[FFmpeg-cvslog] [ffmpeg-web] branch master updated. 0569488 web/security: Add CVE-2017-15186

ffmpeg-git Thu, 26 Oct 2017 14:07:00 -0700

The branch, master has been updated
       via  056948859df2056fdb115b9745c6dacfc44d0103 (commit)
       via  22366b0e8a7479f25df105f5228426e6b87f769d (commit)
      from  9158c70bd076cfe54cb1602ba6f3e0ca992403a6 (commit)



- Log -----------------------------------------------------------------
commit 056948859df2056fdb115b9745c6dacfc44d0103
Author:     Michael Niedermayer <mich...@niedermayer.cc>
AuthorDate: Thu Oct 26 23:01:18 2017 +0200
Commit:     Michael Niedermayer <mich...@niedermayer.cc>
CommitDate: Thu Oct 26 23:05:59 2017 +0200

    web/security: Add CVE-2017-15186
    
    Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>

diff --git a/src/security b/src/security
index 664cc0c..6758921 100644
--- a/src/security
+++ b/src/security
@@ -1,9 +1,26 @@
 <p>Please report vulnerabilities to <a 
href="mailto:ffmpeg-secur...@ffmpeg.org";>ffmpeg-secur...@ffmpeg.org</a></p>
 
+<h2>FFmpeg 3.4</h2>
+
+<h3>3.4</h3>
+<p>
+Fixes following vulnerabilities:
+</p>
+<pre>
+CVE-2017-15186, df62b70de8aaa285168e72fe8f6e740843ca91fa
+</pre>
 
 
 <h2>FFmpeg 3.3</h2>
 
+<h3>3.3.5</h3>
+<p>
+Fixes following vulnerabilities:
+</p>
+<pre>
+CVE-2017-15186, 0a231e7dd32bdea4b2fc1c48040047986d1d4925 / 
df62b70de8aaa285168e72fe8f6e740843ca91fa
+</pre>
+
 <h3>3.3.4</h3>
 <p>
 Fixes following vulnerabilities:
@@ -63,6 +80,14 @@ CVE-2017-9996, a483e46b794539d21b1ec0f3e521f681a54a86d2 / 
1e42736b95065c69a7481d
 
 <h2>FFmpeg 3.2</h2>
 
+<h3>3.2.9</h3>
+<p>
+Fixes following vulnerabilities:
+</p>
+<pre>
+CVE-2017-15186, 0eb0b21c7f4f2b6a3a74d2d252f95b81a4d472c3 / 
df62b70de8aaa285168e72fe8f6e740843ca91fa
+</pre>
+
 <h3>3.2.8</h3>
 <p>
 Fixes following vulnerabilities:

commit 22366b0e8a7479f25df105f5228426e6b87f769d
Author:     Michael Niedermayer <mich...@niedermayer.cc>
AuthorDate: Thu Oct 26 23:00:42 2017 +0200
Commit:     Michael Niedermayer <mich...@niedermayer.cc>
CommitDate: Thu Oct 26 23:00:42 2017 +0200

    web/download: add 3.2.9

diff --git a/src/download b/src/download
index 408b80f..bdc11e6 100644
--- a/src/download
+++ b/src/download
@@ -348,10 +348,10 @@ libpostproc    54.  5.100</pre>
     </div> <!-- col -->
   </div> <!-- row -->
 
-  <h3 id="release_3.2">FFmpeg 3.2.8 "Hypatia"</h3>
+  <h3 id="release_3.2">FFmpeg 3.2.9 "Hypatia"</h3>
 
   <p>
-    3.2.8 was released on 2017-09-17. It is the latest stable FFmpeg release
+    3.2.9 was released on 2017-10-26. It is the latest stable FFmpeg release
     from the 3.2 release branch, which was cut from master on 2016-10-26.
   </p>
   <p>It includes the following library versions:
@@ -369,19 +369,19 @@ libpostproc    54.  1.100</pre>
 
   <div class="row">
     <div class="col-md-3">
-      <a class="btn btn-success" href="releases/ffmpeg-3.2.8.tar.xz">Download 
xz tarball</a>
-      <small><a href="releases/ffmpeg-3.2.8.tar.xz.asc">PGP 
signature</a></small>
+      <a class="btn btn-success" href="releases/ffmpeg-3.2.9.tar.xz">Download 
xz tarball</a>
+      <small><a href="releases/ffmpeg-3.2.9.tar.xz.asc">PGP 
signature</a></small>
     </div> <!-- col -->
     <div class="col-md-3">
-      <a class="btn btn-success" href="releases/ffmpeg-3.2.8.tar.bz2">Download 
bzip2 tarball</a>
-      <small><a href="releases/ffmpeg-3.2.8.tar.bz2.asc">PGP 
signature</a></small>
+      <a class="btn btn-success" href="releases/ffmpeg-3.2.9.tar.bz2">Download 
bzip2 tarball</a>
+      <small><a href="releases/ffmpeg-3.2.9.tar.bz2.asc">PGP 
signature</a></small>
     </div> <!-- col -->
     <div class="col-md-3">
-      <a class="btn btn-success" href="releases/ffmpeg-3.2.8.tar.gz">Download 
gzip tarball</a>
-      <small><a href="releases/ffmpeg-3.2.8.tar.gz.asc">PGP 
signature</a></small>
+      <a class="btn btn-success" href="releases/ffmpeg-3.2.9.tar.gz">Download 
gzip tarball</a>
+      <small><a href="releases/ffmpeg-3.2.9.tar.gz.asc">PGP 
signature</a></small>
     </div> <!-- col -->
     <div class="col-md-3 text-right">
-      <small><a 
href="https://git.ffmpeg.org/gitweb/ffmpeg.git/shortlog/n3.2.8";>Changelog</a></small>
+      <small><a 
href="https://git.ffmpeg.org/gitweb/ffmpeg.git/shortlog/n3.2.9";>Changelog</a></small>
       <a class="btn btn-success" 
href="https://git.ffmpeg.org/gitweb/ffmpeg.git/blob/refs/heads/release/3.2:/RELEASE_NOTES";>Release
 Notes</a>
     </div> <!-- col -->
   </div> <!-- row -->

-----------------------------------------------------------------------

Summary of changes:
 src/download | 18 +++++++++---------
 src/security | 25 +++++++++++++++++++++++++
 2 files changed, 34 insertions(+), 9 deletions(-)


hooks/post-receive
-- 

_______________________________________________
ffmpeg-cvslog mailing list
ffmpeg-cvslog@ffmpeg.org
http://ffmpeg.org/mailman/listinfo/ffmpeg-cvslog

[FFmpeg-cvslog] [ffmpeg-web] branch master updated. 0569488 web/security: Add CVE-2017-15186

Reply via email to