[FFmpeg-cvslog] [ffmpeg-web] branch master updated. 69585f5 web/security: update 3.2.9 / 3.2.10 CVEs

ffmpeg-git at ffmpeg.org ffmpeg-git at ffmpeg.org
Sat Jan 13 16:55:44 EET 2018 

The branch, master has been updated
       via  69585f5407f8c00adcddb1947951253d1f7d55f3 (commit)
       via  7708f9089b6599d1ad685d9889a882863ee74ab2 (commit)
      from  3d11b841a7def16586734057496f188783aab517 (commit)


- Log -----------------------------------------------------------------
commit 69585f5407f8c00adcddb1947951253d1f7d55f3
Author:     Michael Niedermayer <michael at niedermayer.cc>
AuthorDate: Sat Jan 13 15:54:38 2018 +0100
Commit:     Michael Niedermayer <michael at niedermayer.cc>
CommitDate: Sat Jan 13 15:54:38 2018 +0100

    web/security: update 3.2.9 / 3.2.10 CVEs

diff --git a/src/security b/src/security
index ddb5e99..8f66616 100644
--- a/src/security
+++ b/src/security
@@ -109,12 +109,22 @@ CVE-2017-7866, e371f031b942d73e02c090170975561fabd5c264
 
 <h2>FFmpeg 3.2</h2>
 
+<h3>3.2.10</h3>
+<p>
+Fixes following vulnerabilities:
+</p>
+<pre>
+CVE-2017-16840, 519a54cc195b92fe6ba71fd156e31e944d862d7e / 3228ac730c11eca49d5680d5550128e397061c85
+CVE-2017-17081, b51f515c5c837351f2104b43c0e2a0562a759086 / 58cf31cee7a456057f337b3102a03206d833d5e8
+</pre>
+
 <h3>3.2.9</h3>
 <p>
 Fixes following vulnerabilities:
 </p>
 <pre>
 CVE-2017-15186, 0eb0b21c7f4f2b6a3a74d2d252f95b81a4d472c3 / df62b70de8aaa285168e72fe8f6e740843ca91fa
+CVE-2017-17081, b2c9771dd435fbce4f0a422bbdc16ecf7b243395 / 127a362630e11fe724e2e63fc871791fdcbcfa64
 </pre>
 
 <h3>3.2.8</h3>

commit 7708f9089b6599d1ad685d9889a882863ee74ab2
Author:     Michael Niedermayer <michael at niedermayer.cc>
AuthorDate: Sat Jan 13 15:51:29 2018 +0100
Commit:     Michael Niedermayer <michael at niedermayer.cc>
CommitDate: Sat Jan 13 15:51:29 2018 +0100

    web/download: add 3.2.10

diff --git a/src/download b/src/download
index 2add1cb..91e0623 100644
--- a/src/download
+++ b/src/download
@@ -348,10 +348,10 @@ libpostproc    54.  5.100</pre>
     </div> <!-- col -->
   </div> <!-- row -->
 
-  <h3 id="release_3.2">FFmpeg 3.2.9 "Hypatia"</h3>
+  <h3 id="release_3.2">FFmpeg 3.2.10 "Hypatia"</h3>
 
   <p>
-    3.2.9 was released on 2017-10-26. It is the latest stable FFmpeg release
+    3.2.10 was released on 2018-01-13. It is the latest stable FFmpeg release
     from the 3.2 release branch, which was cut from master on 2016-10-26.
   </p>
   <p>It includes the following library versions:
@@ -369,19 +369,19 @@ libpostproc    54.  1.100</pre>
 
   <div class="row">
     <div class="col-md-3">
-      <a class="btn btn-success" href="releases/ffmpeg-3.2.9.tar.xz">Download xz tarball</a>
-      <small><a href="releases/ffmpeg-3.2.9.tar.xz.asc">PGP signature</a></small>
+      <a class="btn btn-success" href="releases/ffmpeg-3.2.10.tar.xz">Download xz tarball</a>
+      <small><a href="releases/ffmpeg-3.2.10.tar.xz.asc">PGP signature</a></small>
     </div> <!-- col -->
     <div class="col-md-3">
-      <a class="btn btn-success" href="releases/ffmpeg-3.2.9.tar.bz2">Download bzip2 tarball</a>
-      <small><a href="releases/ffmpeg-3.2.9.tar.bz2.asc">PGP signature</a></small>
+      <a class="btn btn-success" href="releases/ffmpeg-3.2.10.tar.bz2">Download bzip2 tarball</a>
+      <small><a href="releases/ffmpeg-3.2.10.tar.bz2.asc">PGP signature</a></small>
     </div> <!-- col -->
     <div class="col-md-3">
-      <a class="btn btn-success" href="releases/ffmpeg-3.2.9.tar.gz">Download gzip tarball</a>
-      <small><a href="releases/ffmpeg-3.2.9.tar.gz.asc">PGP signature</a></small>
+      <a class="btn btn-success" href="releases/ffmpeg-3.2.10.tar.gz">Download gzip tarball</a>
+      <small><a href="releases/ffmpeg-3.2.10.tar.gz.asc">PGP signature</a></small>
     </div> <!-- col -->
     <div class="col-md-3 text-right">
-      <small><a href="https://git.ffmpeg.org/gitweb/ffmpeg.git/shortlog/n3.2.9">Changelog</a></small>
+      <small><a href="https://git.ffmpeg.org/gitweb/ffmpeg.git/shortlog/n3.2.10">Changelog</a></small>
       <a class="btn btn-success" href="https://git.ffmpeg.org/gitweb/ffmpeg.git/blob/refs/heads/release/3.2:/RELEASE_NOTES">Release Notes</a>
     </div> <!-- col -->
   </div> <!-- row -->

-----------------------------------------------------------------------

Summary of changes:
 src/download | 18 +++++++++---------
 src/security | 10 ++++++++++
 2 files changed, 19 insertions(+), 9 deletions(-)


hooks/post-receive
--

More information about the ffmpeg-cvslog mailing list