[Git][security-tracker-team/security-tracker][master] Add upstream tag references for gobgp issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Apr 4 10:44:01 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d84c536f by Salvatore Bonaccorso at 2026-04-04T11:43:29+02:00
Add upstream tag references for gobgp issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2692,15 +2692,15 @@ CVE-2026-5125 (A vulnerability was detected in raine consult-llm-mcp up to 2.5.3
CVE-2026-5124 (A security vulnerability has been detected in osrg GoBGP up to 4.3.0. ...)
- gobgp <unfixed>
NOTE: https://github.com/osrg/gobgp/pull/3340
- NOTE: Fixed by: https://github.com/osrg/gobgp/commit/f0f24a2a901cbf159260698211ab15c583ced131
+ NOTE: Fixed by: https://github.com/osrg/gobgp/commit/f0f24a2a901cbf159260698211ab15c583ced131 (v4.4.0)
CVE-2026-5123 (A weakness has been identified in osrg GoBGP up to 4.3.0. This impacts ...)
- gobgp <unfixed>
NOTE: https://github.com/osrg/gobgp/pull/3342
- NOTE: Fixed by: https://github.com/osrg/gobgp/commit/67c059413470df64bc20801c46f64058e88f800f
+ NOTE: Fixed by: https://github.com/osrg/gobgp/commit/67c059413470df64bc20801c46f64058e88f800f (v4.4.0)
CVE-2026-5122 (A security flaw has been discovered in osrg GoBGP up to 4.3.0. This af ...)
- gobgp <unfixed>
NOTE: https://github.com/osrg/gobgp/pull/3343
- NOTE: Fixed by; https://github.com/osrg/gobgp/commit/2b09db390a3d455808363c53e409afe6b1b86d2d
+ NOTE: Fixed by; https://github.com/osrg/gobgp/commit/2b09db390a3d455808363c53e409afe6b1b86d2d (v4.4.0)
CVE-2026-5121 (A flaw was found in libarchive. On 32-bit systems, an integer overflow ...)
- libarchive <unfixed>
NOTE: https://github.com/libarchive/libarchive/pull/2934
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d84c536f828a9f2365bcf67e0155584b9e858fad
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d84c536f828a9f2365bcf67e0155584b9e858fad
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260404/b05968c5/attachment.htm>
More information about the debian-security-tracker-commits
mailing list