[Git][security-tracker-team/security-tracker][master] Track CVE-2026-40962 beeing covered by DSA-6268-1

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri May 15 12:31:02 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
392aa260 by Salvatore Bonaccorso at 2026-05-15T13:30:35+02:00
Track CVE-2026-40962 beeing covered by DSA-6268-1

- - - - -


2 changed files:

- data/CVE/list
- data/DSA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -18257,7 +18257,6 @@ CVE-2026-41015 (radare2 before 9236f44, when configured on UNIX without SSL, all
 	NOTE: Fixed by: https://github.com/radareorg/radare2/commit/9236f44a28812fe911814e1b3a7bcf1e4de5d3c2 (6.1.4)
 CVE-2026-40962 (FFmpeg before 8.1 has an integer overflow and resultant out-of-bounds  ...)
 	- ffmpeg 7:8.1-1
-	[trixie] - ffmpeg <postponed> (Minor issue, wait until it's fixed in the 7.1 branch)
 	[bookworm] - ffmpeg <postponed> (Minor issue, wait until it's fixed in the 5.1 branch)
 	[bullseye] - ffmpeg <postponed> (minor issue)
 	NOTE: https://code.ffmpeg.org/FFmpeg/FFmpeg/pulls/22348


=====================================
data/DSA/list
=====================================
@@ -11,6 +11,7 @@
 	{CVE-2026-6472 CVE-2026-6473 CVE-2026-6474 CVE-2026-6475 CVE-2026-6477 CVE-2026-6478 CVE-2026-6479 CVE-2026-6637}
 	[bookworm] - postgresql-15 15.18-0+deb12u1
 [14 May 2026] DSA-6268-1 ffmpeg - security update
+	{CVE-2026-40962}
 	[trixie] - ffmpeg 7:7.1.4-0+deb13u1
 [14 May 2026] DSA-6267-1 thunderbird - security update
 	{CVE-2026-8090 CVE-2026-8092 CVE-2026-8094}



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/392aa2600c5fa66211adffcf740fb67e0986d772

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/392aa2600c5fa66211adffcf740fb67e0986d772
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260515/01ff2e3b/attachment.htm>

More information about the debian-security-tracker-commits mailing list