[FFmpeg-cvslog] [ffmpeg-web] branch master updated. f81463b web/security: Add CVEs for 3.3.3 and 3.2.7

ffmpeg-git at ffmpeg.org ffmpeg-git at ffmpeg.org
Sun Jul 30 18:21:43 EEST 2017


The branch, master has been updated
       via  f81463b4d1cda9c8c9ce3f45eef30dfa1fb52642 (commit)
      from  c55ad1dd4bf497cea34a7268dbe3cdca492fadcf (commit)


- Log -----------------------------------------------------------------
commit f81463b4d1cda9c8c9ce3f45eef30dfa1fb52642
Author:     Michael Niedermayer <michael at niedermayer.cc>
AuthorDate: Sun Jul 30 17:20:52 2017 +0200
Commit:     Michael Niedermayer <michael at niedermayer.cc>
CommitDate: Sun Jul 30 17:21:25 2017 +0200

    web/security: Add CVEs for 3.3.3 and 3.2.7

diff --git a/src/security b/src/security
index d4e88b5..81b4315 100644
--- a/src/security
+++ b/src/security
@@ -4,6 +4,17 @@
 
 <h2>FFmpeg 3.3</h2>
 
+<h3>3.3.3</h3>
+<p>
+Fixes following vulnerabilities:
+</p>
+<pre>
+CVE-2017-11399, 0272afe70d6205caff05f3548da22a19f1eff9b1 / ba4beaf6149f7241c8bd85fe853318c2f6837ad0
+CVE-2017-11665, 0d2b67d17c9b5faec1ca223c91128b8de9eb299c / 08c073434e25cba8c43aae5ed9554fdd594adfb0
+CVE-2017-11665, 6de5ec8ef818774c58a1c4cd9548534be0e54ecc / ffcc82219cef0928bed2d558b19ef6ea35634130
+CVE-2017-11719, 47c0626ec721749b28df1c61c481e318e50058e4 / 296debd213bd6dce7647cedd34eb64e5b94cdc92
+</pre>
+
 <h3>3.3.2</h3>
 <p>
 Fixes following vulnerabilities:
@@ -31,6 +42,17 @@ CVE-2017-9996, a483e46b794539d21b1ec0f3e521f681a54a86d2 / 1e42736b95065c69a7481d
 
 <h2>FFmpeg 3.2</h2>
 
+<h3>3.2.7</h3>
+<p>
+Fixes following vulnerabilities:
+</p>
+<pre>
+CVE-2017-11399, 5bb861d45b86803ec39295cfc04889d2a7138361 / ba4beaf6149f7241c8bd85fe853318c2f6837ad0
+CVE-2017-11665, f2a6f41dd7b962e0dd24fe695b002532a42e2230 / 08c073434e25cba8c43aae5ed9554fdd594adfb0
+CVE-2017-11665, b375cc8bb74a33a7b38175023ee337b1c378281f / ffcc82219cef0928bed2d558b19ef6ea35634130
+CVE-2017-11719, 6a10b962e3053b9fc851fcce23a60ac653abdc8c / 296debd213bd6dce7647cedd34eb64e5b94cdc92
+</pre>
+
 <h3>3.2.6</h3>
 <p>
 Fixes following vulnerabilities:

-----------------------------------------------------------------------

Summary of changes:
 src/security | 22 ++++++++++++++++++++++
 1 file changed, 22 insertions(+)


hooks/post-receive
-- 



More information about the ffmpeg-cvslog mailing list