[Git][security-tracker-team/security-tracker][master] Add new vips issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Feb 27 08:28:37 GMT 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
06d7f72f by Salvatore Bonaccorso at 2026-02-27T09:27:53+01:00
Add new vips issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -15,13 +15,25 @@ CVE-2026-3286 (A vulnerability was identified in itwanger paicoding 1.0.0/1.0.1/
 CVE-2026-3285 (A vulnerability was determined in berry-lang berry up to 1.1.0. The af ...)
 	NOT-FOR-US: berry-lang berry
 CVE-2026-3284 (A vulnerability was found in libvips 8.19.0. Impacted is the function  ...)
-	TODO: check
+	- vips <unfixed>
+	NOTE: https://github.com/libvips/libvips/issues/4879
+	NOTE: https://github.com/libvips/libvips/pull/4887
+	NOTE: Fixed by: https://github.com/libvips/libvips/commit/24795bb3d19d84f7b6f5ed86451ad556c8f2fe70
 CVE-2026-3283 (A vulnerability has been found in libvips 8.19.0. This issue affects t ...)
-	TODO: check
+	- vips <unfixed>
+	NOTE: https://github.com/libvips/libvips/issues/4880
+	NOTE: https://github.com/libvips/libvips/pull/4887
+	NOTE: Fixed by: https://github.com/libvips/libvips/commit/24795bb3d19d84f7b6f5ed86451ad556c8f2fe70
 CVE-2026-3282 (A flaw has been found in libvips 8.19.0. This vulnerability affects th ...)
-	TODO: check
+	- vips <unfixed>
+	NOTE: https://github.com/libvips/libvips/issues/4881
+	NOTE: https://github.com/libvips/libvips/pull/4886
+	NOTE: Fixed by: https://github.com/libvips/libvips/commit/7215ead1e0cd7d3703cc4f5fca06d7d0f4c22b91
 CVE-2026-3281 (A vulnerability was detected in libvips 8.19.0. This affects the funct ...)
-	TODO: check
+	- vips <unfixed>
+	NOTE: https://github.com/libvips/libvips/issues/4878
+	NOTE: https://github.com/libvips/libvips/pull/4895
+	NOTE: Fixed by: https://github.com/libvips/libvips/commit/fd28c5463697712cb0ab116a2c55e4f4d92c4088
 CVE-2026-3275 (A weakness has been identified in Tenda F453 1.0.0.3. This affects the ...)
 	NOT-FOR-US: Tenda
 CVE-2026-3274 (A security flaw has been discovered in Tenda F453 1.0.0.3. Affected by ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/06d7f72f3e38805bfd3b203ee387c78c1dc621c3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/06d7f72f3e38805bfd3b203ee387c78c1dc621c3
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260227/25441ceb/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list