[FFmpeg-cvslog] [ffmpeg-web] branch master updated. 36fbaee web/security: Add missing CVE-2022-48434, 3964, 3965

ffmpeg-git at ffmpeg.org ffmpeg-git at ffmpeg.org
Sat Apr 8 00:29:58 EEST 2023


The branch, master has been updated
       via  36fbaeec2df2dd431f48cc13d8ea1a983afee398 (commit)
      from  47fe63a9483fbc008cab50fc51b9f409b76f8276 (commit)


- Log -----------------------------------------------------------------
commit 36fbaeec2df2dd431f48cc13d8ea1a983afee398
Author:     Michael Niedermayer <michael at niedermayer.cc>
AuthorDate: Fri Apr 7 23:23:35 2023 +0200
Commit:     Michael Niedermayer <michael at niedermayer.cc>
CommitDate: Fri Apr 7 23:23:35 2023 +0200

    web/security: Add missing CVE-2022-48434, 3964, 3965

diff --git a/src/security b/src/security
index 9f6ce35..5ef9b4c 100644
--- a/src/security
+++ b/src/security
@@ -11,11 +11,29 @@ Fixes following vulnerabilities:
 CVE-2022-2566, c953baa084607dd1d84c3bfcce3cf6a87c3e6e05
 CVE-2022-3964, 92f9b28ed84a77138105475beba16c146bdaf984
 CVE-2022-3965, 13c13109759090b7f7182480d075e13b36ed8edd
+CVE-2022-48434, cc867f2c09d2b69cee8a0eccd62aff002cbbfe11
 </pre>
 
 
 <h2>FFmpeg 5.1</h2>
 
+<h3>5.1.3</h3>
+<p>
+Fixes following vulnerabilities:
+</p>
+<pre>
+CVE-2022-3964, 7c234248f859baa35e55c3dbbb7a359eae1c5257 / 92f9b28ed84a77138105475beba16c146bdaf984
+CVE-2022-3965, 9886e4c3b0880b167dbfdad722fb654c58cdc977 / 13c13109759090b7f7182480d075e13b36ed8edd
+</pre>
+
+<h3>5.1.2</h3>
+<p>
+Fixes following vulnerabilities:
+</p>
+<pre>
+CVE-2022-48434, 35aa7e70e7ec350319e7634a30d8d8aa1e6ecdda / cc867f2c09d2b69cee8a0eccd62aff002cbbfe11
+</pre>
+
 <h3>5.1.1</h3>
 <p>
 Fixes following vulnerabilities:
@@ -54,6 +72,7 @@ Fixes following vulnerabilities:
 </p>
 <pre>
 CVE-2022-1475, 95322e07673885ebcbb8fd54f30a9b8f17d5be6a / 757da974b21833529cc41bdcc9684c29660cdfa8, ticket/9651
+CVE-2022-48434, 3bc28e9d1ab33627cea3c632dd6b0c33e22e93ba / cc867f2c09d2b69cee8a0eccd62aff002cbbfe11
 </pre>
 
 <h3>5.0</h3>
@@ -75,6 +94,15 @@ CVE-2021-38291, e01d306c647b5827102260b885faa223b646d2d1 ticket/9312,
 
 <h2>FFmpeg 4.4</h2>
 
+
+<h3>4.4.3</h3>
+<p>
+Fixes following vulnerabilities:
+</p>
+<pre>
+CVE-2022-48434, d4b7b3c03ee2baf0166ce49dff17ec9beff684db / cc867f2c09d2b69cee8a0eccd62aff002cbbfe11
+</pre>
+
 <h3>4.4.2</h3>
 <p>
 Fixes following vulnerabilities:

-----------------------------------------------------------------------

Summary of changes:
 src/security | 28 ++++++++++++++++++++++++++++
 1 file changed, 28 insertions(+)


hooks/post-receive
-- 



More information about the ffmpeg-cvslog mailing list