[Git][security-tracker-team/security-tracker][master] Track CVE-2026-40962 beeing covered by DSA-6268-1

Salvatore Bonaccorso (@carnil) Fri, 15 May 2026 04:31:11 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
392aa260 by Salvatore Bonaccorso at 2026-05-15T13:30:35+02:00
Track CVE-2026-40962 beeing covered by DSA-6268-1

- - - - -


2 changed files:

- data/CVE/list
- data/DSA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -18257,7 +18257,6 @@ CVE-2026-41015 (radare2 before 9236f44, when configured 
on UNIX without SSL, all
        NOTE: Fixed by: 
https://github.com/radareorg/radare2/commit/9236f44a28812fe911814e1b3a7bcf1e4de5d3c2
 (6.1.4)
 CVE-2026-40962 (FFmpeg before 8.1 has an integer overflow and resultant 
out-of-bounds  ...)
        - ffmpeg 7:8.1-1
-       [trixie] - ffmpeg <postponed> (Minor issue, wait until it's fixed in 
the 7.1 branch)
        [bookworm] - ffmpeg <postponed> (Minor issue, wait until it's fixed in 
the 5.1 branch)
        [bullseye] - ffmpeg <postponed> (minor issue)
        NOTE: https://code.ffmpeg.org/FFmpeg/FFmpeg/pulls/22348


=====================================
data/DSA/list
=====================================
@@ -11,6 +11,7 @@
        {CVE-2026-6472 CVE-2026-6473 CVE-2026-6474 CVE-2026-6475 CVE-2026-6477 
CVE-2026-6478 CVE-2026-6479 CVE-2026-6637}
        [bookworm] - postgresql-15 15.18-0+deb12u1
 [14 May 2026] DSA-6268-1 ffmpeg - security update
+       {CVE-2026-40962}
        [trixie] - ffmpeg 7:7.1.4-0+deb13u1
 [14 May 2026] DSA-6267-1 thunderbird - security update
        {CVE-2026-8090 CVE-2026-8092 CVE-2026-8094}



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/392aa2600c5fa66211adffcf740fb67e0986d772

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/392aa2600c5fa66211adffcf740fb67e0986d772
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Track CVE-2026-40962 beeing covered by DSA-6268-1

Reply via email to