DSA-6222-1

NameDSA-6222-1
Descriptionngtcp2 - security update
SourceDebian
ReferencesCVE-2026-40170

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
ngtcp2 (PTS)bookworm0.12.1+dfsg-1vulnerable
bookworm (security)0.12.1+dfsg-1+deb12u1fixed
trixie1.11.0-1vulnerable
trixie (security)1.11.0-1+deb13u1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
ngtcp2sourcebookworm0.12.1+dfsg-1+deb12u1
ngtcp2sourcetrixie1.11.0-1+deb13u1
Search for package or bug name: Reporting problems