Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
dad0046b by Salvatore Bonaccorso at 2026-06-18T21:36:40+02:00
Add CVE-2026-8461/ffmpeg
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5,7 +5,10 @@ CVE-2026-9158 (In Eclipse 4diac FORTE versions 3.0.0 to 3.1.0,
a specially craft
CVE-2026-8811 (SEPPmail versions before 15.0.5 allow improper handling of
attachment ...)
NOT-FOR-US: SEPPmail
CVE-2026-8461 (An out-of-bounds write vulnerability in FFmpeg's libavcodec
library, s ...)
- TODO: check
+ - ffmpeg <unfixed>
+ NOTE: https://code.ffmpeg.org/FFmpeg/FFmpeg/pulls/23159
+ NOTE: Fixed by:
https://code.ffmpeg.org/FFmpeg/FFmpeg/commit/c23d4da3128c279b714b282e6ec292e8755007e3
(master)
+ NOTE: Fixed by:
https://code.ffmpeg.org/FFmpeg/FFmpeg/commit/a991b3e1102824730de6b0b2afd1c7e41fbdf03d
(n8.1.2)
CVE-2026-8039 (The Fancy Testimonials plugin for WordPress is vulnerable to
Stored Cr ...)
NOT-FOR-US: WordPress plugin
CVE-2026-8024 (A remote, unauthenticated attacker may exploit a
deserialization of un ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dad0046b85fa777ecf6479c937726e5c47b0b725
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dad0046b85fa777ecf6479c937726e5c47b0b725
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits