[Git][security-tracker-team/security-tracker][master] Add Debian bug references for libpng1.6 issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Mar 26 22:25:24 GMT 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
03fa20d9 by Salvatore Bonaccorso at 2026-03-26T23:24:55+01:00
Add Debian bug references for libpng1.6 issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -329,7 +329,7 @@ CVE-2026-23396 (In the Linux kernel, the following vulnerability has been resolv
 	- linux <unfixed>
 	NOTE: https://git.kernel.org/linus/c73bb9a2d33bf81f6eecaa0f474b6c6dbe9855bd (7.0-rc5)
 CVE-2026-33416 (LIBPNG is a reference library for use in applications that read, creat ...)
-	- libpng1.6 <unfixed>
+	- libpng1.6 <unfixed> (bug #1132012)
 	NOTE: https://github.com/pnggroup/libpng/security/advisories/GHSA-m4pc-p4q3-4c7j
 	NOTE: https://github.com/pnggroup/libpng/pull/824
 	NOTE: Fixed by: https://github.com/pnggroup/libpng/commit/23019269764e35ed8458e517f1897bd3c54820eb (v1.6.56)
@@ -337,7 +337,7 @@ CVE-2026-33416 (LIBPNG is a reference library for use in applications that read,
 	NOTE: Fixed by: https://github.com/pnggroup/libpng/commit/7ea9eea884a2328cc7fdcb3c0c00246a50d90667 (v1.6.56)
 	NOTE: Fixed by: https://github.com/pnggroup/libpng/commit/c1b0318b393c90679e6fa5bc1d329fd5d5012ec1 (v1.6.56)
 CVE-2026-33636 (LIBPNG is a reference library for use in applications that read, creat ...)
-	- libpng1.6 <unfixed>
+	- libpng1.6 <unfixed> (bug #1132013)
 	NOTE: https://github.com/pnggroup/libpng/security/advisories/GHSA-wjr5-c57x-95m2
 	NOTE: Introduced with: https://github.com/pnggroup/libpng/commit/7734cda20cf1236aef60f3bbd2267c97bbb40869 (v1.6.36)
 	NOTE: Fixed by: https://github.com/pnggroup/libpng/commit/aba9f18eba870d14fb52c5ba5d73451349e339c3 (v1.6.56)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/03fa20d9a01b8193adbce8acefe703f61597fa16

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/03fa20d9a01b8193adbce8acefe703f61597fa16
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260326/be95886d/attachment.htm>

More information about the debian-security-tracker-commits mailing list