys.com>
325 Date: 2017-07-06 12:11:37 +0200
329 commit a38c4496b631bb5d3f8d5ea42d394544523a9bc6
330 Author: Even Rouault <even.rouault@spatialys.com>
331 Date: 2017-07-05 21:33:42 +0200
333 Remove unused m_DA_x0, m_DA_y0, m_DA_x1, m_DA_y1 members from opj_j2k_dec structure
335 commit 1a8eac6a90ca61f3703f9b97afc2ec4918f0ab55
336 Author: Even Rouault <even.rouault@spatialys.com>
337 Date: 2017-07-03 14:14:03 +0200
339 Add tests/fuzzers for OSS Fuzz (#965)
341 commit c308de39edc1697efbd5c10dc4852a58f9b86558
342 Author: Even Rouault <even.rouault@spatialys.com>
343 Date: 2017-07-03 14:33:57 +0200
345 opj_j2k_read_header_procedure(): validate marker size to avoid excessive memory allocation attempt
347 commit 5736b1a3683261a5b31fc19a691731dc9fce5920
348 Merge: ecbfcbc a0839cc
349 Author: Even Rouault <even.rouault@mines-paris.org>
350 Date: 2017-07-03 12:03:29 +0200
352 Merge pull request #954 from jeroen/static
354 build both shared and static library
356 commit ecbfcbc2764ff1b09e693d57e3ef5764518f1e1c
357 Merge: e673c8b 96d757c
358 Author: Even Rouault <even.rouault@mines-paris.org>
359 Date: 2017-07-01 13:51:52 +0200
361 Merge pull request #964 from rouault/remove_useless_knownfailures
363 Remove useless knownfailures (since LAZY encoding is fixed)
365 commit e673c8bd4da9f0414da472ac5f3d8e03e5102982
366 Merge: 8fa405e b992376
367 Author: Even Rouault <even.rouault@mines-paris.org>
368 Date: 2017-07-01 12:54:39 +0200
370 Merge pull request #963 from rouault/travis_avx2
372 Enable AVX2 at runtime on Travis-CI and AppVeyor
374 commit b9923764da198742c635ad7dff9de158c3dbb60d
375 Author: Even Rouault <even.rouault@spatialys.com>
376 Date: 2017-07-01 04:15:36 +0200
378 Add tools/travis-ci/knownfailures-Ubuntu14.04-clang3.8.0-x86_64-Release-3rdP.txt (copied from knownfailures-Ubuntu12.04-clang3.9.0-x86_64-Release-3rdP.txt)
380 commit f194ff32ac3fd5bab88607ea6bf09a73adb99758
381 Author: Even Rouault <even.rouault@spatialys.com>
382 Date: 2017-07-01 02:53:55 +0200
384 appveyor.yml: add a /arch:AVX2 config on Windows
386 Try running the tests if the CPU supports AVX2.
388 commit 96d757cb8e6c3fb0e133817e5057ee5eae6a594d
389 Author: Even Rouault <even.rouault@spatialys.com>
390 Date: 2017-07-01 04:24:46 +0200
392 Remove useless knownfailures (since LAZY encoding is fixed)
394 commit 69a001819c9ac36bb3210e475d099cc2abbbf89f
395 Author: Even Rouault <even.rouault@spatialys.com>
396 Date: 2017-07-01 01:46:55 +0200
398 .travis.yml: try to run tests in -mavx2 mode if the CPU supports it
400 And modify settings so as to hae a AVX2 compatible CPU
402 commit 8fa405ee15b5151df40d8d96460257ee5b510135
403 Author: Even Rouault <even.rouault@spatialys.com>
404 Date: 2017-06-30 00:03:05 +0200
406 IDWT 5x3: fix bug in AVX2 implementation (#953, #957)
408 commit 6239ed7be41d370c537ca43e198cf2fdc6eb9a60
409 Author: Even Rouault <even.rouault@spatialys.com>
410 Date: 2017-06-26 13:13:26 +0200
412 INSTALL.md: add section discussing how to enable CPU specific optimizations
414 commit 533fa2fdee4f69a5d7bb8f0b1c0a8f432dad334f
415 Author: Even Rouault <even.rouault@mines-paris.org>
416 Date: 2017-06-26 12:45:34 +0200
418 Merge pull request #957 from rouault/idwt_53_improvements
420 IDWT 5x3 single-pass lifting and SSE2/AVX2 implementation
422 commit a0839cca24e19f1f0906e30ee1009ce89e4942b4
423 Author: Jeroen Ooms <jeroenooms@gmail.com>
424 Date: 2017-06-16 13:58:25 +0200
426 only build both static and dynamic on non-windows
428 commit 1329b3240aafb1b31328091eb6f7720787b391be
429 Author: Jeroen Ooms <jeroenooms@gmail.com>
430 Date: 2017-06-16 13:27:19 +0200
432 build both shared and static library
434 commit 36dd87cea80ad56e0e3178221aa579a28f02a549
435 Merge: 9cbc990 5f1e380
436 Author: Antonin Descampe <antonin@descampe.net>
437 Date: 2017-06-14 17:23:06 +0200
439 Merge pull request #928 from RussellMcOrmond/master
441 Quiet mode for opj_decompress via -quiet long parameter.
443 commit 9cbc9903c3034d1a101d0521402503ead0abcff0
444 Merge: 2609fb8 9a9b069
445 Author: Even Rouault <even.rouault@spatialys.com>
446 Date: 2017-06-13 12:09:52 +0200
448 Merge branch 't1_flag_optimizations'
450 commit 2609fb8077125b5b31f1bcc2f98c12ff1e6572d7
451 Author: Even Rouault <even.rouault@spatialys.com>
452 Date: 2017-06-12 17:15:23 +0100
454 Packet header writing: set empty packet header bit to 0 when appropriate (small optimization)
456 commit 9a9b06911e164bdc854cf6b9c3bc5b6e751bf46d
457 Author: Even Rouault <even.rouault@spatialys.com>
458 Date: 2017-06-02 19:22:15 +0200
460 opj_t1_dec_sigpass_raw/opj_t1_dec_refpass_raw: harmonize style with mqc methods
462 commit 5f1e380b5155577864a84c1e64f213b6d9f83334
463 Author: Russell McOrmond <russell.mcormond@canadiana.ca>
464 Date: 2017-05-16 09:31:07 -0400
466 Fixed formatting issues ASTYLE
468 commit 9d8e1ecdeb99b1e4b4ffd19feb152c88fe4f83ba
469 Author: Russell McOrmond <russell.mcormond@canadiana.ca>
470 Date: 2017-05-15 14:39:54 -0400
472 Quiet mode for opj_decompress via -quiet long parameter.