Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-lts-changes@lists.debian.org> , <dispatch@tracker.debian.org>
Subject: Accepted gdk-pixbuf 2.42.2+dfsg-1+deb11u5 (source) into oldoldstable-security
Date: Tue, 14 Apr 2026 09:10:15 +0000
Signed by: Emilio Pozuelo Monfort <pochu@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 13 Apr 2026 18:50:54 +0200
Source: gdk-pixbuf
Architecture: source
Version: 2.42.2+dfsg-1+deb11u5
Distribution: bullseye-security
Urgency: medium
Maintainer: Debian GNOME Maintainers <pkg-gnome-maintainers@lists.alioth.debian.org>
Changed-By: Emilio Pozuelo Monfort <pochu@debian.org>
Changes:
 gdk-pixbuf (2.42.2+dfsg-1+deb11u5) bullseye-security; urgency=medium
 .
   * CVE-2026-5201: heap buffer overflow in the JPEG image loader.
Checksums-Sha1:
 f0d44ae634370c905a43dba99b690cffa1168472 3186 gdk-pixbuf_2.42.2+dfsg-1+deb11u5.dsc
 d66fc4f6f28e3cbdcc1bc8c1b25495c7c6fd6c3f 6433920 gdk-pixbuf_2.42.2+dfsg.orig.tar.xz
 40de2a28ec15eacef8c4a65cd7762dbb339532c9 39380 gdk-pixbuf_2.42.2+dfsg-1+deb11u5.debian.tar.xz
 d34a4dd0158ec6bf234bfa823ec151ed1330a473 7995 gdk-pixbuf_2.42.2+dfsg-1+deb11u5_source.buildinfo
Checksums-Sha256:
 8bb03dff9d50c46399f2e40f1829f1b643e8d9df0a62bbd6c584af74f6170bf0 3186 gdk-pixbuf_2.42.2+dfsg-1+deb11u5.dsc
 f781dca5af4c6536befb1faaa3b82efb9750c52a350842bc82b2aa08ce129ee9 6433920 gdk-pixbuf_2.42.2+dfsg.orig.tar.xz
 8888d844a70110368d45a62d920fa57ef5ddcc5db2c2401028be23232efce352 39380 gdk-pixbuf_2.42.2+dfsg-1+deb11u5.debian.tar.xz
 37ef28df750a90ac130be1d92e3f8a6c20a651527ff9f818d8f108dd5291f104 7995 gdk-pixbuf_2.42.2+dfsg-1+deb11u5_source.buildinfo
Files:
 b194ad7e3760845abbf86667d56d3505 3186 libs optional gdk-pixbuf_2.42.2+dfsg-1+deb11u5.dsc
 6ad51a9ed2b394acc88052ae9de01c9e 6433920 libs optional gdk-pixbuf_2.42.2+dfsg.orig.tar.xz
 4b0cf172a591672d4e3557954d16ad5e 39380 libs optional gdk-pixbuf_2.42.2+dfsg-1+deb11u5.debian.tar.xz
 257ed8e86dfeadbe710fcb8df738b741 7995 libs optional gdk-pixbuf_2.42.2+dfsg-1+deb11u5_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=bEEO
-----END PGP SIGNATURE-----

News for package gdk-pixbuf