[stable/17.09] ffmpeg: 3.3.4 -> 3.3.5 (CVE-2017-15186) #31915

andir · 2017-11-21T22:00:23Z

Motivation for this change

Potential (remote) DOS with crafted AVI files in ffmpeg <= 3.3.4.

More details at [1].

[1] http://www.openwall.com/lists/oss-security/2017/10/20/4

Things done

Tested using sandboxing (nix.useSandbox on NixOS, or option build-use-sandbox in nix.conf on non-NixOS)
Built on platform(s)
- NixOS
- macOS
- other Linux distributions
Tested via one or more NixOS test(s) if existing and applicable for the change (look inside nixos/tests)
Tested compilation of all pkgs that depend on this change using nix-shell -p nox --run "nox-review wip"
Tested execution of all binary files (usually in ./result/bin/)
Fits CONTRIBUTING.md.

More details at [1]. [1] http://www.openwall.com/lists/oss-security/2017/10/20/4

Master is on 3.4.x already.

ffmpeg: 3.3.4 -> 3.3.5 (CVE-2017-15186)

0944768

More details at [1]. [1] http://www.openwall.com/lists/oss-security/2017/10/20/4

GrahamcOfBorg added 10.rebuild-darwin: 11-100 10.rebuild-linux: 101-500 labels Nov 21, 2017

vcunat self-assigned this Nov 22, 2017

vcunat added 1.severity: security 8.has: port to stable A PR already has a backport to the stable release. labels Nov 22, 2017

vcunat merged commit 0944768 into NixOS:release-17.09 Nov 22, 2017

vcunat added a commit that referenced this pull request Nov 22, 2017

Merge #31915: ffmpeg: security 3.3.4 -> 3.3.5

dfd6ae2

Master is on 3.4.x already.

andir deleted the ffmpeg-stable-3.3.5 branch November 22, 2017 01:39

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[stable/17.09] ffmpeg: 3.3.4 -> 3.3.5 (CVE-2017-15186) #31915

[stable/17.09] ffmpeg: 3.3.4 -> 3.3.5 (CVE-2017-15186) #31915

andir commented Nov 21, 2017

[stable/17.09] ffmpeg: 3.3.4 -> 3.3.5 (CVE-2017-15186) #31915

[stable/17.09] ffmpeg: 3.3.4 -> 3.3.5 (CVE-2017-15186) #31915

Conversation

andir commented Nov 21, 2017

Motivation for this change

Things done