community/ffmpeg: security upgrade to 4.1.4

CVE-2019-12730
author: J0WI <J0WI@users.noreply.github.com> 2019-08-16 23:22:43 +0200
committer: Leo <thinkabit.ukim@gmail.com> 2019-08-16 19:25:48 -0300
commit: cf78a820406ae4481e937bc2fba252ff79c89a09 (patch)
tree: 639d857b37b335de5bb385c2c9dfe6c40b97ed11
parent: c8de1c7731b33b8ae5b23cc9b50535f2a63e20c0 (diff)
1 files changed, 45 insertions, 4 deletions
diff --git a/community/ffmpeg/APKBUILD b/community/ffmpeg/APKBUILD
index 78877780081..6eed9d937d1 100644
--- a/community/ffmpeg/APKBUILD
+++ b/community/ffmpeg/APKBUILD
@@ -3,10 +3,10 @@
 # Contributor: Jakub Skrzypnik <j.skrzypnik@openmailbox.org>
 # Maintainer: Natanael Copa <ncopa@alpinelinux.org>
 pkgname=ffmpeg
-pkgver=4.1.3
-pkgrel=1
+pkgver=4.1.4
+pkgrel=0
 pkgdesc="Complete and free Internet live audio and video broadcasting solution for Linux/Unix"
-url="https://ffmpeg.org"
+url="https://ffmpeg.org/"
 arch="all"
 license="LGPL-2.1-or-later GPL-2.0-or-later"
 options="!check" # tests/data/hls-lists.append.m3u8 fails
@@ -21,6 +21,39 @@ source="https://ffmpeg.org/releases/ffmpeg-$pkgver.tar.xz
 	"
 
 # secfixes:
+#   4.1.4-r0:
+#     - CVE-2019-12730
+#   4.1.3-r0:
+#     - CVE-2019-9718
+#     - CVE-2019-9721
+#     - CVE-2019-11338
+#     - CVE-2019-11339
+#   4.1.1-r0:
+#     - CVE-2019-1000016
+#   4.1-r0:
+#     - CVE-2019-9718
+#     - CVE-2019-9721
+#     - CVE-2019-11339
+#     - CVE-2019-11339
+#     - CVE-2018-12458
+#     - CVE-2018-12459
+#     - CVE-2018-12460
+#     - CVE-2018-13300
+#     - CVE-2018-13301
+#     - CVE-2018-13302
+#     - CVE-2018-13303
+#     - CVE-2018-13304
+#     - CVE-2018-13305
+#     - CVE-2018-14394
+#     - CVE-2018-14395
+#     - CVE-2018-15822
+#     - CVE-2018-15822
+#     - CVE-2018-1999010
+#     - CVE-2018-1999011
+#     - CVE-2018-1999012
+#     - CVE-2018-1999013
+#     - CVE-2018-1999014
+#     - CVE-2018-1999015
 #   4.0.2-r0:
 #     - CVE-2018-13300
 #     - CVE-2018-13301
@@ -29,6 +62,12 @@ source="https://ffmpeg.org/releases/ffmpeg-$pkgver.tar.xz
 #     - CVE-2018-13304
 #     - CVE-2018-14394
 #     - CVE-2018-14395
+#     - CVE-2018-1999010
+#     - CVE-2018-1999011
+#     - CVE-2018-1999012
+#     - CVE-2018-1999013
+#     - CVE-2018-1999014
+#     - CVE-2018-1999015
 #   4.0.1-r0:
 #     - CVE-2018-12458
 #     - CVE-2018-12459
@@ -37,6 +76,8 @@ source="https://ffmpeg.org/releases/ffmpeg-$pkgver.tar.xz
 #     - CVE-2018-6912
 #     - CVE-2018-7751
 #     - CVE-2018-7757
+#     - CVE-2018-9841
+#     - CVE-2018-10001
 #   3.4.4-r0:
 #     - CVE-2018-14395
 #   3.4.3-r0:
@@ -124,5 +165,5 @@ libs() {
 	mv "$pkgdir"/usr/lib "$subpkgdir"/usr
 }
 
-sha512sums="0a540a0c5395f42c6079bc26d1b3baca453995693da7de21da469ce40b3a548bea14ff46a72c6f4c32256333855f9b86207cb8bf1d0dda33a17ddca54970daa3  ffmpeg-4.1.3.tar.xz
+sha512sums="1d0c3c3e04d14094e98a8ea4274ea01b941a658afa501ff408a8b2ee146b997743d51b8863ae184e9590333a94297a0fa5c079a211739513cf7c8350d3bd64dd  ffmpeg-4.1.4.tar.xz
 1047a23eda51b576ac200d5106a1cd318d1d5291643b3a69e025c0a7b6f3dbc9f6eb0e1e6faa231b7e38c8dd4e49a54f7431f87a93664da35825cc2e9e8aedf4  0001-libavutil-clean-up-unused-FF_SYMVER-macro.patch"
author	J0WI <J0WI@users.noreply.github.com>	2019-08-16 23:22:43 +0200
committer	Leo <thinkabit.ukim@gmail.com>	2019-08-16 19:25:48 -0300
commit	cf78a820406ae4481e937bc2fba252ff79c89a09 (patch)
tree	639d857b37b335de5bb385c2c9dfe6c40b97ed11
parent	c8de1c7731b33b8ae5b23cc9b50535f2a63e20c0 (diff)