Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a59108bc by Salvatore Bonaccorso at 2026-02-24T20:58:31+01:00
Add CVE-2026-26981/openexr
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -309,7 +309,10 @@ CVE-2026-26983 (ImageMagick is free and open-source
software used for editing an
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick/commit/7cfae4da24a995fb05386d77364ff404a7cca7bc
(7.1.2-14)
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick6/commit/b34591e9067df9cd6fe73b71b1f0d20b3c2bbbc0
(6.9.13-39)
CVE-2026-26981 (OpenEXR provides the specification and reference
implementation of the ...)
- TODO: check
+ - openexr <not-affected> (Vulnerable code not present)
+ NOTE:
https://github.com/AcademySoftwareFoundation/openexr/security/advisories/GHSA-q6vj-wxvf-5m8c
+ NOTE: Fixed by:
https://github.com/AcademySoftwareFoundation/openexr/commit/6bb2ddf1068573d073edf81270a015b38cc05cef
(v3.4.5-rc)
+ NOTE: Fixed by:
https://github.com/AcademySoftwareFoundation/openexr/commit/d2be382758adc3e9ab83a3de35138ec28d93ebd8
(v3.3.7-rc)
CVE-2026-26331 (yt-dlp is a command-line audio/video downloader. Starting in
version 2 ...)
- yt-dlp 2026.02.21-1
NOTE:
https://github.com/yt-dlp/yt-dlp/security/advisories/GHSA-g3gw-q23r-pgqm
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a59108bcdd3d0edbcb512dcfe5ef575878e507ba
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a59108bcdd3d0edbcb512dcfe5ef575878e507ba
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
