Bug#1124740: openjpeg2 : CVE-2019-6988
Hemlata Chandewar
Hemlata.Chandewar at ibm.com
Tue Jan 6 06:43:02 GMT 2026
Source: openjpeg2
Severity: important
Tags: security
Hi,
I would like to inquire about the timeline for addressing the following vulnerabilities in the openjpeg2 package for the Debian Trixie release:
* CVE-2019-6988<https://security-tracker.debian.org/tracker/CVE-2019-6988>
* CVE-2023-39327<https://ibm.service-now.com/sn_vul_nvd_entry.do?sys_id=7759a04eebb056100ad6f896fcd0cd50&sysparm_record_target=sn_vul_entry&sysparm_record_row=2&sysparm_record_rows=5&sysparm_record_list=sys_id%3D9184cf341bab63041cc2db9ebd4bcb4f%5EORsys_id%3D7759a04eebb056100ad6f896fcd0cd50%5EORsys_id%3Da76bcc82fbd70254a398f84065efdcf8%5EORsys_id%3Dacf7f16ffb970a50490dfbf04eefdca9%5EORsys_id%3D392ff8b7ff072a10114cffda7c4fd94e%5EORDERBYname>
* CVE-2023-39328<https://ibm.service-now.com/sn_vul_nvd_entry.do?sys_id=a76bcc82fbd70254a398f84065efdcf8&sysparm_record_target=sn_vul_entry&sysparm_record_row=3&sysparm_record_rows=5&sysparm_record_list=sys_id%3D9184cf341bab63041cc2db9ebd4bcb4f%5EORsys_id%3D7759a04eebb056100ad6f896fcd0cd50%5EORsys_id%3Da76bcc82fbd70254a398f84065efdcf8%5EORsys_id%3Dacf7f16ffb970a50490dfbf04eefdca9%5EORsys_id%3D392ff8b7ff072a10114cffda7c4fd94e%5EORDERBYname>
* CVE-2023-39329<https://ibm.service-now.com/sn_vul_nvd_entry.do?sys_id=acf7f16ffb970a50490dfbf04eefdca9&sysparm_record_target=sn_vul_entry&sysparm_record_row=4&sysparm_record_rows=5&sysparm_record_list=sys_id%3D9184cf341bab63041cc2db9ebd4bcb4f%5EORsys_id%3D7759a04eebb056100ad6f896fcd0cd50%5EORsys_id%3Da76bcc82fbd70254a398f84065efdcf8%5EORsys_id%3Dacf7f16ffb970a50490dfbf04eefdca9%5EORsys_id%3D392ff8b7ff072a10114cffda7c4fd94e%5EORDERBYname>
* CVE-2025-54874<https://ibm.service-now.com/sn_vul_nvd_entry.do?sys_id=392ff8b7ff072a10114cffda7c4fd94e&sysparm_record_target=sn_vul_entry&sysparm_record_row=5&sysparm_record_rows=5&sysparm_record_list=sys_id%3D9184cf341bab63041cc2db9ebd4bcb4f%5EORsys_id%3D7759a04eebb056100ad6f896fcd0cd50%5EORsys_id%3Da76bcc82fbd70254a398f84065efdcf8%5EORsys_id%3Dacf7f16ffb970a50490dfbf04eefdca9%5EORsys_id%3D392ff8b7ff072a10114cffda7c4fd94e%5EORDERBYname>
Could you kindly provide an update on when these issues might be fixed in the Trixie release?
Thank you for your attention to this matter.
Thanks and regards,
Hemlata Chandewar
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/pkg-phototools-devel/attachments/20260106/70acf98b/attachment-0001.htm>
More information about the Pkg-phototools-devel
mailing list