ffmpeg - Debian Package Tracker

general

source: ffmpeg (main)
version: 7:4.4.1-3
maintainer: Debian Multimedia Maintainers (archive) (DMD)
uploaders: Sebastian Ramacher [DMD] – Balint Reczey [DMD] – James Cowgill [DMD] – Reinhard Tartler [DMD]
arch: all any
std-ver: 4.6.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 7:3.2.14-1~deb9u1
o-o-sec: 7:3.2.16-1+deb9u1
oldstable: 7:4.1.6-1~deb10u1
old-sec: 7:4.1.8-0+deb10u1
old-p-u: 7:4.1.8-0+deb10u1
stable: 7:4.3.3-0+deb11u1
stable-sec: 7:4.3.3-0+deb11u1
testing: 7:4.4.1-3
unstable: 7:4.4.1-3
exp: 7:5.0-2

versioned links

7:3.2.14-1~deb9u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
7:3.2.16-1+deb9u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
7:4.1.6-1~deb10u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
7:4.1.8-0+deb10u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
7:4.3.3-0+deb11u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
7:4.4.1-3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
7:5.0-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

ffmpeg (6 bugs: 0, 2, 4, 0)
ffmpeg-doc
libavcodec-dev
libavcodec-extra
libavcodec-extra58
libavcodec58
libavdevice-dev
libavdevice58
libavfilter-dev
libavfilter-extra
libavfilter-extra7
libavfilter7
libavformat-dev (2 bugs: 0, 1, 1, 0)
libavformat-extra
libavformat-extra58
libavformat58
libavutil-dev
libavutil56
libpostproc-dev
libpostproc55
libswresample-dev
libswresample3
libswscale-dev
libswscale5

action needed

A new upstream version is available: 5.0 high

A new upstream version 5.0 is available, you should consider packaging it.

Created: 2022-01-16 Last update: 2022-01-26 08:05

The VCS repository is not up to date, push the missing commits. high

vcswatch reports that the current version of the package is not in its VCS.
Either you need to push your commits and/or your tags, or the information about the package's VCS are out of date. A common cause of the latter issue when using the Git VCS is not specifying the correct branch when the packaging is not in the default one (remote HEAD branch), which is usually "master" but can be modified in salsa.debian.org in the project's general settings with the "Default Branch" field). Alternatively the Vcs-Git field in debian/control can contain a "-b <branch-name>" suffix to indicate what branch is used for the Debian packaging.

Created: 2022-01-17 Last update: 2022-01-23 18:05

lintian reports 1 error high

Lintian reports 1 error about this package. You should make the package lintian clean getting rid of them.

Created: 2022-01-01 Last update: 2022-01-01 04:32

1 bug tagged patch in the BTS normal

The BTS contains patches fixing 1 bug, consider including or untagging them.

Created: 2021-08-14 Last update: 2022-01-26 08:00

Depends on packages which need a new maintainer normal

The packages that ffmpeg depends on which need a new maintainer are:

srt (#964904)
- Depends: libsrt1.4-gnutls libsrt1.4-gnutls
- Build-Depends: libsrt-gnutls-dev
samba (#814382)
- Depends: libsmbclient
- Build-Depends: libsmbclient-dev
libiec61883 (#826285)
- Depends: libiec61883-0
- Build-Depends: libiec61883-dev

Created: 2019-11-22 Last update: 2022-01-26 06:37

6 low-priority security issues in buster low

There are 6 open security issues in buster.

5 issues left for the package maintainer to handle:

CVE-2021-3566: (postponed; to be fixed through a stable update) Prior to ffmpeg version 4.3, the tty demuxer did not have a 'read_probe' function assigned to it. By crafting a legitimate "ffconcat" file that references an image, followed by a file the triggers the tty demuxer, the contents of the second file will be copied into the output file verbatim (as long as the `-vcodec copy` option is passed to ffmpeg).
CVE-2020-20891: (postponed; to be fixed through a stable update) Buffer Overflow vulnerability in function config_input in libavfilter/vf_gblur.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts.
CVE-2020-20896: (postponed; to be fixed through a stable update) An issue was discovered in function latm_write_packet in libavformat/latmenc.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts due to a Null pointer dereference.
CVE-2020-21688: (postponed; to be fixed through a stable update) A heap-use-after-free in the av_freep function in libavutil/mem.c of FFmpeg 4.2 allows attackers to execute arbitrary code.
CVE-2020-21697: (postponed; to be fixed through a stable update) A heap-use-after-free in the mpeg_mux_write_packet function in libavformat/mpegenc.c of FFmpeg 4.2 allows to cause a denial of service (DOS) via a crafted avi file.

You can find information about how to handle these issues in the security team's documentation.

1 ignored issue:

CVE-2020-20892: An issue was discovered in function filter_frame in libavfilter/vf_lenscorrection.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts due to a division by zero.

Created: 2021-02-19 Last update: 2022-01-21 06:30

Build log checks report 2 warnings low

Build log checks report 2 warnings

Created: 2020-06-10 Last update: 2022-01-16 07:28

testing migrations

This package will soon be part of the auto-ffmpeg transition. You might want to ensure that your package is ready for it. You can probably find supplementary information in the debian-release archives or in the corresponding release.debian.org bug.
This package will soon be part of the auto-libwebp transition. You might want to ensure that your package is ready for it. You can probably find supplementary information in the debian-release archives or in the corresponding release.debian.org bug.

news

[rss feed]

[2022-01-22] Accepted ffmpeg 7:5.0-2 (source) into experimental (Sebastian Ramacher)
[2022-01-21] ffmpeg 7:4.4.1-3 MIGRATED to testing (Debian testing watch)
[2022-01-17] Accepted ffmpeg 7:5.0-1 (all amd64 source) into experimental, experimental (Debian FTP Masters) (signed by: Sebastian Ramacher)
[2022-01-15] Accepted ffmpeg 7:4.4.1-3 (source) into unstable (Sebastian Ramacher)
[2021-11-28] ffmpeg 7:4.4.1-2 MIGRATED to testing (Debian testing watch)
[2021-11-21] Accepted ffmpeg 7:4.4.1-2 (source) into unstable (Sebastian Ramacher)
[2021-11-13] Accepted ffmpeg 7:3.2.16-1+deb9u1 (source) into oldoldstable (Anton Gladky)
[2021-11-06] Accepted ffmpeg 7:4.3.3-0+deb11u1 (source) into proposed-updates->stable-new, proposed-updates (Debian FTP Masters) (signed by: Sebastian Ramacher)
[2021-11-03] ffmpeg 7:4.4.1-1 MIGRATED to testing (Debian testing watch)
[2021-10-31] Accepted ffmpeg 7:4.3.3-0+deb11u1 (source) into stable-security->embargoed, stable-security (Debian FTP Masters) (signed by: Sebastian Ramacher)
[2021-10-28] Accepted ffmpeg 7:4.4.1-1 (source) into unstable (Sebastian Ramacher)
[2021-10-23] Accepted ffmpeg 7:4.1.8-0+deb10u1 (source) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates (Debian FTP Masters) (signed by: Sebastian Ramacher)
[2021-10-19] Accepted ffmpeg 7:4.1.8-0+deb10u1 (source) into oldstable->embargoed, oldstable (Debian FTP Masters) (signed by: Sebastian Ramacher)
[2021-09-22] ffmpeg 7:4.4-6 MIGRATED to testing (Debian testing watch)
[2021-09-09] Accepted ffmpeg 7:4.4-6 (source) into unstable (Sebastian Ramacher)
[2021-09-01] ffmpeg 7:4.4-5 MIGRATED to testing (Debian testing watch)
[2021-08-22] Accepted ffmpeg 7:3.2.15-0+deb9u4 (source) into oldoldstable (Anton Gladky)
[2021-08-22] Accepted ffmpeg 7:4.4-5 (source) into unstable (Sebastian Ramacher)
[2021-08-14] Accepted ffmpeg 7:3.2.15-0+deb9u3 (source) into oldoldstable (Anton Gladky)
[2021-08-09] Accepted ffmpeg 7:4.4-4 (source) into experimental (Sebastian Ramacher)
[2021-08-08] Accepted ffmpeg 7:4.4-3 (source) into experimental (Sebastian Ramacher)
[2021-08-08] Accepted ffmpeg 7:4.4-2 (source) into experimental (Sebastian Ramacher)
[2021-06-11] ffmpeg 7:4.3.2-0+deb11u2 MIGRATED to testing (Debian testing watch)
[2021-06-04] Accepted ffmpeg 7:4.3.2-0+deb11u2 (source) into unstable (Sebastian Ramacher)
[2021-04-11] Accepted ffmpeg 7:4.4-1 (source) into experimental (Sebastian Ramacher)
[2021-03-04] ffmpeg 7:4.3.2-0+deb11u1 MIGRATED to testing (Debian testing watch)
[2021-02-28] Accepted ffmpeg 7:4.3.2-2 (source) into experimental (Sebastian Ramacher)
[2021-02-27] Accepted ffmpeg 7:4.3.2-1 (all amd64 source) into experimental, experimental (Debian FTP Masters) (signed by: Sebastian Ramacher)
[2021-02-27] Accepted ffmpeg 7:4.3.1-9 (all amd64 source) into experimental, experimental (Debian FTP Masters) (signed by: Sebastian Ramacher)
[2021-02-21] Accepted ffmpeg 7:4.3.2-0+deb11u1 (source) into unstable (Sebastian Ramacher)

bugs [bug history graph]

all: 11 13
RC: 0
I&N: 6 7
M&W: 5 6
F&P: 0
patch: 1

links

homepage
lintian (1, 0)
buildd: logs, exp, checks, clang, reproducibility, cross
popcon
browse source code
edit tags
other distros
security tracker
screenshots
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 7:4.4.1-3ubuntu1
11 bugs
patches for 7:4.4.1-3ubuntu1