Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 43160168 by Salvatore Bonaccorso at 2026-06-17T06:57:58+02:00 add CVE-2026-36849/tiff - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,3 +1,8 @@ +CVE-2026-36849 [Denial of Service via large SamplesPerPixel tag] + - tiff <unfixed> + NOTE: https://www.openwall.com/lists/oss-security/2026/06/17/1 + NOTE: https://gitlab.com/libtiff/libtiff/-/work_items/781 + NOTE: Fixed by: https://gitlab.com/libtiff/libtiff/-/commit/eedba405d3695b52faae65994c5904f228eca0bf CVE-2026-XXXX [default policy.xml HTTP/HTTPS/URL delegate rules are no-ops] - imagemagick 8:7.1.2.25+dfsg1-2 (bug #1140176) CVE-2026-9507 (A session fixation vulnerability has been identified in osTicket v1.18 ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/431601688cac013f653db66c705721eb6c4c7e43 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/431601688cac013f653db66c705721eb6c4c7e43 You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
