[Git][security-tracker-team/security-tracker][master] Reserve DSA number for gnutls28 update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Feb 18 11:51:15 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
fef2dfad by Salvatore Bonaccorso at 2026-02-18T12:50:39+01:00
Reserve DSA number for gnutls28 update
- - - - -
3 changed files:
- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -36021,7 +36021,7 @@ CVE-2025-9820 (A flaw was found in the GnuTLS library, specifically in the gnutl
[experimental] - gnutls28 3.8.11-1
- gnutls28 3.8.11-3 (bug #1121146)
[trixie] - gnutls28 3.8.9-3+deb13u1
- [bookworm] - gnutls28 <no-dsa> (Minor issue)
+ [bookworm] - gnutls28 3.7.9-2+deb12u6
[bullseye] - gnutls28 <postponed> (Minor issue; can be fixed in next update)
NOTE: https://www.gnutls.org/security-new.html#GNUTLS-SA-2025-11-18
NOTE: https://gitlab.com/gnutls/gnutls/-/issues/1732
=====================================
data/DSA/list
=====================================
@@ -1,3 +1,7 @@
+[18 Feb 2026] DSA-6140-1 gnutls28 - security update
+ {CVE-2025-14831}
+ [bookworm] - gnutls28 3.7.9-2+deb12u6
+ [trixie] - gnutls28 3.8.9-3+deb13u2
[18 Feb 2026] DSA-6139-1 gimp - security update
{CVE-2026-2239 CVE-2026-2271 CVE-2026-2272}
[bookworm] - gimp 2.10.34-1+deb12u8
=====================================
data/dsa-needed.txt
=====================================
@@ -26,9 +26,6 @@ frr/oldstable
--
gegl (carnil)
--
-gnutls28 (carnil)
- Maintainer prepared updates for review
---
gh/oldstable
Santiago Vila might work on preparing an update
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fef2dfad3c2e78f4f833d81781987472722112b0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fef2dfad3c2e78f4f833d81781987472722112b0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260218/806f5fdf/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list