вт, 3 окт. 2023 г., 16:50 Andrew Randrianasulu <[email protected]>:
вт, 3 окт. 2023 г., 11:56 Andrea paz via Cin <[email protected]>:
A vulnerability hole in the vpx library has come out these days. Do you think it is worth updating?
I think yes, because we at 1.13.0 already ... may be we can just add/apply relevant patches without touching main tarball?
so I tried to download new source directly from https://github.com/webmproject/libvpx/archive/v1.13.1/libvpx-v1.13.1.tar.gz renamed it libvpx-1.13.1.tar.gz (without "v") then put in thirdparty/src, renamed corresponding libvpx patch, edited configure.ac <http://confifure.ac> and now ffmpeg configures .... compiles ...
https://ubuntu.com/security/notices/USN-6403-1
-- Cin mailing list [email protected] https://lists.cinelerra-gg.org/mailman/listinfo/cin