fyi!
-- :> -------------------- Start of forwarded message -------------------- From: Maxime Gauduin <[email protected]> Date: Wed, 13 Jan 2016 19:24:13 +0100 Subject: [arch-dev-public] FFmpeg vulnerability Hi all, A vulnerability via which someone can steal files from remote machines has been discovered in FFmpeg and was made public. See associated bug report [1]. Disabling networking altogether seems a bit much, but James Darnley @ FFmpeg suggested that disabling HLS should do the trick until a fix is committed so I'll go ahead and rebuild our FFmpeg without the HLS and AppleHTTP demuxers. [1] https://bugs.archlinux.org/task/47738 Cheers, -- Maxime <https://www.avast.com/sig-email?utm_medium=email&utm_source=link&utm_campaign=sig-email&utm_content=webmail> This email has been sent from a virus-free computer protected by Avast. www.avast.com <https://www.avast.com/sig-email?utm_medium=email&utm_source=link&utm_campaign=sig-email&utm_content=webmail> <#DDB4FAA8-2DD7-40BB-A1B8-4E2AA1F9FDF2> -------------------- End of forwarded message --------------------
signature.asc
Description: PGP signature
_______________________________________________ Dev mailing list [email protected] https://lists.parabola.nu/mailman/listinfo/dev
