This only includes the Android Open Source Project changes and does not include any changes in any proprietary components included by Google or any hardware manufacturer.
The raw log was generated using a modified version of this script written by JBQ and improved by Al Sutton.
ce36384 : fugu: update prebuilt kernel [ DO NOT MERGE ]
f402965 : Fix audio record pre-processing
fa4bb86 : ryu: update prebuilt kernel
b03bbc5 : flounder: update kernel prebuilt (Oct 2016 Security)
467bfd1 : shamu: update prebuilt kernel [ DO NOT MERGE ]
977ff4a : Decoder: Fixed allocation of pv_map_ref_idx_to_poc_buf.
8a96e64 : Decoder: Fixed overflow in refernce list creation.
93d9884 : Initialize DPB structures to valid values.
acf845b : Added error check for output buffer size.
d6858ba : Fixed hang in the case of multiple sps id.
327f93c : Decoder: Fix in the case of MMCO 6
2d3c734 : Decoder: Cleaned up parse sps function.
4e2860c : Initializing reference list for every P/B slice.
445d57c : Fix resolution change within a decode call.
15827be : Decoder: Fixed allocation size of pred info buffer
c46d83a : Decoder: Fix end of bitstream error.
2285974 : Decoder: Fix allocation for Mbaff weight matrix
4c1ac1e : Decoder: Initialize MB info buffer to zero.
4d50188 : Decoder: Fixed flag u1_top_bottom_decoded.
823e2bd : Decoder: Added an error check while parsing PPS.
6ac20bb : DO NOT MERGE Fixed bug in the case of resolution change.
8503745 : Fix stack buffer overflow in ih264d_process_intra_mb
ac64724 : Decoder: Fix in reference list initialization.
205985d : Decoder: Fixes in accessing mbaff flag in error cases
0741a41 : Fix in the case of MMCO 3 (long term reference idx).
525dbf3 : Decoder: Fixed error handling for dangling fields
5b50bdf : Decoder: Fixed number of MB calculation for interlaced error streams
49ca3ef : Fix slice decrement for skipped slices
617405b : Ensure CTB size > 16 for clips with tiles and width/height >= 4096
3df8b4b : Limit boundary PU sizes in case of errors
5e85dfa : Fix array size for hrd parameters
98251e8 : Check number of output buffers and sizes
42d7aa1 : Return error for invalid crop parameters
2107c44 : Fix OOB issue in nal unit parsing
dacf9ba : Set pic_present at end of pic_init instead of beginning
bb2912a : Handle error return in parse slice
ca32a90 : Fix heap buffer overflow while searching for valid PPS
55ffcfb : Check for buffer overflow in pps/slice header parsing
6076ba9 : memset SPS to zero
7e6466e : Fix reallocation for new sps
aefb36b : DO NOT MERGE Handle streams with change in max_dec_buffering/num_reorder_frames without resolution change
2bf2985 : Check for cpb cnt in hrd parsing
83e8832 : Correct Tiles rows and cols check
7b1cf7f : Check only allocated mv bufs for releasing from reference
8d9bad9 : Set current slice ctb x and y to fill prev incomplete slice
14efc6a : Handle error return from ref list in slice hdr parsing
4bc0adc : Return error from cabac init if offset is greater than range
d3690f9 : Return error if SPS parsing reads more bytes than the nal length
86bdce8 : Fix 'potential memory leak' compiler warning.
5958ede : Check buffer size in useBuffer in software components
d3daa54 : stagefright: avoid buffer overflow in base64 decoder
c72ab9c : Add EFFECT_CMD_SET_PARAM parameter checking to Downmix and Reverb
a4cb749 : Fix memory leak in OggExtractor
7668983 : Skip track if verification fails
283b936 : MPEG4Source: fix fragmented read.
b9d24e9 : stagefright: fix crash due to bad timestamp index
aef5439 : stagefright: check aac_frame_length to prevent infinite loop
32ef996 : MediaPlayerService: fix access of mPlayer in client
e5ae829 : MPEG4Extractor: ensure returned status is checked.
78d2047 : DO NOT MERGE Check frame handle validity before freeing buffer.
d5f9832 : audio effects: filter reserved effect commands
142c37a : Change MPEG2 reinit Error Handling
9e8522e : Track: Check buffer size of static tracks
bbee74e : MPEG4Extractor: check size for yrrc box
7cee9d0 : AudioFlinger: Fix memory allocation for client-less tracks
562b4c9 : Notify Errors Appropriately from SoftMPEG2
679e579 : EffectBundle: Check value size for get preset name
81482a9 : Fix TOCTOU problem in libstagefright_soft_aacenc
e3c3c21 : Fix security vulnerability: Equalizer setParameter memory overflow
e9f8be0 : Check the buffer index from acquireBuffer
ece623c : better manage buffer for libstagefright_soft_mpeg4enc
a6fe507 : m4v_h263: update width/height only when they are valid.
1097a23 : m4v_h263: check header first before decoding a frame.
efca80c : Fix integer overflow in mediadrmserver
85559d6 : Fix potential leak
e6fbc9e : DO NOT MERGE Don't leak `this` out of GraphicBufferSource ctor
7406a44 : Modifying MetaData invalidates previous char*
b2184a0 : Fix memory leak in error case
edc20fc : Limit ogg packet size
7a65563 : Prevent OOB write in soft_avc encoder
07d0c6c : Avoid crash for stss sync sample number 0
7b34dc4 : Don't allow using or allocating a buffer after the first state transition
e570b59 : FLACExtractor: copy protect mWriteBuffer
9d71510 : Add bounds check in SoftAACEncoder2::onQueueFilled()
954e3d6 : Fix integer overflow and divide-by-zero
6183f7c : Fix NPDs in h263 decoder
a75badb : Fix out of bounds access
3468e22 : Validate lengths in HEVC metadata parsing
d6e03aa : AudioFlinger: Check framecount overflow when creating track
3102b04 : codecs: handle onReset() for a few encoders