[Git][security-tracker-team/security-tracker][master] Add CVE-2025-61147/libde265
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Feb 23 20:48:43 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
7e0f737c by Salvatore Bonaccorso at 2026-02-23T21:48:18+01:00
Add CVE-2025-61147/libde265
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -57,7 +57,9 @@ CVE-2025-63946 (A privilege escalation (PE) vulnerability in the Tencent PC Mana
CVE-2025-63945 (A privilege escalation (PE) vulnerability in the Tencent iOA app thru ...)
NOT-FOR-US: Tencent iOA app
CVE-2025-61147 (strukturag libde265 commit d9fea9d wa discovered to contain a segmenta ...)
- TODO: check
+ - libde265 <unfixed>
+ NOTE: https://github.com/strukturag/libde265/issues/484
+ NOTE: Fixed by: https://github.com/strukturag/libde265/commit/8b17e0930f77db07f55e0b89399a8f054ddbecf7
CVE-2025-61146 (saitoha libsixel until v1.8.7 was discovered to contain a memory leak ...)
TODO: check
CVE-2025-61145 (libtiff up to v4.7.1 was discovered to contain a double free via the c ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7e0f737c80fea0fbf8e92f37826aac61971aa03d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7e0f737c80fea0fbf8e92f37826aac61971aa03d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260223/0cdc4b65/attachment.htm>
More information about the debian-security-tracker-commits
mailing list