Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
cbdd9878 by Salvatore Bonaccorso at 2026-02-08T07:01:17+01:00
Track fixed version for CVE-2026-25556/mupdf via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -318,7 +318,7 @@ CVE-2026-25587 (SandboxJS is a JavaScript sandboxing
library. Prior to 0.8.29, a
CVE-2026-25586 (SandboxJS is a JavaScript sandboxing library. Prior to 0.8.29,
a sandb ...)
NOT-FOR-US: SandboxJS Node module
CVE-2026-25556 (MuPDF versions 1.23.0 through 1.27.0 contain a double-free
vulnerabili ...)
- - mupdf <unfixed> (bug #1127318)
+ - mupdf 1.27.0+ds1-3 (bug #1127318)
[trixie] - mupdf <no-dsa> (Minor issue)
[bookworm] - mupdf <not-affected> (Vulnerable code introduced later)
[bullseye] - mupdf <not-affected> (Vulnerable code introduced later)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cbdd98783abca02a65c895df67e904cff3f88eb9
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cbdd98783abca02a65c895df67e904cff3f88eb9
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
