[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2026-34743/xz-utils
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Apr 1 19:40:32 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8970cfff by Salvatore Bonaccorso at 2026-04-01T20:38:55+02:00
Add Debian bug reference for CVE-2026-34743/xz-utils
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -667,7 +667,7 @@ CVE-2026-5292 (Out of bounds read in WebCodecs in Google Chrome prior to 146.0.7
- chromium <unfixed>
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-34743 [liblzma: Fix a buffer overflow in lzma_index_append()]
- - xz-utils <unfixed>
+ - xz-utils <unfixed> (bug #1132497)
[trixie] - xz-utils <no-dsa> (Minor issue)
[bookworm] - xz-utils <no-dsa> (Minor issue)
NOTE: https://tukaani.org/xz/index-append-overflow.html
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8970cfff06b1c7d93f2c521ce94ba637bbf10ec0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8970cfff06b1c7d93f2c521ce94ba637bbf10ec0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260401/075e2c56/attachment.htm>
More information about the debian-security-tracker-commits
mailing list