[SCM] libav/wheezy-security: Build with --disable-protocol=concat
sramacher at users.alioth.debian.org
sramacher at users.alioth.debian.org
Wed Jan 20 15:18:08 UTC 2016
The following commit has been merged in the wheezy-security branch:
commit 0da8f41412292fe960de3c29f86903c8816a3148
Author: Sebastian Ramacher <sramacher at debian.org>
Date: Wed Jan 20 14:21:43 2016 +0100
Build with --disable-protocol=concat
Fixes CVE-2016-1897 and CVE-2016-1898
(cherry picked from commit c09716d61e300f670cecd6b3e5c035d2303d2773)
diff --git a/debian/confflags b/debian/confflags
index c31f88d..121af1c 100644
--- a/debian/confflags
+++ b/debian/confflags
@@ -102,6 +102,8 @@ confflags += --extra-version='$(DEB_VERSION)'
confflags += --libdir=/usr/lib/$(DEB_HOST_MULTIARCH)
confflags += --prefix=/usr
confflags += $(shell test -x /usr/bin/yasm || echo --disable-yasm )
+# CVE-2016-1897 and CVE-2016-1898
+confflags += --disable-protocol=concat
ifeq ($(DEB_HOST_ARCH),armel)
# this is required on Ubuntu lucid as it defaults to thumb2 and Libav has
--
Libav/FFmpeg packaging
More information about the pkg-multimedia-commits
mailing list