Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6f2cb67e by Salvatore Bonaccorso at 2026-05-20T07:12:41+02:00
Mark evince-gtk3 as unimportant for CVE-2026-46529
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -24,13 +24,14 @@ CVE-2026-5090
NOTE: Fixed by:
https://github.com/cpan-authors/Template2/commit/11c78a7a771d4af505efeb754a0b8775689c2eae
CVE-2026-46529
- evince 49~alpha-3
- - evince-gtk3 48.4+dfsg-1
+ - evince-gtk3 48.4+dfsg-1 (unimportant)
- atril 1.28.4-1
- papers <unfixed>
NOTE: https://www.openwall.com/lists/oss-security/2026/05/19/34
NOTE: Fixed by:
https://gitlab.gnome.org/GNOME/evince/-/commit/970c219e861a5fcc3e7b9e05bedf18cf0de39245
(48.2)
NOTE: Fixed by:
https://github.com/mate-desktop/atril/commit/b989b7922a454ed81f8bb14786a958828513f576
(1.28.4)
NOTE: Fixed by:
https://gitlab.gnome.org/GNOME/papers/-/commit/1b82bf627b4d8b414a57b55a9095e6d361799d6c
+ NOTE: No security impact in evince-gtk3 since affected code not built
in binary package.
CVE-2026-8975
- firefox 151.0-1
- firefox-esr 140.11.0esr-1
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6f2cb67e16056f18c9dce7c93e81242ee111237c
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6f2cb67e16056f18c9dce7c93e81242ee111237c
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
