[Git][security-tracker-team/security-tracker][master] new docker issues

Moritz Muehlenhoff (@jmm) jmm at debian.org
Sun Apr 5 12:17:49 BST 2026 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9345f5f3 by Moritz Muehlenhoff at 2026-04-05T13:17:29+02:00
new docker issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2750,11 +2750,16 @@ CVE-2026-34042 (act is a project which allows for local running of github action
 CVE-2026-34041 (act is a project which allows for local running of github actions. Pri ...)
 	NOT-FOR-US: nektos act
 CVE-2026-34040 (Moby is an open source container framework. Prior to version 29.3.1, a ...)
-	TODO: check
+	- docker.io <unfixed>
+	NOTE: https://github.com/moby/moby/security/advisories/GHSA-x744-4wpc-v9h2
+	NOTE: https://github.com/moby/moby/commit/6d311e0d8d4174a6347942db78c553fb7dc3762e (28.x)
+	NOTE: https://github.com/moby/moby/commit/db7dadaca041953430d1e2144088c311b78b96d7 (28.x)
 CVE-2026-34036 (Dolibarr is an enterprise resource planning (ERP) and customer relatio ...)
 	- dolibarr <removed>
 CVE-2026-33997 (Moby is an open source container framework. Prior to version 29.3.1, a ...)
-	TODO: check
+	- docker.io <unfixed>
+	NOTE: https://github.com/moby/moby/security/advisories/GHSA-pxq6-2prw-chj9
+	NOTE: https://github.com/moby/moby/commit/0afb41ce194ca8f83436b332c18105279923ba14 (28.x)
 CVE-2026-33026 (Nginx UI is a web user interface for the Nginx web server. Prior to ve ...)
 	NOT-FOR-US: Nginx UI
 CVE-2026-35582



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9345f5f387b7f03820001ac8e6a0268f484583ec

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9345f5f387b7f03820001ac8e6a0268f484583ec
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260405/d4c1bde7/attachment.htm>

More information about the debian-security-tracker-commits mailing list