[Git][security-tracker-team/security-tracker][master] Track fixed version for gimp issues fixed via unstable

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
189ff956 by Salvatore Bonaccorso at 2026-02-16T06:07:21+01:00
Track fixed version for gimp issues fixed via unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2096,11 +2096,11 @@ CVE-2025-12699 (The ZOLL ePCR IOS application reflects unsanitized user input in
 CVE-2025-10912 (Authorization Bypass Through User-Controlled Key vulnerability in Saas ...)
 	NOT-FOR-US: TemizlikYolda
 CVE-2026-2272 [ICO import integer overflow bypass leads to heap buffer overflow]
-	- gimp <unfixed> (bug #1127842)
+	- gimp 3.2.0~RC2-3.2 (bug #1127842)
 	NOTE: https://gitlab.gnome.org/GNOME/gimp/-/issues/15617
 	NOTE: Fixed by: https://gitlab.gnome.org/GNOME/gimp/-/commit/058ada8f3ffc0a42b7dd1561a8817c8cc83b7d2a
 CVE-2026-2271 [GIMP PSP File Parsing Integer Overflow Leading to Heap Corruption]
-	- gimp <unfixed> (bug #1127841)
+	- gimp 3.2.0~RC2-3.2 (bug #1127841)
 	NOTE: https://gitlab.gnome.org/GNOME/gimp/-/issues/15732
 	NOTE: Fixed by: https://gitlab.gnome.org/GNOME/gimp/-/commit/d9d0f5b4e642dd5b101e70728042027d568bb01d
 	NOTE: Fixed by: https://gitlab.gnome.org/GNOME/gimp/-/commit/0e63f096fa5f7dc3fae0a8e865fd5a05ebe45da8 (GIMP_3_0_8)
@@ -2826,7 +2826,7 @@ CVE-2025-11547 (AXIS Camera Station Pro contained a flaw toperform a privilege e
 CVE-2025-11142 (The VAPIX API mediaclip.cgi that did not have a sufficient input valid ...)
 	NOT-FOR-US: Axis Communication
 CVE-2026-2239 [PSD loader: heap-buffer-overflow in fread_pascal_string() (no null terminator)]
-	- gimp <unfixed> (bug #1127839)
+	- gimp 3.2.0~RC2-3.2 (bug #1127839)
 	[trixie] - gimp <no-dsa> (Minor issue)
 	[bookworm] - gimp <no-dsa> (Minor issue)
 	NOTE: https://gitlab.gnome.org/GNOME/gimp/-/issues/15812



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/189ff9565c55356c09d8955e0aa92b8130e1e10c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/189ff9565c55356c09d8955e0aa92b8130e1e10c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260216/7d92095c/attachment.htm>