From 173010307aedd8874fceced573ffcc8291cc941d Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jeremy=20Lain=C3=A9?= <jeremy.laine@m4x.org>
Date: Fri, 16 May 2025 15:34:30 +0200
Subject: [PATCH] Update FFmpeg build to use libvpx 1.15.1 and libxml2 2.14.3

libvpx 1.14.0 is vulnerable to CVE-2024-5197.

libxml2 2.9.13 is vulnerable to CVE-2022-2309, CVE-2023-29469,
CVE-2017-5130, CVE-2023-45322, CVE-2024-25062, CVE-2022-40303,
CVE-2022-40304, CVE-2023-28484, CVE-2022-29824

Fixes: #1892
Fixes: #1894
---
 scripts/ffmpeg-7.1.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/scripts/ffmpeg-7.1.json b/scripts/ffmpeg-7.1.json
index 42601a31d..26641cedc 100644
--- a/scripts/ffmpeg-7.1.json
+++ b/scripts/ffmpeg-7.1.json
@@ -1,3 +1,3 @@
 {
-    "url": "https://github.com/PyAV-Org/pyav-ffmpeg/releases/download/7.1.1-2/ffmpeg-{platform}.tar.gz"
+    "url": "https://github.com/PyAV-Org/pyav-ffmpeg/releases/download/7.1.1-4/ffmpeg-{platform}.tar.gz"
 }