The branch, master has been updated
via 69dc88f24144b3e5b5f26f0e2baf7a3693cade89 (commit)
via b301d124c383cda40193a6b932a7c396fa963bd3 (commit)
from 40e2b2e1622c6e6cae6bdfc504b661d885605fc3 (commit)
- Log -----------------------------------------------------------------
commit 69dc88f24144b3e5b5f26f0e2baf7a3693cade89
Author: Michael Niedermayer <mich...@niedermayer.cc>
AuthorDate: Wed Mar 12 14:02:49 2025 +0100
Commit: Michael Niedermayer <mich...@niedermayer.cc>
CommitDate: Wed Mar 12 14:15:19 2025 +0100
web/download: Add FFmpeg 4.3.9
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
diff --git a/src/download b/src/download
index 14cfefe..ca058d9 100644
--- a/src/download
+++ b/src/download
@@ -488,10 +488,10 @@ libpostproc 55. 9.100</pre>
</div> <!-- col -->
</div> <!-- row -->
- <h3 id="release_4.3">FFmpeg 4.3.8 "4:3"</h3>
+ <h3 id="release_4.3">FFmpeg 4.3.9 "4:3"</h3>
<p>
- 4.3.8 was released on 2024-08-06. It is the latest stable FFmpeg release
+ 4.3.9 was released on 2025-03-12. It is the latest stable FFmpeg release
from the 4.3 release branch, which was cut from master on 2020-06-08.
</p>
<p>It includes the following library versions:
@@ -507,19 +507,19 @@ libswresample 3. 7.100
libpostproc 55. 7.100</pre>
<div class="row">
<div class="col-md-3">
- <a class="btn btn-success" href="releases/ffmpeg-4.3.8.tar.xz">Download
xz tarball</a>
- <small><a href="releases/ffmpeg-4.3.8.tar.xz.asc">PGP
signature</a></small>
+ <a class="btn btn-success" href="releases/ffmpeg-4.3.9.tar.xz">Download
xz tarball</a>
+ <small><a href="releases/ffmpeg-4.3.9.tar.xz.asc">PGP
signature</a></small>
</div> <!-- col -->
<div class="col-md-3">
- <a class="btn btn-success" href="releases/ffmpeg-4.3.8.tar.bz2">Download
bzip2 tarball</a>
- <small><a href="releases/ffmpeg-4.3.8.tar.bz2.asc">PGP
signature</a></small>
+ <a class="btn btn-success" href="releases/ffmpeg-4.3.9.tar.bz2">Download
bzip2 tarball</a>
+ <small><a href="releases/ffmpeg-4.3.9.tar.bz2.asc">PGP
signature</a></small>
</div> <!-- col -->
<div class="col-md-3">
- <a class="btn btn-success" href="releases/ffmpeg-4.3.8.tar.gz">Download
gzip tarball</a>
- <small><a href="releases/ffmpeg-4.3.8.tar.gz.asc">PGP
signature</a></small>
+ <a class="btn btn-success" href="releases/ffmpeg-4.3.9.tar.gz">Download
gzip tarball</a>
+ <small><a href="releases/ffmpeg-4.3.9.tar.gz.asc">PGP
signature</a></small>
</div> <!-- col -->
<div class="col-md-3 text-right">
- <small><a
href="https://git.ffmpeg.org/gitweb/ffmpeg.git/shortlog/n4.3.8";>Changelog</a></small>
+ <small><a
href="https://git.ffmpeg.org/gitweb/ffmpeg.git/shortlog/n4.3.9";>Changelog</a></small>
<a class="btn btn-success"
href="https://git.ffmpeg.org/gitweb/ffmpeg.git/blob/refs/heads/release/4.3:/RELEASE_NOTES";>Release
Notes</a>
</div> <!-- col -->
</div> <!-- row -->
commit b301d124c383cda40193a6b932a7c396fa963bd3
Author: Michael Niedermayer <mich...@niedermayer.cc>
AuthorDate: Wed Mar 12 13:58:44 2025 +0100
Commit: Michael Niedermayer <mich...@niedermayer.cc>
CommitDate: Wed Mar 12 14:15:19 2025 +0100
web/security: add missing CVEs to 4.3.* and add newly released 4.3.9
diff --git a/src/security b/src/security
index a8d1516..e93dce8 100644
--- a/src/security
+++ b/src/security
@@ -270,6 +270,15 @@ CVE-2020-35965, b0a8b40294ea212c1938348ff112ef1b9bf16bb3
<h2>FFmpeg 4.3</h2>
+<h3>4.3.9</h3>
+<p>
+Fixes following vulnerabilities:
+</p>
+<pre>
+CVE-2023-49502, 23afb77b8ed5fd368c26292e927531b6470ff040 /
737ede405b11a37fdd61d19cf25df296a0cb0b75, ticket/10688
+CVE-2025-0518, 72c82bbb9fcaaab80bdd5142a7308323f490a13c /
b5b6391d64807578ab872dc58fb8aa621dcfc38a
+</pre>
+
<h3>4.3.8</h3>
<p>
Fixes following vulnerabilities:
@@ -286,6 +295,7 @@ Fixes following vulnerabilities:
CVE-2023-47342, 0077a817a1dd83790f674c3b5078b2dba106d228 /
e4d5ac8d7d2a08658b3db7dd821246fe6b35381f
CVE-2022-48434, 031c9601d06759a748adc077f73e3005b5571be1 /
d4b7b3c03ee2baf0166ce49dff17ec9beff684db
CVE-2022-3341, d811434b5d731c0fad2eb5fbf3fc3e53df98ae67 /
9cf652cef49d74afe3d454f27d49eb1a1394951e
+CVE-2024-36617, 9557810a81624f222d603e0fdf3778054f8d8cc4 /
d973fcbcc2f944752ff10e6a76b0b2d9329937a7
</pre>
<h3>4.3.6</h3>
@@ -320,6 +330,8 @@ Fixes following vulnerabilities:
CVE-2020-20446, ee5387471feca7b50535406d7c0c9b54eff56cbe /
223b5e8ac9f6461bb13ed365419ec485c5b2b002, ticket/7995
CVE-2020-20450, 3865b1952e5cf993b016d83ba78fe1deb63bbfad /
5400e4a50c61e53e1bc50b3e77201649bbe9c510, ticket/7993
CVE-2020-20453, ff2159658a15dadb4e83980333f9df0215e43315 /
a7a7f32c8ad0179a1a85d0a8cff35924e6d90be8, ticket/8003
+CVE-2020-21688, dc4e3b9586a28b4ef41c7e9de3d029fd2f200d45 /
22c3cd176079dd104ec7610ead697235b04396f1, ticket/8186
+CVE-2020-21697, 0685bd0245a9682adee9c7c162e3c32f2ddf44cb /
cfce16449cb815132f829d5a07beb138dfb2cba6, ticket/8188
CVE-2020-22015, e1089a581b204667149635f36df5ef81f784c2b8 /
4c1afa292520329eecd1cc7631bc59a8cca95c46, ticket/8190
CVE-2020-22019, a6a041676796668d3798665f2d8797df99af3453 /
82ad1b76751bcfad5005440db48c46a4de5d6f02, CVE-2020-22033,
ticket/8241,ticket/8246,
CVE-2020-22021, bade86f6794b0b2b067d9ca741e1070322ff007c /
7971f62120a55c141ec437aa3f0bacc1c1a3526b, ticket/8240
-----------------------------------------------------------------------
Summary of changes:
src/download | 18 +++++++++---------
src/security | 12 ++++++++++++
2 files changed, 21 insertions(+), 9 deletions(-)
hooks/post-receive
--
_______________________________________________
ffmpeg-cvslog mailing list
ffmpeg-cvslog@ffmpeg.org
https://ffmpeg.org/mailman/listinfo/ffmpeg-cvslog
To unsubscribe, visit link above, or email
ffmpeg-cvslog-requ...@ffmpeg.org with subject "unsubscribe".
