[Git][security-tracker-team/security-tracker][master] libsolv fixed in sid

Moritz Muehlenhoff (@jmm) jmm at debian.org
Wed May 27 18:38:50 BST 2026 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0a06d03a by Moritz Muehlenhoff at 2026-05-27T19:38:18+02:00
libsolv fixed in sid

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3680,12 +3680,12 @@ CVE-2026-9150 (A flaw was found in libsolv. This stack-based buffer overflow vul
 	NOTE: Introduced with: https://github.com/openSUSE/libsolv/commit/c8164bfecf2ba8bcf4c24329534d3104f19da73c (0.6.4)
 	NOTE: Fixed by: https://github.com/openSUSE/libsolv/commit/c5b5db52aebde00bdeacecf4d0569c217ab3187d (0.7.37)
 CVE-2026-9149 (A flaw was found in libsolv. This heap buffer overflow vulnerability o ...)
-	- libsolv <unfixed> (bug #1137373)
+	- libsolv 0.7.38-1 (bug #1137373)
 	[trixie] - libsolv <no-dsa> (Minor issue)
 	[bookworm] - libsolv <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2460380
 	NOTE: https://github.com/openSUSE/libsolv/pull/617
-	NOTE: https://github.com/openSUSE/libsolv/commit/210386037c892a720972ad35a3d8f7073b4d763b
+	NOTE: https://github.com/openSUSE/libsolv/commit/210386037c892a720972ad35a3d8f7073b4d763b (0.7.38)
 CVE-2026-9144 (Taiko AG1000-01A SMS Alert Gateway Rev 7.3 and Rev 8 contains a stored ...)
 	NOT-FOR-US: Taiko AG1000-01A SMS Alert Gateway
 CVE-2026-9141 (Taiko AG1000-01A SMS Alert Gateway Rev 7.3 and Rev 8 contains an authe ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0a06d03a6d15ba609aa5f926fb0969398f86fa99

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0a06d03a6d15ba609aa5f926fb0969398f86fa99
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260527/8f1badf0/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list