[Git][security-tracker-team/security-tracker][master] Add new okular issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Jun 3 21:42:51 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
beab8786 by Salvatore Bonaccorso at 2026-06-03T22:42:29+02:00
Add new okular issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,23 @@
+CVE-2026-XXXX [integer overflow in fax image allocation leads to undersized heap allocation]
+	- okular <unfixed>
+	NOTE: https://kde.org/info/security/advisory-20260511-5.txt
+	NOTE: https://commits.kde.org/okular/49cccdec814b2ddb0a403b63994114f09b007a2c
+CVE-2026-XXXX [unsigned integer wrap-around in fax backend leads to heap out-of-bounds read and write]
+	- okular <unfixed>
+	NOTE: https://kde.org/info/security/advisory-20260511-4.txt
+	NOTE: https://commits.kde.org/okular/e5f088674223019fafac26800a2ae0c0d6afc85b
+CVE-2026-XXXX [heap out-of-bounds read in fax backend Ghostscript header handling]
+	- okular <unfixed>
+	NOTE: https://kde.org/info/security/advisory-20260511-3.txt
+	NOTE: https://commits.kde.org/okular/e5f088674223019fafac26800a2ae0c0d6afc85b
+CVE-2026-XXXX [heap out-of-bounds read in fax backend FAXMAGIC comparison]
+	- okular <unfixed>
+	NOTE: https://kde.org/info/security/advisory-20260511-2.txt
+	NOTE: https://commits.kde.org/okular/e5f088674223019fafac26800a2ae0c0d6afc85b
+CVE-2026-XXXX [heap out-of-bounds write in fax backend on zero-length input]
+	- okular <unfixed>
+	NOTE: https://kde.org/info/security/advisory-20260511-1.txt
+	NOTE: https://commits.kde.org/okular/466786c354d890e39a3871f80ed686958d2513a2
 CVE-2026-49941
 	- libnet-cidr-set-perl 0.21-1
 	[trixie] - libnet-cidr-set-perl <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/beab8786020e40ce0b3f19aa9b5f8bbe8b923ca5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/beab8786020e40ce0b3f19aa9b5f8bbe8b923ca5
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260603/64eb5edf/attachment.htm>

More information about the debian-security-tracker-commits mailing list