Hi, On Thu, Jan 15, 2026 at 09:11:07AM +0000, Dmitry Chelnintsev wrote: > Hello there! > > I have a question about affected packages in your CVE articles. > Given example: https://security-tracker.debian.org/tracker/CVE-2026-22184 > > What is the correct way to get all affected binary packages for source > package zlib? > Should I look at "binaries" section on package page? > https://tracker.debian.org/pkg/zlib
Yes it is correct the security-tracker is source-package centric. If you want to gather the list of built binary package, you can check the control information of the source, check apt-cache showsrc $srcpackage, the trackers, and other ways. For that specific CVE you might be intersted in https://www.openwall.com/lists/oss-security/2026/01/15/7 Regards, Salvatore
