[Git][security-tracker-team/security-tracker][master] Reserve DLA-4550-1 for libde265

Mon Apr 27 08:52:20 BST 2026


Andreas Henriksson pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7a76aa8d by Andreas Henriksson at 2026-04-27T09:52:11+02:00
Reserve DLA-4550-1 for libde265

- - - - -


3 changed files:

- data/CVE/list
- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -251306,7 +251306,6 @@ CVE-2023-51793 (Buffer Overflow vulnerability in Ffmpeg v.N113007-g8d24a28d06 al
 CVE-2023-51792 (Buffer Overflow vulnerability in libde265 v1.0.12 allows a local attac ...)
 	- libde265 1.0.13-1
 	[bookworm] - libde265 <no-dsa> (Minor issue)
-	[bullseye] - libde265 <no-dsa> (Minor issue)
 	[buster] - libde265 <postponed> (Minor issue)
 	NOTE: https://github.com/strukturag/libde265/issues/427
 	NOTE: Fixed by: https://github.com/strukturag/libde265/commit/221e767136b8c46c748ae35b79ec9b976b3da301 (v1.0.13)


=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[27 Apr 2026] DLA-4550-1 libde265 - security update
+	{CVE-2023-51792 CVE-2026-33164 CVE-2026-33165}
+	[bullseye] - libde265 1.0.11-0+deb11u4
 [26 Apr 2026] DLA-4549-1 thunderbird - security update
 	{CVE-2026-6746 CVE-2026-6747 CVE-2026-6748 CVE-2026-6749 CVE-2026-6750 CVE-2026-6751 CVE-2026-6752 CVE-2026-6753 CVE-2026-6754 CVE-2026-6757 CVE-2026-6761 CVE-2026-6762 CVE-2026-6763 CVE-2026-6764 CVE-2026-6765 CVE-2026-6766 CVE-2026-6767 CVE-2026-6769 CVE-2026-6770 CVE-2026-6771 CVE-2026-6772 CVE-2026-6776 CVE-2026-6785 CVE-2026-6786}
 	[bullseye] - thunderbird 1:140.10.0esr-1~deb11u1


=====================================
data/dla-needed.txt
=====================================
@@ -251,9 +251,6 @@ libarchive (arnaudr)
   NOTE: 20260405: Added by Front-Desk (ta)
   NOTE: 20260405: no upstream fix yet
 --
-libde265 (ah)
-  NOTE: 20260405: Added by Front-Desk (ta)
---
 libexif (eamanu)
   NOTE: 20260405: Added by Front-Desk (ta)
   NOTE: 20260416: I sent a MR to the maintainer. Waiting to be accepted or uploaded to unstable.



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7a76aa8d2177388d783bb0144d4c71afbe6c1516

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7a76aa8d2177388d783bb0144d4c71afbe6c1516
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260427/697566e1/attachment.htm>
