summaryrefslogtreecommitdiffstats
path: root/devscripts
diff options
context:
space:
mode:
authorDaniel Baumann <daniel.baumann@progress-linux.org>2024-08-05 09:06:48 +0000
committerDaniel Baumann <daniel.baumann@progress-linux.org>2024-08-05 09:06:48 +0000
commitdeb9c3cdb096ee4aa1cd29cdd249cd40bdff73e8 (patch)
tree28cdb51427d366c5e840a4a364c6fc078da925af /devscripts
parentReleasing progress-linux version 2024.07.02-1~progress7.99u1. (diff)
downloadyt-dlp-deb9c3cdb096ee4aa1cd29cdd249cd40bdff73e8.tar.xz
yt-dlp-deb9c3cdb096ee4aa1cd29cdd249cd40bdff73e8.zip
Merging upstream version 2024.07.07.
Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
Diffstat (limited to '')
-rw-r--r--devscripts/changelog_override.json5
1 files changed, 5 insertions, 0 deletions
diff --git a/devscripts/changelog_override.json b/devscripts/changelog_override.json
index ab42f55..5189de2 100644
--- a/devscripts/changelog_override.json
+++ b/devscripts/changelog_override.json
@@ -180,5 +180,10 @@
"action": "add",
"when": "6aaf96a3d6e7d0d426e97e11a2fcf52fda00e733",
"short": "[priority] Security: [[CVE-2024-38519](https://nvd.nist.gov/vuln/detail/CVE-2024-38519)] [Properly sanitize file-extension to prevent file system modification and RCE](https://github.com/yt-dlp/yt-dlp/security/advisories/GHSA-79w7-vh3h-8g4j)\n - Unsafe extensions are now blocked from being downloaded"
+ },
+ {
+ "action": "add",
+ "when": "6075a029dba70a89675ae1250e7cdfd91f0eba41",
+ "short": "[priority] Security: [[ie/douyutv] Do not use dangerous javascript source/URL](https://github.com/yt-dlp/yt-dlp/security/advisories/GHSA-3v33-3wmw-3785)\n - A dependency on potentially malicious third-party JavaScript code has been removed from the Douyu extractors"
}
]