[Git][security-tracker-team/security-tracker][master] Track fixed version for libskia issues fixed via unstable

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri May 29 18:26:45 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3fffff49 by Salvatore Bonaccorso at 2026-05-29T19:26:03+02:00
Track fixed version for libskia issues fixed via unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -35,7 +35,7 @@ CVE-2026-9999 (Inappropriate implementation in ANGLE in Google Chrome on Mac pri
 CVE-2026-9998 (Integer overflow in Skia in Google Chrome prior to 148.0.7778.216 allo ...)
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
-	- libskia <unfixed>
+	- libskia 146.20260414~git.ef5f213+dfsg-5
 CVE-2026-9997 (Use after free in Input in Google Chrome prior to 148.0.7778.216 allow ...)
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
@@ -81,14 +81,14 @@ CVE-2026-9984 (Use after free in UI in Google Chrome on Windows prior to 148.0.7
 CVE-2026-9983 (Type Confusion in Skia in Google Chrome prior to 148.0.7778.216 allowe ...)
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
-	- libskia <unfixed>
+	- libskia 146.20260414~git.ef5f213+dfsg-5
 CVE-2026-9982 (Insufficient validation of untrusted input in ANGLE in Google Chrome p ...)
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-9981 (Inappropriate implementation in Skia in Google Chrome prior to 148.0.7 ...)
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
-	- libskia <unfixed>
+	- libskia 146.20260414~git.ef5f213+dfsg-5
 CVE-2026-9980 (Insufficient validation of untrusted input in Printing in Google Chrom ...)
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
@@ -263,7 +263,7 @@ CVE-2026-9924 (Heap buffer overflow in ANGLE in Google Chrome on Windows prior t
 CVE-2026-9923 (Use after free in Skia in Google Chrome prior to 148.0.7778.216 allowe ...)
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
-	- libskia <unfixed>
+	- libskia 146.20260414~git.ef5f213+dfsg-5
 CVE-2026-9922 (Use after free in GPU in Google Chrome on Mac prior to 148.0.7778.216  ...)
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
@@ -306,7 +306,7 @@ CVE-2026-9910 (Out of bounds memory access in ANGLE in Google Chrome prior to 14
 CVE-2026-9909 (Integer overflow in Skia in Google Chrome prior to 148.0.7778.216 allo ...)
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
-	- libskia <unfixed>
+	- libskia 146.20260414~git.ef5f213+dfsg-5
 CVE-2026-9908 (Out of bounds read in ANGLE in Google Chrome prior to 148.0.7778.216 a ...)
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
@@ -355,11 +355,11 @@ CVE-2026-9894 (Use after free in GPU in Google Chrome prior to 148.0.7778.216 al
 CVE-2026-9893 (Use after free in Skia in Google Chrome prior to 148.0.7778.216 allowe ...)
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
-	- libskia <unfixed>
+	- libskia 146.20260414~git.ef5f213+dfsg-5
 CVE-2026-9892 (Inappropriate implementation in Skia in Google Chrome on Android prior ...)
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
-	- libskia <unfixed>
+	- libskia 146.20260414~git.ef5f213+dfsg-5
 CVE-2026-9891 (Use after free in Extensions in Google Chrome prior to 148.0.7778.216  ...)
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
@@ -657,18 +657,18 @@ CVE-2026-10013 (Use after free in WebCodecs in Google Chrome prior to 148.0.7778
 CVE-2026-10012 (Use after free in Skia in Google Chrome prior to 148.0.7778.216 allowe ...)
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
-	- libskia <unfixed>
+	- libskia 146.20260414~git.ef5f213+dfsg-5
 CVE-2026-10011 (Inappropriate implementation in Skia in Google Chrome prior to 148.0.7 ...)
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
-	- libskia <unfixed>
+	- libskia 146.20260414~git.ef5f213+dfsg-5
 CVE-2026-10010 (Inappropriate implementation in Input in Google Chrome on Android prio ...)
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-10009 (Integer overflow in Skia in Google Chrome prior to 148.0.7778.216 allo ...)
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
-	- libskia <unfixed>
+	- libskia 146.20260414~git.ef5f213+dfsg-5
 CVE-2026-10008 (Uninitialized Use in GPU in Google Chrome on Android prior to 148.0.77 ...)
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3fffff49a1460c32c1db53935c4cc6ad5b4361ef

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3fffff49a1460c32c1db53935c4cc6ad5b4361ef
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260529/d000d161/attachment.htm>

More information about the debian-security-tracker-commits mailing list