[Cin] Libvpx vulnerability
Andrew Randrianasulu
randrianasulu at gmail.com
Tue Oct 3 21:31:15 CEST 2023
вт, 3 окт. 2023 г., 16:50 Andrew Randrianasulu <randrianasulu at gmail.com>:
>
>
> вт, 3 окт. 2023 г., 11:56 Andrea paz via Cin <cin at lists.cinelerra-gg.org>:
>
>> A vulnerability hole in the vpx library has come out these days. Do
>> you think it is worth updating?
>>
>
> I think yes, because we at 1.13.0 already ... may be we can just add/apply
> relevant patches without touching main tarball?
>
so I tried to download new source directly from
https://github.com/webmproject/libvpx/archive/v1.13.1/libvpx-v1.13.1.tar.gz
renamed it libvpx-1.13.1.tar.gz (without "v") then put in thirdparty/src,
renamed corresponding libvpx patch, edited configure.ac
<http://confifure.ac> and now ffmpeg configures .... compiles ...
> https://ubuntu.com/security/notices/USN-6403-1
>> --
>> Cin mailing list
>> Cin at lists.cinelerra-gg.org
>> https://lists.cinelerra-gg.org/mailman/listinfo/cin
>>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.cinelerra-gg.org/pipermail/cin/attachments/20231003/d6ca188a/attachment-0001.htm>
More information about the Cin
mailing list