[Git][security-tracker-team/security-tracker][master] weasyprint fixed in sid and new issue
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Mon Jun 15 13:06:22 BST 2026
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
058fb346 by Moritz Muehlenhoff at 2026-06-15T14:05:45+02:00
weasyprint fixed in sid and new issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,7 @@
+CVE-2026-49452
+ - weasyprint 69.0-1
+ NOTE: https://www.courtbouillon.org/blog/00067-weasyprint-69/
+ NOTE: https://github.com/Kozea/WeasyPrint/security/advisories/GHSA-jhhc-3hcp-qhm5
CVE-2026-54413 (driftregion iso14229 through 0.9.0 contains an integer underflow and d ...)
NOT-FOR-US: driftregion iso14229
CVE-2026-54412 (LiamBindle MQTT-C through version 1.1.6 contains a heap-based out-of-b ...)
@@ -80414,11 +80418,12 @@ CVE-2025-69199 (Wings is the server control plane for Pterodactyl, a free, open-
CVE-2025-69198 (Pterodactyl is a free, open-source game server management panel. Ptero ...)
NOT-FOR-US: Pterodactyl
CVE-2025-68616 (WeasyPrint helps web developers to create PDF documents. Prior to vers ...)
- - weasyprint <unfixed> (bug #1139189)
+ - weasyprint 69.0-1 (bug #1139189)
[trixie] - weasyprint <no-dsa> (Minor issue)
[bookworm] - weasyprint <no-dsa> (Minor issue)
[bullseye] - weasyprint <postponed> (Minor issue)
NOTE: https://github.com/Kozea/WeasyPrint/security/advisories/GHSA-983w-rhvv-gwmv
+ NOTE: https://github.com/Kozea/WeasyPrint/commit/b6a14f0f3f4ce9c0c75c1a2d73cb1c5d43f0e565 (v68.0)
CVE-2025-61684 (Quicly, an IETF QUIC protocol implementation, is susceptible to a deni ...)
NOT-FOR-US: Quicly
CVE-2025-55252 (HCL AION version 2 is affected by a Weak Password Policy vulnerability ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/058fb3460667eed4bb5ae4147a458c0db9391552
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/058fb3460667eed4bb5ae4147a458c0db9391552
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260615/f278fade/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list