[Git][security-tracker-team/security-tracker][master] Skia now in the archive, needs to be checked for fixed status

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun Mar 29 11:47:18 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
40d2d539 by Salvatore Bonaccorso at 2026-03-29T12:46:52+02:00
Skia now in the archive, needs to be checked for fixed status

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -82820,7 +82820,7 @@ CVE-2025-35451 (PTZOptics and possibly other ValueHD-based pan-tilt-zoom cameras
 CVE-2025-32320 (In System UI, there is a possible way to view other users' images due  ...)
 	NOT-FOR-US: Android
 CVE-2025-32318 (In Skia, there is a possible out of bounds write due to a heap buffer  ...)
-	- skia <itp> (bug #1117470)
+	- skia <undetermined>
 CVE-2025-32317 (In App Widget, there is a possible Information Disclosure due to a con ...)
 	NOT-FOR-US: Android
 CVE-2025-32316 (In gralloc4, there is a possible out of bounds write due to a missing  ...)
@@ -162403,11 +162403,11 @@ CVE-2024-47032 (In construct_transaction_from_cmd of lwis_ioctl.c, there is a po
 CVE-2024-43769 (In isPackageDeviceAdmin of PackageManagerService.java, there is a poss ...)
 	NOT-FOR-US: Android
 CVE-2024-43768 (In skia_alloc_func of SkDeflate.cpp, there is a possible out of bounds ...)
-	- skia <itp> (bug #1117470)
+	- skia <undetermined>
 	NOTE: Firefox/Thunderbird embeds a copy of Skia, but the code isn't used/reachable as
 	NOTE: confirmed by the Mozilla security team
 CVE-2024-43767 (In prepare_to_draw_into_mask of SkBlurMaskFilterImpl.cpp, there is a p ...)
-	- skia <itp> (bug #1117470)
+	- skia <undetermined>
 	NOTE: Firefox/Thunderbird embeds a copy of Skia, but the code isn't used/reachable as
 	NOTE: confirmed by the Mozilla security team
 CVE-2024-43764 (In onPrimaryClipChanged of ClipboardListener.java, there is a possible ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/40d2d539baf5d938345dc87234dbae720290234c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/40d2d539baf5d938345dc87234dbae720290234c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260329/e0852524/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list