The branch, master has been updated
via 190257e5e591f7519e8bb40d34d919887d8f8e79 (commit)
via f5a47ef9f6ed234913b29306de46c2dc67b29a96 (commit)
from 95db70ae10615d1f8cf779ca370367eaf345875a (commit)
- Log -----------------------------------------------------------------
commit 190257e5e591f7519e8bb40d34d919887d8f8e79
Author: Michael Niedermayer <mich...@niedermayer.cc>
AuthorDate: Sat May 17 23:51:17 2025 +0200
Commit: Michael Niedermayer <mich...@niedermayer.cc>
CommitDate: Sat May 17 23:51:17 2025 +0200
web/download: add 4.2.11
diff --git a/src/download b/src/download
index dd58f2c..105eb56 100644
--- a/src/download
+++ b/src/download
@@ -524,10 +524,10 @@ libpostproc 55. 7.100</pre>
</div> <!-- col -->
</div> <!-- row -->
- <h3 id="release_4.2">FFmpeg 4.2.10 "Ada"</h3>
+ <h3 id="release_4.2">FFmpeg 4.2.11 "Ada"</h3>
<p>
- 4.2.10 was released on 2024-08-01. It is the latest stable FFmpeg release
+ 4.2.11 was released on 2025-05-17. It is the latest stable FFmpeg release
from the 4.2 release branch, which was cut from master on 2019-07-21.
</p>
<p>It includes the following library versions:
@@ -544,19 +544,19 @@ libpostproc 55. 5.100</pre>
<div class="row">
<div class="col-md-3">
- <a class="btn btn-success" href="releases/ffmpeg-4.2.10.tar.xz">Download
xz tarball</a>
- <small><a href="releases/ffmpeg-4.2.10.tar.xz.asc">PGP
signature</a></small>
+ <a class="btn btn-success" href="releases/ffmpeg-4.2.11.tar.xz">Download
xz tarball</a>
+ <small><a href="releases/ffmpeg-4.2.11.tar.xz.asc">PGP
signature</a></small>
</div> <!-- col -->
<div class="col-md-3">
- <a class="btn btn-success"
href="releases/ffmpeg-4.2.10.tar.bz2">Download bzip2 tarball</a>
- <small><a href="releases/ffmpeg-4.2.10.tar.bz2.asc">PGP
signature</a></small>
+ <a class="btn btn-success"
href="releases/ffmpeg-4.2.11.tar.bz2">Download bzip2 tarball</a>
+ <small><a href="releases/ffmpeg-4.2.11.tar.bz2.asc">PGP
signature</a></small>
</div> <!-- col -->
<div class="col-md-3">
- <a class="btn btn-success" href="releases/ffmpeg-4.2.10.tar.gz">Download
gzip tarball</a>
- <small><a href="releases/ffmpeg-4.2.10.tar.gz.asc">PGP
signature</a></small>
+ <a class="btn btn-success" href="releases/ffmpeg-4.2.11.tar.gz">Download
gzip tarball</a>
+ <small><a href="releases/ffmpeg-4.2.11.tar.gz.asc">PGP
signature</a></small>
</div> <!-- col -->
<div class="col-md-3 text-right">
- <small><a
href="https://git.ffmpeg.org/gitweb/ffmpeg.git/shortlog/n4.2.10";>Changelog</a></small>
+ <small><a
href="https://git.ffmpeg.org/gitweb/ffmpeg.git/shortlog/n4.2.11";>Changelog</a></small>
<a class="btn btn-success"
href="https://git.ffmpeg.org/gitweb/ffmpeg.git/blob/refs/heads/release/4.2:/RELEASE_NOTES";>Release
Notes</a>
</div> <!-- col -->
</div> <!-- row -->
commit f5a47ef9f6ed234913b29306de46c2dc67b29a96
Author: Michael Niedermayer <mich...@niedermayer.cc>
AuthorDate: Sat May 17 23:41:02 2025 +0200
Commit: Michael Niedermayer <mich...@niedermayer.cc>
CommitDate: Sat May 17 23:41:02 2025 +0200
web/security: add CVEs for 4.4 and 4.2 branches
diff --git a/src/security b/src/security
index 658f7c8..a433046 100644
--- a/src/security
+++ b/src/security
@@ -198,6 +198,16 @@ CVE-2023-47343, 0f6a3405e8987ad761a2d9139fdc95bbb6a61118
<h2>FFmpeg 4.4</h2>
+<h3>4.4.6</h3>
+<p>
+Fixes following vulnerabilities:
+</p>
+<pre>
+CVE-2023-49502, eb1782ea84ebdb357917b249a353552060a8ebe4 /
737ede405b11a37fdd61d19cf25df296a0cb0b75, ticket/10688
+CVE-2025-0518, a0e2fd18917a19605bb4efd12c7501c6b8bc26d0 /
b5b6391d64807578ab872dc58fb8aa621dcfc38a
+CVE-2025-22919, 2ec7f8ea4da98449061cb0f7e61c5d1cb4e1cc92 /
1446e37d3d032e1452844778b3e6ba2c20f0c322, ticket/11385
+</pre>
+
<h3>4.4.5</h3>
<p>
Fixes following vulnerabilities:
@@ -205,6 +215,7 @@ Fixes following vulnerabilities:
<pre>
CVE-2024-7055, ceeb1928da9a3aedd6fff935790c70405d4b12bf /
3faadbe2a27e74ff5bb5f7904ec27bb1f5287dc8
CVE-2023-47342, d8a3d7b4f91249b1ff02d4474c78111b8688d605 /
e4d5ac8d7d2a08658b3db7dd821246fe6b35381f
+CVE-2024-36617, 625ca605f5b1f60f6409949533bcff8982d61464 /
d973fcbcc2f944752ff10e6a76b0b2d9329937a7
</pre>
<h3>4.4.4</h3>
@@ -417,6 +428,16 @@ CVE-2021-38094, 99f8d32129dd233d4eb2efa44678a0bc44869f23,
ticket/8263, duplicate
<h2>FFmpeg 4.2</h2>
+<h3>4.2.11</h3>
+<p>
+Fixes following vulnerabilities:
+</p>
+<pre>
+CVE-2023-49502, de0ec0d3af39ba180fe06cf90880e4c487b5dec3 /
737ede405b11a37fdd61d19cf25df296a0cb0b75, ticket/10688
+CVE-2025-0518, 6b43edeb24e4e7cbf4c85c94a86be7333a844f65 /
b5b6391d64807578ab872dc58fb8aa621dcfc38a
+CVE-2025-22919, 20dee7be59c8f1ed8b02c89c206f56c77cff61dc /
1446e37d3d032e1452844778b3e6ba2c20f0c322, ticket/11385
+</pre>
+
<h3>4.2.10</h3>
<p>
Fixes following vulnerabilities:
@@ -431,6 +452,7 @@ Fixes following vulnerabilities:
</p>
<pre>
CVE-2022-3109, b2e1ee39f52e285cd630786019cff5d8d12aa1a1 /
656cb0450aeb73b25d7d26980af342b37ac4c568
+CVE-2024-36617,119eb87952d5bc403d946c79a1a7490022823ebc /
d973fcbcc2f944752ff10e6a76b0b2d9329937a7
</pre>
<h3>4.2.7</h3>
-----------------------------------------------------------------------
Summary of changes:
src/download | 18 +++++++++---------
src/security | 22 ++++++++++++++++++++++
2 files changed, 31 insertions(+), 9 deletions(-)
hooks/post-receive
--
_______________________________________________
ffmpeg-cvslog mailing list
ffmpeg-cvslog@ffmpeg.org
https://ffmpeg.org/mailman/listinfo/ffmpeg-cvslog
To unsubscribe, visit link above, or email
ffmpeg-cvslog-requ...@ffmpeg.org with subject "unsubscribe".
