Thanks Andreas!
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1518549
Title:
FFmpeg security fixes November 2015
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+sou
This bug was fixed in the package ffmpeg - 7:2.7.3-0ubuntu0.15.10.1
---
ffmpeg (7:2.7.3-0ubuntu0.15.10.1) wily-security; urgency=medium
[ Andreas Cadhalpun ]
* Import new upstream bugfix release 2.7.3. (LP: #1518549)
[ Fabian Greffrath ]
* Add alternative Depends: libavcodec-
Carl, ah, that's exactly what happened, I thought you were asking about
the debian/changelog entry. (Someone else asked the same question
recently.)
For the bugs, it's similarly almost always ignored, but it isn't always
medium. :) Since anyone can set them, they are often set to meaningless
value
Are you sure? I looked at a bug page of another (very) random package
and found bugs with importance "high", "medium" and "low". Maybe you are
mixing up different fields?
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.lau
Carl, the 'urgency' field is completely unused in Ubuntu and is always
'medium'.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1518549
Title:
FFmpeg security fixes November 2015
To manage notificat
Could you explain the importance setting "medium"? Were the CVEs
analyzed in detail and it was decided that none of them is truly
security-relevant?
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/151854
This stable release includes bug fixes as well, subscribing release
team.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1518549
Title:
FFmpeg security fixes November 2015
To manage notifications ab
** Changed in: ffmpeg (Ubuntu)
Importance: Undecided => Medium
** Tags added: patch wily
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1518549
Title:
FFmpeg security fixes November 2015
To mana
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2015-8216
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2015-8217
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2015-8219
--
You received this bug notification because you are a member of Ubun
Attached is a debdiff. (git repo is at [1])
Testing performed (in a wily chroot):
* build including test suite works
* installation works
* upgrade works
* autopkgtests pass
1: https://anonscm.debian.org/cgit/collab-maint/ffmpeg.git/log/?h=wily
** Patch added: "debdiff for 2.7.3"
https:/
** Description changed:
FFmpeg 2.7.3 fixing a number of crashes and other potentially security
relevant issues (including CVE-2015-8216, CVE-2015-8217 and
CVE-2015-8219) was released.
From the upstream Changelog:
version 2.7.3:
- rtmpcrypt: Do the xtea decryption in little endian
11 matches
Mail list logo
