[FFmpeg-cvslog] [ffmpeg-web] branch master updated. 190257e web/download: add 4.2.11

Sun May 18 00:52:12 EEST 2025

The branch, master has been updated
       via  190257e5e591f7519e8bb40d34d919887d8f8e79 (commit)
       via  f5a47ef9f6ed234913b29306de46c2dc67b29a96 (commit)
      from  95db70ae10615d1f8cf779ca370367eaf345875a (commit)


- Log -----------------------------------------------------------------
commit 190257e5e591f7519e8bb40d34d919887d8f8e79
Author:     Michael Niedermayer <michael at niedermayer.cc>
AuthorDate: Sat May 17 23:51:17 2025 +0200
Commit:     Michael Niedermayer <michael at niedermayer.cc>
CommitDate: Sat May 17 23:51:17 2025 +0200

    web/download: add 4.2.11

diff --git a/src/download b/src/download
index dd58f2c..105eb56 100644
--- a/src/download
+++ b/src/download
@@ -524,10 +524,10 @@ libpostproc    55.  7.100</pre>
     </div> <!-- col -->
   </div> <!-- row -->
 
-  <h3 id="release_4.2">FFmpeg 4.2.10 "Ada"</h3>
+  <h3 id="release_4.2">FFmpeg 4.2.11 "Ada"</h3>
 
   <p>
-    4.2.10 was released on 2024-08-01. It is the latest stable FFmpeg release
+    4.2.11 was released on 2025-05-17. It is the latest stable FFmpeg release
     from the 4.2 release branch, which was cut from master on 2019-07-21.
   </p>
   <p>It includes the following library versions:
@@ -544,19 +544,19 @@ libpostproc    55.  5.100</pre>
 
   <div class="row">
     <div class="col-md-3">
-      <a class="btn btn-success" href="releases/ffmpeg-4.2.10.tar.xz">Download xz tarball</a>
-      <small><a href="releases/ffmpeg-4.2.10.tar.xz.asc">PGP signature</a></small>
+      <a class="btn btn-success" href="releases/ffmpeg-4.2.11.tar.xz">Download xz tarball</a>
+      <small><a href="releases/ffmpeg-4.2.11.tar.xz.asc">PGP signature</a></small>
     </div> <!-- col -->
     <div class="col-md-3">
-      <a class="btn btn-success" href="releases/ffmpeg-4.2.10.tar.bz2">Download bzip2 tarball</a>
-      <small><a href="releases/ffmpeg-4.2.10.tar.bz2.asc">PGP signature</a></small>
+      <a class="btn btn-success" href="releases/ffmpeg-4.2.11.tar.bz2">Download bzip2 tarball</a>
+      <small><a href="releases/ffmpeg-4.2.11.tar.bz2.asc">PGP signature</a></small>
     </div> <!-- col -->
     <div class="col-md-3">
-      <a class="btn btn-success" href="releases/ffmpeg-4.2.10.tar.gz">Download gzip tarball</a>
-      <small><a href="releases/ffmpeg-4.2.10.tar.gz.asc">PGP signature</a></small>
+      <a class="btn btn-success" href="releases/ffmpeg-4.2.11.tar.gz">Download gzip tarball</a>
+      <small><a href="releases/ffmpeg-4.2.11.tar.gz.asc">PGP signature</a></small>
     </div> <!-- col -->
     <div class="col-md-3 text-right">
-      <small><a href="https://git.ffmpeg.org/gitweb/ffmpeg.git/shortlog/n4.2.10">Changelog</a></small>
+      <small><a href="https://git.ffmpeg.org/gitweb/ffmpeg.git/shortlog/n4.2.11">Changelog</a></small>
       <a class="btn btn-success" href="https://git.ffmpeg.org/gitweb/ffmpeg.git/blob/refs/heads/release/4.2:/RELEASE_NOTES">Release Notes</a>
     </div> <!-- col -->
   </div> <!-- row -->

commit f5a47ef9f6ed234913b29306de46c2dc67b29a96
Author:     Michael Niedermayer <michael at niedermayer.cc>
AuthorDate: Sat May 17 23:41:02 2025 +0200
Commit:     Michael Niedermayer <michael at niedermayer.cc>
CommitDate: Sat May 17 23:41:02 2025 +0200

    web/security: add CVEs for 4.4 and 4.2 branches

diff --git a/src/security b/src/security
index 658f7c8..a433046 100644
--- a/src/security
+++ b/src/security
@@ -198,6 +198,16 @@ CVE-2023-47343, 0f6a3405e8987ad761a2d9139fdc95bbb6a61118
 
 <h2>FFmpeg 4.4</h2>
 
+<h3>4.4.6</h3>
+<p>
+Fixes following vulnerabilities:
+</p>
+<pre>
+CVE-2023-49502, eb1782ea84ebdb357917b249a353552060a8ebe4 / 737ede405b11a37fdd61d19cf25df296a0cb0b75, ticket/10688
+CVE-2025-0518,  a0e2fd18917a19605bb4efd12c7501c6b8bc26d0 / b5b6391d64807578ab872dc58fb8aa621dcfc38a
+CVE-2025-22919, 2ec7f8ea4da98449061cb0f7e61c5d1cb4e1cc92 / 1446e37d3d032e1452844778b3e6ba2c20f0c322, ticket/11385
+</pre>
+
 <h3>4.4.5</h3>
 <p>
 Fixes following vulnerabilities:
@@ -205,6 +215,7 @@ Fixes following vulnerabilities:
 <pre>
 CVE-2024-7055,  ceeb1928da9a3aedd6fff935790c70405d4b12bf / 3faadbe2a27e74ff5bb5f7904ec27bb1f5287dc8
 CVE-2023-47342, d8a3d7b4f91249b1ff02d4474c78111b8688d605 / e4d5ac8d7d2a08658b3db7dd821246fe6b35381f
+CVE-2024-36617, 625ca605f5b1f60f6409949533bcff8982d61464 / d973fcbcc2f944752ff10e6a76b0b2d9329937a7
 </pre>
 
 <h3>4.4.4</h3>
@@ -417,6 +428,16 @@ CVE-2021-38094, 99f8d32129dd233d4eb2efa44678a0bc44869f23, ticket/8263, duplicate
 
 <h2>FFmpeg 4.2</h2>
 
+<h3>4.2.11</h3>
+<p>
+Fixes following vulnerabilities:
+</p>
+<pre>
+CVE-2023-49502, de0ec0d3af39ba180fe06cf90880e4c487b5dec3 / 737ede405b11a37fdd61d19cf25df296a0cb0b75, ticket/10688
+CVE-2025-0518,  6b43edeb24e4e7cbf4c85c94a86be7333a844f65 / b5b6391d64807578ab872dc58fb8aa621dcfc38a
+CVE-2025-22919, 20dee7be59c8f1ed8b02c89c206f56c77cff61dc / 1446e37d3d032e1452844778b3e6ba2c20f0c322, ticket/11385
+</pre>
+
 <h3>4.2.10</h3>
 <p>
 Fixes following vulnerabilities:
@@ -431,6 +452,7 @@ Fixes following vulnerabilities:
 </p>
 <pre>
 CVE-2022-3109, b2e1ee39f52e285cd630786019cff5d8d12aa1a1 / 656cb0450aeb73b25d7d26980af342b37ac4c568
+CVE-2024-36617,119eb87952d5bc403d946c79a1a7490022823ebc / d973fcbcc2f944752ff10e6a76b0b2d9329937a7
 </pre>
 
 <h3>4.2.7</h3>

-----------------------------------------------------------------------

Summary of changes:
 src/download | 18 +++++++++---------
 src/security | 22 ++++++++++++++++++++++
 2 files changed, 31 insertions(+), 9 deletions(-)


hooks/post-receive
-- 

