Processing commands for [email protected]: > fixed 1121216 1.6.39-2+deb12u1 Bug #1121216 {Done: Tobias Frost <[email protected]>} [src:libpng1.6] libpng1.6: CVE-2025-65018 - Heap buffer overflow in png_combine_row Marked as fixed in versions libpng1.6/1.6.39-2+deb12u1. > fixed 1121216 1.6.48-1+deb13u1 Bug #1121216 {Done: Tobias Frost <[email protected]>} [src:libpng1.6] libpng1.6: CVE-2025-65018 - Heap buffer overflow in png_combine_row Marked as fixed in versions libpng1.6/1.6.48-1+deb13u1. > fixed 1121217 1.6.39-2+deb12u1 Bug #1121217 {Done: Tobias Frost <[email protected]>} [src:libpng1.6] libpng1.6: CVE-2025-64720 - Heap buffer overflow in png_init_read_transformations Marked as fixed in versions libpng1.6/1.6.39-2+deb12u1. > fixed 1121217 1.6.48-1+deb13u1 Bug #1121217 {Done: Tobias Frost <[email protected]>} [src:libpng1.6] libpng1.6: CVE-2025-64720 - Heap buffer overflow in png_init_read_transformations Marked as fixed in versions libpng1.6/1.6.48-1+deb13u1. > fixed 1121218 1.6.39-2+deb12u1 Bug #1121218 {Done: Tobias Frost <[email protected]>} [src:libpng1.6] libpng1.6: CVE-2025-64506 - Heap buffer over-read in png_write_image_8bit Marked as fixed in versions libpng1.6/1.6.39-2+deb12u1. > fixed 1121218 1.6.48-1+deb13u1 Bug #1121218 {Done: Tobias Frost <[email protected]>} [src:libpng1.6] libpng1.6: CVE-2025-64506 - Heap buffer over-read in png_write_image_8bit Marked as fixed in versions libpng1.6/1.6.48-1+deb13u1. > fixed 1121219 1.6.39-2+deb12u1 Bug #1121219 {Done: Tobias Frost <[email protected]>} [src:libpng1.6] libpng1.6: CVE-2025-64505 - Heap buffer over-read in png_do_quantize Marked as fixed in versions libpng1.6/1.6.39-2+deb12u1. > fixed 1121219 1.6.48-1+deb13u1 Bug #1121219 {Done: Tobias Frost <[email protected]>} [src:libpng1.6] libpng1.6: CVE-2025-64505 - Heap buffer over-read in png_do_quantize Marked as fixed in versions libpng1.6/1.6.48-1+deb13u1. > fixed 1121877 1.6.39-2+deb12u1 Bug #1121877 {Done: Tobias Frost <[email protected]>} [src:libpng1.6] libpng16: CVE-2025-66293 - Out-of-bounds read in png_image_read_composite Marked as fixed in versions libpng1.6/1.6.39-2+deb12u1. > fixed 1121877 1.6.48-1+deb13u1 Bug #1121877 {Done: Tobias Frost <[email protected]>} [src:libpng1.6] libpng16: CVE-2025-66293 - Out-of-bounds read in png_image_read_composite Marked as fixed in versions libpng1.6/1.6.48-1+deb13u1. > thanks Stopping processing here.
Please contact me if you need assistance. -- 1121216: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1121216 1121217: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1121217 1121218: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1121218 1121219: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1121219 1121877: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1121877 Debian Bug Tracking System Contact [email protected] with problems
