[Git][security-tracker-team/security-tracker][master] Track fixed version for libde265 issues

Thu, 02 Apr 2026 23:00:49 -0700 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
eeae623b by Salvatore Bonaccorso at 2026-04-03T08:00:09+02:00
Track fixed version for libde265 issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -7100,11 +7100,11 @@ CVE-2026-33171 (Statamic is a Laravel and Git powered 
content management system
 CVE-2026-33166 (Allure 2 is the version 2.x branch of Allure Report, a 
multi-language  ...)
        NOT-FOR-US: Allure
 CVE-2026-33165 (libde265 is an open source implementation of the h.265 video 
codec. Pr ...)
-       - libde265 <unfixed> (bug #1131468)
+       - libde265 1.0.18-1 (bug #1131468)
        NOTE: 
https://github.com/strukturag/libde265/security/advisories/GHSA-653q-9f73-8hvg
        NOTE: Fixed by: 
https://github.com/strukturag/libde265/commit/c7891e412106130b83f8e8ea8b7f907e9449b658
 (v1.0.17)
 CVE-2026-33164 (libde265 is an open source implementation of the h.265 video 
codec. Pr ...)
-       - libde265 <unfixed> (bug #1131469)
+       - libde265 1.0.18-1 (bug #1131469)
        NOTE: 
https://github.com/strukturag/libde265/security/advisories/GHSA-wqrf-6rf5-v78r
 CVE-2026-33156 (ScreenToGif is a screen recording tool. In versions from 
2.42.1 and pr ...)
        NOT-FOR-US: ScreenToGif
@@ -18984,7 +18984,7 @@ CVE-2025-63946 (A privilege escalation (PE) 
vulnerability in the Tencent PC Mana
 CVE-2025-63945 (A privilege escalation (PE) vulnerability in the Tencent iOA 
app thru  ...)
        NOT-FOR-US: Tencent iOA app
 CVE-2025-61147 (strukturag libde265 commit d9fea9d wa discovered to contain a 
segmenta ...)
-       - libde265 <unfixed> (bug #1129257)
+       - libde265 1.0.18-1 (bug #1129257)
        NOTE: https://github.com/strukturag/libde265/issues/484
        NOTE: Fixed by: 
https://github.com/strukturag/libde265/commit/8b17e0930f77db07f55e0b89399a8f054ddbecf7
 CVE-2025-61146 (saitoha libsixel until v1.8.7 was discovered to contain a 
memory leak  ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/eeae623b65acb0d3d5652960c64e3329aa6ddb7b

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/eeae623b65acb0d3d5652960c64e3329aa6ddb7b
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to