Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
91590234 by Salvatore Bonaccorso at 2026-07-08T05:59:14+02:00
postfix update for CVE-2026-43964 superseeded in version via DSA
Track the version which got accepted into proposed-updates as this was
finally seen in the archive as well as the fixing version.
- - - - -
2 changed files:
- data/CVE/list
- data/next-point-update.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -45888,7 +45888,7 @@ CVE-2026-43868 (Memory Allocation with Excessive Size
Value vulnerability in Apa
NOTE: rust bindings not built in Debian package
CVE-2026-43964 (Postfix before 3.8.16, 3.9 before 3.9.10, and 3.10 before
3.10.9 somet ...)
- postfix 3.11.2-1 (bug #1135718)
- [trixie] - postfix <no-dsa> (Minor issue)
+ [trixie] - postfix 3.10.10-0+deb13u1
[bookworm] - postfix <no-dsa> (Minor issue)
[bullseye] - postfix <postponed> (Minor issue, 1-byte OOB read in
non-SMTP code)
NOTE:
https://www.mail-archive.com/[email protected]/msg00110.html
=====================================
data/next-point-update.txt
=====================================
@@ -110,8 +110,6 @@ CVE-2026-55748
[trixie] - horizon 3:25.3.0-3+deb13u1
CVE-2025-55174
[trixie] - skanpage 25.04.2-1+deb13u1
-CVE-2026-43964
- [trixie] - postfix 3.10.10-0+deb13u1
CVE-2026-8341
[trixie] - qemu 1:10.0.10+ds-0+deb13u1
CVE-2026-41440
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/91590234fe145358192da483db03ccdb640c2582
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/91590234fe145358192da483db03ccdb640c2582
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits