[Git][security-tracker-team/security-tracker][master] Add new vips issues

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
06d7f72f by Salvatore Bonaccorso at 2026-02-27T09:27:53+01:00
Add new vips issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -15,13 +15,25 @@ CVE-2026-3286 (A vulnerability was identified in itwanger 
paicoding 1.0.0/1.0.1/
 CVE-2026-3285 (A vulnerability was determined in berry-lang berry up to 1.1.0. 
The af ...)
        NOT-FOR-US: berry-lang berry
 CVE-2026-3284 (A vulnerability was found in libvips 8.19.0. Impacted is the 
function  ...)
-       TODO: check
+       - vips <unfixed>
+       NOTE: https://github.com/libvips/libvips/issues/4879
+       NOTE: https://github.com/libvips/libvips/pull/4887
+       NOTE: Fixed by: 
https://github.com/libvips/libvips/commit/24795bb3d19d84f7b6f5ed86451ad556c8f2fe70
 CVE-2026-3283 (A vulnerability has been found in libvips 8.19.0. This issue 
affects t ...)
-       TODO: check
+       - vips <unfixed>
+       NOTE: https://github.com/libvips/libvips/issues/4880
+       NOTE: https://github.com/libvips/libvips/pull/4887
+       NOTE: Fixed by: 
https://github.com/libvips/libvips/commit/24795bb3d19d84f7b6f5ed86451ad556c8f2fe70
 CVE-2026-3282 (A flaw has been found in libvips 8.19.0. This vulnerability 
affects th ...)
-       TODO: check
+       - vips <unfixed>
+       NOTE: https://github.com/libvips/libvips/issues/4881
+       NOTE: https://github.com/libvips/libvips/pull/4886
+       NOTE: Fixed by: 
https://github.com/libvips/libvips/commit/7215ead1e0cd7d3703cc4f5fca06d7d0f4c22b91
 CVE-2026-3281 (A vulnerability was detected in libvips 8.19.0. This affects 
the funct ...)
-       TODO: check
+       - vips <unfixed>
+       NOTE: https://github.com/libvips/libvips/issues/4878
+       NOTE: https://github.com/libvips/libvips/pull/4895
+       NOTE: Fixed by: 
https://github.com/libvips/libvips/commit/fd28c5463697712cb0ab116a2c55e4f4d92c4088
 CVE-2026-3275 (A weakness has been identified in Tenda F453 1.0.0.3. This 
affects the ...)
        NOT-FOR-US: Tenda
 CVE-2026-3274 (A security flaw has been discovered in Tenda F453 1.0.0.3. 
Affected by ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/06d7f72f3e38805bfd3b203ee387c78c1dc621c3

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/06d7f72f3e38805bfd3b203ee387c78c1dc621c3
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits