FreePBX 17 debian repository contain ffmpeg package 5.1.4-10.sng12 with multiple vulnerabilities (CVE-2024-7272, CVE-2024-32230 and many others).
Is it safe to upgrade this package to patched version from debian apt repository (comment FreePBX repository, apt update && apt upgrade and uncomment FreePBX repository) ?
3 posts - 2 participants