Ubuntu’s current LTS version (24.04) contains ffmpeg version 7:6.1.1-3ubuntu5 which has this buffer overflow vulnerability:

https://trac.ffmpeg.org/ticket/10952

https://ubuntu.com/security/CVE-2024-32230

On my only Ubuntu computer, my update widget says that I need to upgrade to ffmpeg version 7:6.1.1-3ubuntu5+esm2 but can only only do so with Ubuntu Pro. I’m not eligible for Ubuntu Pro.

Ubuntu claims that 24.04 is currently fully supported, and should have complete security updates. However, they seem to have paywalled this security update.

What should I do?

  • Noa Himesaka@lemmy.funami.tech
    18·
    3 days ago

    GPL does not restrict you from selling the software, though you can’t stop getting distributed by someone who bought it. Even RMS himself sold Emacs back in the day.

    EDIT: I’m not saying it’s justified in moral sense, I think it sucks ass. But it’s not against the license.

    • commanderEnglish
      24·
      3 days ago

      GPL does not restrict you from selling the software

      Oh god, we know.

      Practically speaking though, if anyone can redistribute it for free then it’s available for free.

      • Steve Dice@sh.itjust.worksEnglish
        2·
        1 day ago

        You don’t seem to understand the difference between free as in freedom and free as in beer that is literally the cornerstone of the free software community.