[Git][security-tracker-team/security-tracker][master] Add three new tiff issues

Mon, 23 Feb 2026 12:46:13 -0800 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
49dc0f05 by Salvatore Bonaccorso at 2026-02-23T21:44:36+01:00
Add three new tiff issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -61,11 +61,20 @@ CVE-2025-61147 (strukturag libde265 commit d9fea9d wa 
discovered to contain a se
 CVE-2025-61146 (saitoha libsixel until v1.8.7 was discovered to contain a 
memory leak  ...)
        TODO: check
 CVE-2025-61145 (libtiff up to v4.7.1 was discovered to contain a double free 
via the c ...)
-       TODO: check
+       - tiff 4.7.1-1
+       NOTE: https://gitlab.com/libtiff/libtiff/-/issues/736
+       NOTE: https://gitlab.com/libtiff/libtiff/-/merge_requests/753
+       NOTE: Fixed by: 
https://gitlab.com/libtiff/libtiff/-/commit/0ac97aa7a5bffddd88f7cdbe517264e9db3f5bd5
 (v4.7.1rc1)
 CVE-2025-61144 (libtiff up to v4.7.1 was discovered to contain a stack 
overflow via th ...)
-       TODO: check
+       - tiff 4.7.1-1
+       NOTE: https://gitlab.com/libtiff/libtiff/-/issues/740
+       NOTE: https://gitlab.com/libtiff/libtiff/-/merge_requests/757
+       NOTE: Fixed by: 
https://gitlab.com/libtiff/libtiff/-/commit/88cf9dbb48f6e172629795ecffae35d5052f68aa
 (v4.7.1rc1)
 CVE-2025-61143 (libtiff up to v4.7.1 was discovered to contain a NULL pointer 
derefere ...)
-       TODO: check
+       - tiff 4.7.1-1
+       NOTE: https://gitlab.com/libtiff/libtiff/-/issues/737
+       NOTE: https://gitlab.com/libtiff/libtiff/-/merge_requests/755
+       NOTE: Fixed by: 
https://gitlab.com/libtiff/libtiff/-/commit/4d28af5fe61b1760f10981f5072ff1e6fd44f210
 (v4.7.1rc1)
 CVE-2025-59873 (An information exposure vulnerability exists in  Vulnerability 
in HCL  ...)
        NOT-FOR-US: HCL
 CVE-2025-41002 (SQL injection vulnerability in Infoticketing. This 
vulnerability allow ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/49dc0f05a64f407a9c94a9ddca3ebf93ea8ca17b

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/49dc0f05a64f407a9c94a9ddca3ebf93ea8ca17b
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to