Hi, packages for trixie and bookworm ready: trixie: new commits: https://salsa.debian.org/debian/libpng1.6/-/compare/0470c41036059b5c6e4ad655aa7b089ffc7b0db3...debian%2Ftrixie?from_project_id=26504 bookworm: new commits: https://salsa.debian.org/debian/libpng1.6/-/compare/0470c41036059b5c6e4ad655aa7b089ffc7b0db3...debian%2Ftrixie?from_project_id=26504 -- tobi On Thu, Dec 04, 2025 at 07:28:53AM +0100, Salvatore Bonaccorso wrote: > Hi Tobi, > > On Thu, Dec 04, 2025 at 06:18:04AM +0100, Tobias Frost wrote: > > Hi security team > > > > #1121877 has been reported, CVE-2025-66293. [1] > > I'm looking at it right now for unstable, please advice whether you'd > > like to amend the pending upload with a fix for this vulnerability as > > well. Holding LTS/ELTS (which are ready too without the newly discovered > > CVE, plan to add the patch for those as well) until I've get your > > feedback. > > Yes please. I will reject the current one on security-master so that > we can include the patch and reuse the same version. But let's fix it > first in unstable. > > Thanks for the headsup, we were on X-Debbugs-CC so added it already as > well to the tracker. > > Regards, > Salvatore
Attachment:
signature.asc
Description: PGP signature