[Git][security-tracker-team/security-tracker][master] Track fixes for okular via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Jun 13 16:09:52 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5347483d by Salvatore Bonaccorso at 2026-06-13T17:09:22+02:00
Track fixes for okular via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6996,31 +6996,31 @@ CVE-2026-8829 (HTML::Entities versions before 3.84 for Perl read freed heap memo
CVE-2026-8722 (Net::Async::Statsd::Client versions through 0.005 for Perl allow metri ...)
NOT-FOR-US: Net::Async::Statsd::Client Perl module
CVE-2026-XXXX [integer overflow in fax image allocation leads to undersized heap allocation]
- - okular <unfixed> (bug #1139009)
+ - okular 4:26.04.2-1 (bug #1139009)
[trixie] - okular 4:25.04.2-1+deb13u1
[bookworm] - okular 4:22.12.3-1+deb12u1
NOTE: https://kde.org/info/security/advisory-20260511-5.txt
NOTE: https://commits.kde.org/okular/49cccdec814b2ddb0a403b63994114f09b007a2c
CVE-2026-XXXX [unsigned integer wrap-around in fax backend leads to heap out-of-bounds read and write]
- - okular <unfixed> (bug #1139008)
+ - okular 4:26.04.2-1 (bug #1139008)
[trixie] - okular 4:25.04.2-1+deb13u1
[bookworm] - okular 4:22.12.3-1+deb12u1
NOTE: https://kde.org/info/security/advisory-20260511-4.txt
NOTE: https://commits.kde.org/okular/e5f088674223019fafac26800a2ae0c0d6afc85b
CVE-2026-XXXX [heap out-of-bounds read in fax backend Ghostscript header handling]
- - okular <unfixed> (bug #1139007)
+ - okular 4:26.04.2-1 (bug #1139007)
[trixie] - okular 4:25.04.2-1+deb13u1
[bookworm] - okular 4:22.12.3-1+deb12u1
NOTE: https://kde.org/info/security/advisory-20260511-3.txt
NOTE: https://commits.kde.org/okular/e5f088674223019fafac26800a2ae0c0d6afc85b
CVE-2026-XXXX [heap out-of-bounds read in fax backend FAXMAGIC comparison]
- - okular <unfixed> (bug #1139005)
+ - okular 4:26.04.2-1 (bug #1139005)
[trixie] - okular 4:25.04.2-1+deb13u1
[bookworm] - okular 4:22.12.3-1+deb12u1
NOTE: https://kde.org/info/security/advisory-20260511-2.txt
NOTE: https://commits.kde.org/okular/e5f088674223019fafac26800a2ae0c0d6afc85b
CVE-2026-XXXX [heap out-of-bounds write in fax backend on zero-length input]
- - okular <unfixed> (bug #1139004)
+ - okular 4:26.04.2-1 (bug #1139004)
[trixie] - okular 4:25.04.2-1+deb13u1
[bookworm] - okular 4:22.12.3-1+deb12u1
NOTE: https://kde.org/info/security/advisory-20260511-1.txt
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5347483d9d3c2299cc75781a5ebc2713240f81e7
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5347483d9d3c2299cc75781a5ebc2713240f81e7
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260613/394f5996/attachment.htm>
More information about the debian-security-tracker-commits
mailing list