[3.2] ffmpeg: heap overflows (CVE-2017-5024, CVE-2017-5025 ++)
2.6.8
Fixes following vulnerabilities:
CVE-2016-2213,
CVE-2016-2328,
CVE-2016-2328,
CVE-2016-2329,
CVE-2016-2330,
we need patches for:
2.8.11
Fixes following vulnerabilities:
CVE-2017-5024,
CVE-2017-5025,
2.8.10
Fixes following vulnerabilities:
CVE-2016-10190,
CVE-2016-10191,
CVE-2016-10192,
2.8.9
Fixes following vulnerabilities:
CVE-2016-7502,
CVE-2016-7785,
CVE-2016-7905,
CVE-2016-7562,
2.8.8
Fixes following vulnerabilities:
CVE-2016-6164,
CVE-2016-6881,
CVE-2016-7122,
CVE-2016-7450,
References:
https://ffmpeg.org/security.html
(from redmine: issue id 6873, created on 2017-02-16, closed on 2017-09-05)
- Relations:
- parent #6868 (closed)
- Changesets:
- Revision 5706cf04 by Timo Teräs on 2017-09-05T11:04:27Z:
main/ffmpeg: security upgrade to 2.6.9
fixes #6873 (to the extent possible)