[Git][security-tracker-team/security-tracker][master] Reserve DLA-4396-1 for libpng1.6

[Tobias Frost (@tobi)]

Tobias Frost pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5111a0b0 by Tobias Frost at 2025-12-07T09:27:51+01:00
Reserve DLA-4396-1 for libpng1.6

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[07 Dec 2025] DLA-4396-1 libpng1.6 - security update
+	{CVE-2025-64505 CVE-2025-64506 CVE-2025-64720 CVE-2025-65018 CVE-2025-66293}
+	[bullseye] - libpng1.6 1.6.37-3+deb11u1
 [05 Dec 2025] DLA-4395-1 krita - security update
 	{CVE-2025-59820}
 	[bullseye] - krita 1:4.4.2+dfsg-1+deb11u1


=====================================
data/dla-needed.txt
=====================================
@@ -203,11 +203,6 @@ libgd2 (guilhem)
   NOTE: 20251130: Fix CVE-2021-40812/CVE-2021-38115 regression from upgrade from buster (rouca)
   NOTE: 20251130: Check also CVE in libwmf embed copy of libgd2. (rouca)
 --
-libpng1.6 (tobi)
-  NOTE: 20251123: Added by Front-Desk (lamby)
-  NOTE: 20251123: tobi is contacting maintainers and has expressed wish to
-  NOTE: 20251123: prepare update for LTS. (lamby)
---
 libsndfile
   NOTE: 20251206: Added by Front-Desk (rouca)
   NOTE: 20251206: Closes CVE-2021-4156 fixed in buster (rouca/front-desk)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5111a0b05f48b12951791a2a2433146b6436ccc8

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5111a0b05f48b12951791a2a2433146b6436ccc8
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251207/e9b6756c/attachment-0001.htm>