[Git][security-tracker-team/security-tracker][master] trixie triage
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Tue Jun 16 17:00:59 BST 2026
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
fb18c547 by Moritz Muehlenhoff at 2026-06-16T18:00:19+02:00
trixie triage
- - - - -
2 changed files:
- data/CVE/list
- data/dsa-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -625,6 +625,7 @@ CVE-2026-XXXX [NTLM client: Avoid use-of-unitialized-value inside libntlm]
NOTE: https://lists.gnu.org/archive/html/help-gsasl/2026-06/msg00000.html
CVE-2026-53704 (A flaw was found in GStreamer's RealMedia demuxer in the gst-plugins-u ...)
- gst-plugins-ugly1.0 1.28.4-1
+ [trixie] - gst-plugins-ugly1.0 <no-dsa> (Minor issue)
NOTE: https://gstreamer.freedesktop.org/security/sa-2026-0042.html
NOTE: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/11825
NOTE: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/11826 (1.28.4)
@@ -632,6 +633,7 @@ CVE-2026-53704 (A flaw was found in GStreamer's RealMedia demuxer in the gst-plu
NOTE: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/11832 (1.24 branch)
CVE-2026-53703 (A vulnerability was found in the GStreamer RealMedia demuxer (gst-plug ...)
- gst-plugins-ugly1.0 1.28.4-1
+ [trixie] - gst-plugins-ugly1.0 <no-dsa> (Minor issue)
NOTE: https://gstreamer.freedesktop.org/security/sa-2026-0042.html
NOTE: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/11825
NOTE: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/11826 (1.28.4)
=====================================
data/dsa-needed.txt
=====================================
@@ -40,6 +40,8 @@ gst-libav1.0
--
gst-plugins-bad1.0
--
+gst-plugins-good1.0
+--
imagemagick
Bastien Roucaries will prepare updates
--
@@ -52,6 +54,8 @@ kamailio
kitty
Maintainer proposed debdiff for review in https://bugs.debian.org/1139898#15
--
+libconfig-inifiles-perl (carnil)
+--
libhttp-daemon-perl (carnil)
Maybe yet in point release
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fb18c54739a912628b75ba690ffafbe06213be1c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fb18c54739a912628b75ba690ffafbe06213be1c
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260616/2d6c1a9d/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list