Opened 9 years ago

Closed 8 years ago

#50333 closed defect (fixed)

ffmpeg[-devel]: vulnerable to network attack

Reported by: ctreleaven (Craig Treleaven) Owned by: devans@…
Priority: High Milestone:
Component: ports Version: 2.3.4
Keywords: Cc:
Port: ffmpeg ffmpeg-devel

Description

May wish to temporarily configure ffmpeg with '--disable-network' until vulnerability addressed upstream:

https://bugs.archlinux.org/task/47738

Priority: high as attacks are believed to be circulating in the wild.

Change History (1)

comment:1 Changed 8 years ago by ryandesign (Ryan Carsten Schmidt)

Resolution: fixed
Status: newclosed

ffmpeg fixed these vulnerabilities in their repository in January 2016. We've updated the port since then so I assume that fixes the problem for MacPorts.

Note: See TracTickets for help on using tickets.