[Git][security-tracker-team/security-tracker][master] Add systemd issue in nspawn

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1efb4f1e by Salvatore Bonaccorso at 2026-04-05T17:23:11+02:00
Add systemd issue in nspawn

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,10 @@
+CVE-2026-XXXX [nspawn: escape-to-host via malformed optional config file]
+	- systemd 260~rc3-1
+	NOTE: https://github.com/systemd/systemd/security/advisories/GHSA-9mj4-rrc3-gjcx
+	NOTE: Fixed by: https://github.com/systemd/systemd/commit/61bceb1bff4b1f9c126b18dc971ca3e6d8c71c40 (v260-rc3)
+	NOTE: Fixed by: https://github.com/systemd/systemd/commit/7b85f5498a958e5bb660c703b8f4a71cceed3373 (v260-rc3)
+	NOTE: Fixed by: https://github.com/systemd/systemd/commit/773fd3b6e72e6c83cbb1cfc1cb20f3793db8649a (v257.12)
+	NOTE: Fixed by: https://github.com/systemd/systemd/commit/bfa0a842822c4f79da9d47f8a773fd128d8f8a0a (v257.12)
 CVE-2026-XXXX [udev: local root execution via malicious hardware devices and unsanitized kernel output]
 	- systemd 260~rc4-1
 	NOTE: https://github.com/systemd/systemd/security/advisories/GHSA-vpfq-8p5f-jcqx



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1efb4f1e37fd1d30e9ef23f0391617cb4e94bbd7

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1efb4f1e37fd1d30e9ef23f0391617cb4e94bbd7
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260405/da94e49e/attachment.htm>