diff --git a/Changelog b/Changelog
index b58968dbfa..c013fd0294 100644
--- a/Changelog
+++ b/Changelog
@@ -2,6 +2,143 @@ Entries are sorted chronologically from oldest to youngest within each release,
 releases are sorted from youngest to oldest.
 
 version 4.4.7:
+ avcodec/av1dec: check that primary_ref_frame is within range
+ configure: bump CONFIG_THIS_YEAR to 2026
+ avcodec/alsdec: do not set nbits invalidly
+ swscale/swscale_unscaled: adjust last line copy
+ avformat/avidec: check LIST size in avi_load_index()
+ avformat/avidec: validate INFO list size before parsing
+ libavformat/xwma: fix overflow in seek position
+ avfilter/vf_kerndeint: Check for minimum height
+ avcodec/ralf: Add the missing return statement after the error log
+ avcodec/zmbv: reject XOR data that overruns the decompression buffer
+ avcodec/rasc: fix heap use-after-free in decode_move()
+ avformat/rtpdec_mpeg4: reject zero-length AU header sections
+ fftools/ffmpeg_opt: validate stream index in negative map handling
+ avformat/rtmpproto: prevent integer overflow accumulating FLV buffer size
+ avformat/rtmpproto: validate compressed SWF header length
+ avformat/rtsp: Fix out-of-bounds read in SDP parser when control_url is empty
+ avformat/rtpdec_latm: avoid integer overflow in LATM length parsing
+ avcodec/h264: recompute per-slice direct mode state for every slice
+ avcodec/h264_refs: Clear stale pointers from ref_list
+ avcodec/wmaenc: Fix missing padding in extradata
+ avcodec/tdsc: remove double stride adjustment
+ avformat/cafdec: fix negative index use in read_seek
+ avcodec/notchlc: Check 255 loops
+ avformat/rtpdec_jpeg: check qtable_len
+ avformat/vividas: use-of-uninitialized-value in keybuffer
+ avcodec/tdsc: Check jpeg size
+ avcodec/tdsc: Better input size check
+ avcodec/tdsc: Check tile_size
+ avformat/mov: check extradata in mov_read_dops()
+ avformat/mov: Check read size for opus extradata
+ avformat/rtspdec: reject non-positive ANNOUNCE Content-Length
+ avformat/wavdec: Fix use-of-uninitialized-value in find_guid()
+ avcodec/svq1dec: Check input space for minimum
+ avcodec/vp9: Rollback dimensions when format is rejected
+ avformat/rtpdec_qdm2: Check block_size
+ avcodec/escape130: Initialize old_y_avg
+ avutil/samplefmt: Dont claim that av_get_sample_fmt_string checks sample_fmt
+ avformat: check avio_read() return values in dss/dtshd/mlv
+ avcodec/alsdec: preserve full float value in zero-truncated samples
+ avcodec/alsdec: propagate read_diff_float_data() errors in read_frame_data()
+ avcodec/alsdec: fix mantissa unpacking in compressed Part A path
+ libavfilter/vf_v360: fix operator precedence in stereo loop condition
+ avcodec/alsdec: fix abs(INT_MIN) UB in read_diff_float_data()
+ avformat/mov: Handle integer overflow in MOV parser
+ avcodec/dvdsub_parser: Fix buf_size check
+ avutil/bswap: fix implicit conversion warning in av_bswap64
+ avformat/mpegts: fix descriptor accounting across multiple IOD descriptors
+ avcodec/xxan: zero-initialize y_buffer
+ avcodec/exr: Check input space before reverse_lut()
+ avcodec/h264_slice: reject slice_num >= 0xFFFF
+ avutil/timecode: Check for integer overflow in av_timecode_init_from_components()
+ avformat/mov: do not allocate out-of-range buffers
+ avfilter/af_lv2: call lilv_instance_activate before lilv_instance_run
+ swscale/output: fix integer overflows in chroma in yuv2rgba64_X_c_template()
+ avcodec/lcldec: Fixes uqvq overflow
+ avcodec/av1dec: sync frame header and tile group behavior with CBS
+ avformat/mlvdec: avoid uninitialized read in read_string()
+ avcodec/magicyuv: fix small median images
+ swscale/output: Fix integer overflow in alpha in yuv2rgba64_1_c_template()
+ swscale/utils: Check *Inc
+ avfilter/vf_scale: Fix integer overflow in config_props()
+ swscale/output: Fixes integer overflow in yuv2planeX_8_c
+ swscale/utils: initialize chroma when luma switched to cascade
+ avformat/rtsp: Pass blacklist
+ avformat/rtsp: Explicitly check protocol
+ avfilter/vf_convolution: Use avpriv_mirror
+ avfilter/vf_convolution: Handle corner cases with small frames
+ avutil/eval: Check depth of AVExpr
+ avformat/vividas: Reset n_audio_subpackets on error
+ avformat/matroskadec: Check that end_time_ns >= start_time_ns
+ avcodec/vp3: Sanity check cropping
+ avformat/dhav: Check avio_seek() return
+ avformat/segafilm: dont read uninitialized value
+ avcodec/exr: check tile_attr.x/ySize
+ avcodec/golomb: Fix get_ur_golomb_jpegls() with esclen = 0
+ swresample/resample_template: add casts to avoid undefined overflows
+ avcodec/h264_parser: Check pts for overflow
+ avformat/wtvdec: Check that language is fully read
+ avcodec/imm5: Dont pass EAGAIN on as is
+ avcodec/interplayacm: Check input for fill_block()
+ avcodec/flashsv: Check for input space before (re)allocating frame
+ avcodec/exr: fix AVERROR typo
+ avcodec/cfhd: Check transform type before continuing
+ avcodec/cfhd: Add CFHDSegment enum and named identifiers
+ avformat/icodec: Check size
+ avformat/lrcdec: Check ss for finiteness
+ avformat/http: allow adjusting the redirect limit
+ fftools/ffmpeg_opt: limit recursion of presets
+ swscale/rgb2rgb_template: fix signed shift into sign bit
+ avcodec/bmp: fix indention
+ avcodec/exr: Handle axmax like bxmin in 04d7a6d3db56ea1a93908ff2d3d312e3fc40a58c
+ avformat/cafdec: Check nb_entries in read_info_chunk()
+ avcodec/vp9: Reallocate on resolution change which does not change tile_cols
+ avformat/img2dec: Check avio_size() for failure
+ avformat/mpegtsenc: Check remaining space in SDT
+ avformat/img2enc: Check split planes packet size
+ avformat/yuv4mpegen: Sanity check input packet frame dimensions
+ Fix overflow in STSD parser
+ avcodec/adpcm: Check input buffer size
+ avformat/hls: Check for integer overflow with #EXTINF:
+ avcodec/dca_xll: Clear padding in ff_dca_xll_parse()
+ vfilter/vf_find_rect: Clamp x/y min/max to valid values
+ avcodec/dca_xll: Check get_rice_array()
+ avformat/mpegts: Check program_info_length
+ avformat/mpegts: Check IOD_DESCRIPTOR len
+ avcodec/qdm2: fix heap-use-after-free in qdm2_decode_frame
+ avcodec/jpeg2000dec: Print bpno level when erroring out
+ avformat/dashdec: check value valid after read value from mpd xml
+ swscale/utils: zero init filter memory as before
+ lavc/j2kdec: Do not ignore colour association for packed formats
+ swscale/utils: Sanity check sizeFactor
+ swscale/utils: Avoid FF_ALLOC_TYPED_ARRAY() and use av_malloc_array() directly
+ avcodec/mjpegdec: fix segfault on extern_huff and no extradata
+ avcodec/exr: use av_realloc_array()
+ avcodec/omx: Check extradata size and nFilledLen
+ avfilter/scale_eval: Use 64bit for factor_w/h
+ avfilter/scale_eval: Avoid undefined behavior with double to int cast
+ avformat/http: Check that the protocol of redirects is http or https
+ avfilter/vf_find_rect: Fix handling odd sized images
+ avcodec/notchlc: zero-initialize history buffer
+ avfilter/vf_stack: add checks for the final canvas dimensions
+ avcodec/mjpegdec: only test the size bound in sequential mjpeg
+ avformat/hls: fix double space
+ avformat/hls: Check seg size and offset for overflow
+ avfilter/vf_neighbor_opencl: add error condition when filter name doesn't match
+ avfilter/vf_libopencv: make sure there is space for null-terminator in shape_str
+ fate: add missing options in config template
+ (fforge/pr/22413) aarch64/hpeldsp_neon: fix out-of-bounds read
+ (fforge/pr/22400) swscale/x86/yuv2rgb_template: Add emms to MMX(EXT) functions
+ forgejo: backport CI job names
+ (fforge/pr/21343) avformat/img2dec: reject input images too big to fit into a single packet
+ avcodec/aarch64/idct: Add missing stddef
+ tools/check_arm_indent: skip empty glob
+ all: apply linter fixes
+ forgejo: apply needed CI changes for 4.4
+ forgejo: backport CI to release/4.4
+ update for 4.4.7
  avutil/common: cast GET_BYTE/GET_16BIT returned value
  avcodec/utvideodec: Set B for the width= 1 case in restore_median_planar_il()
  avformat/rtpdec_rfc4175: Only change PayloadContext on success