[Git][security-tracker-team/security-tracker][master] Mention DSA-6232-1 in the webkit2gtk EOL notes for bookworm
Alberto Garcia (@berto)
berto at debian.org
Tue Apr 28 09:03:06 BST 2026
Alberto Garcia pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d5718868 by Alberto Garcia at 2026-04-28T10:02:51+02:00
Mention DSA-6232-1 in the webkit2gtk EOL notes for bookworm
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -18583,7 +18583,7 @@ CVE-2026-28874 (The issue was addressed with improved checks. This issue is fixe
NOT-FOR-US: Apple
CVE-2026-28871 (A logic issue was addressed with improved checks. This issue is fixed ...)
- webkit2gtk 2.52.1-1
- [bookworm] - webkit2gtk <end-of-life> (webkit2gtk >= 2.52 can no longer be backported)
+ [bookworm] - webkit2gtk <end-of-life> (see DSA-6232-1)
- wpewebkit 2.52.1-1
[trixie] - wpewebkit <ignored> (wpewebkit not covered by security support in Trixie)
[bookworm] - wpewebkit <ignored> (wpewebkit not covered by security support in Bookworm)
@@ -18607,7 +18607,7 @@ CVE-2026-28862 (A privacy issue was addressed with improved private data redacti
NOT-FOR-US: Apple
CVE-2026-28861 (A logic issue was addressed with improved state management. This issue ...)
- webkit2gtk 2.52.1-1
- [bookworm] - webkit2gtk <end-of-life> (webkit2gtk >= 2.52 can no longer be backported)
+ [bookworm] - webkit2gtk <end-of-life> (see DSA-6232-1)
- wpewebkit 2.52.1-1
[trixie] - wpewebkit <ignored> (wpewebkit not covered by security support in Trixie)
[bookworm] - wpewebkit <ignored> (wpewebkit not covered by security support in Bookworm)
@@ -18615,7 +18615,7 @@ CVE-2026-28861 (A logic issue was addressed with improved state management. This
NOTE: https://webkitgtk.org/security/WSA-2026-0002.html
CVE-2026-28859 (The issue was addressed with improved memory handling. This issue is f ...)
- webkit2gtk 2.52.1-1
- [bookworm] - webkit2gtk <end-of-life> (webkit2gtk >= 2.52 can no longer be backported)
+ [bookworm] - webkit2gtk <end-of-life> (see DSA-6232-1)
- wpewebkit 2.52.1-1
[trixie] - wpewebkit <ignored> (wpewebkit not covered by security support in Trixie)
[bookworm] - wpewebkit <ignored> (wpewebkit not covered by security support in Bookworm)
@@ -18625,7 +18625,7 @@ CVE-2026-28858 (A buffer overflow was addressed with improved bounds checking. T
NOT-FOR-US: Apple
CVE-2026-28857 (The issue was addressed with improved memory handling. This issue is f ...)
- webkit2gtk 2.52.1-1
- [bookworm] - webkit2gtk <end-of-life> (webkit2gtk >= 2.52 can no longer be backported)
+ [bookworm] - webkit2gtk <end-of-life> (see DSA-6232-1)
- wpewebkit 2.52.1-1
[trixie] - wpewebkit <ignored> (wpewebkit not covered by security support in Trixie)
[bookworm] - wpewebkit <ignored> (wpewebkit not covered by security support in Bookworm)
@@ -18723,7 +18723,7 @@ CVE-2026-20692 (A privacy issue was addressed with improved handling of user pre
NOT-FOR-US: Apple
CVE-2026-20691 (An authorization issue was addressed with improved state management. T ...)
- webkit2gtk 2.52.1-1
- [bookworm] - webkit2gtk <end-of-life> (webkit2gtk >= 2.52 can no longer be backported)
+ [bookworm] - webkit2gtk <end-of-life> (see DSA-6232-1)
- wpewebkit 2.52.1-1
[trixie] - wpewebkit <ignored> (wpewebkit not covered by security support in Trixie)
[bookworm] - wpewebkit <ignored> (wpewebkit not covered by security support in Bookworm)
@@ -18745,7 +18745,7 @@ CVE-2026-20668 (A logging issue was addressed with improved data redaction. This
NOT-FOR-US: Apple
CVE-2026-20665 (This issue was addressed through improved state management. This issue ...)
- webkit2gtk 2.52.1-1
- [bookworm] - webkit2gtk <end-of-life> (webkit2gtk >= 2.52 can no longer be backported)
+ [bookworm] - webkit2gtk <end-of-life> (see DSA-6232-1)
- wpewebkit 2.52.1-1
[trixie] - wpewebkit <ignored> (wpewebkit not covered by security support in Trixie)
[bookworm] - wpewebkit <ignored> (wpewebkit not covered by security support in Bookworm)
@@ -18753,7 +18753,7 @@ CVE-2026-20665 (This issue was addressed through improved state management. This
NOTE: https://webkitgtk.org/security/WSA-2026-0002.html
CVE-2026-20664 (The issue was addressed with improved memory handling. This issue is f ...)
- webkit2gtk 2.52.1-1
- [bookworm] - webkit2gtk <end-of-life> (webkit2gtk >= 2.52 can no longer be backported)
+ [bookworm] - webkit2gtk <end-of-life> (see DSA-6232-1)
- wpewebkit 2.52.1-1
[trixie] - wpewebkit <ignored> (wpewebkit not covered by security support in Trixie)
[bookworm] - wpewebkit <ignored> (wpewebkit not covered by security support in Bookworm)
@@ -22833,7 +22833,7 @@ CVE-2026-21994 (Vulnerability in the Oracle Edge Cloud Infrastructure Designer a
NOT-FOR-US: Oracle
CVE-2026-20643 (A cross-origin issue in the Navigation API was addressed with improved ...)
- webkit2gtk 2.52.1-1
- [bookworm] - webkit2gtk <end-of-life> (webkit2gtk >= 2.52 can no longer be backported)
+ [bookworm] - webkit2gtk <end-of-life> (see DSA-6232-1)
- wpewebkit 2.52.1-1
[trixie] - wpewebkit <ignored> (wpewebkit not covered by security support in Trixie)
[bookworm] - wpewebkit <ignored> (wpewebkit not covered by security support in Bookworm)
@@ -50786,7 +50786,7 @@ CVE-2025-51626 (SQL injection vulnerability in pss.sale.com 1.0 via the id param
NOT-FOR-US: pss.sale.com
CVE-2025-46299 (A memory initialization issue was addressed with improved memory handl ...)
- webkit2gtk 2.52.0-1
- [bookworm] - webkit2gtk <end-of-life> (webkit2gtk >= 2.52 can no longer be backported)
+ [bookworm] - webkit2gtk <end-of-life> (see DSA-6232-1)
- wpewebkit 2.52.0-1
[trixie] - wpewebkit <ignored> (wpewebkit not covered by security support in Trixie)
[bookworm] - wpewebkit <ignored> (wpewebkit not covered by security support in Bookworm)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d5718868462e83ef0d494acabead7c43f0ebc4b8
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d5718868462e83ef0d494acabead7c43f0ebc4b8
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260428/7b0b7913/attachment.htm>
More information about the debian-security-tracker-commits
mailing list