| Release | Version |
|---|---|
| bullseye | 1.2.2-1 |
| bookworm | 1.2.3-1 |
| trixie | 1.2.5-3 |
| forky | 1.2.5-3 |
| sid | 1.2.5-3 |
| Bug | bullseye | bookworm | trixie | forky | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2026-40200 | vulnerable | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | vulnerable | An issue was discovered in musl libc 0.7.10 through 1.2.6. Stack-based ... |
| CVE-2026-6042 | vulnerable | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | vulnerable | A security flaw has been discovered in musl libc up to 1.2.6. Affected ... |
| CVE-2025-26519 | vulnerable (no DSA, postponed) | vulnerable (no DSA) | fixed | fixed | fixed | musl libc 0.9.13 through 1.2.5 before 1.2.6 has an out-of-bounds write ... |
| Bug | Description |
|---|---|
| CVE-2020-28928 | In musl libc through 1.2.1, wcsnrtombs mishandles particular combinati ... |
| CVE-2019-14697 | musl libc through 1.1.23 has an x87 floating-point stack adjustment im ... |
| CVE-2017-15650 | musl libc before 1.1.17 has a buffer overflow via crafted DNS replies ... |
| CVE-2016-8859 | Multiple integer overflows in the TRE library and musl libc allow atta ... |
| CVE-2015-1817 | Stack-based buffer overflow in the inet_pton function in network/inet_ ... |
| CVE-2014-3484 | Multiple stack-based buffer overflows in the __dn_expand function in n ... |
| DSA / DLA | Description |
|---|---|
| DLA-2474-1 | musl - security update |