[Git][security-tracker-team/security-tracker][master] new discount issue
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Tue Apr 7 14:07:52 BST 2026
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
f554c6fe by Moritz Muehlenhoff at 2026-04-07T15:07:31+02:00
new discount issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -113,7 +113,11 @@ CVE-2026-35208 (lichess.org is the forever free, adless and open source chess se
CVE-2026-35203 (ZLMediaKit is a streaming media service framework. the VP9 RTP payload ...)
NOT-FOR-US: ZLMediaKit
CVE-2026-35201 (Discount is an implementation of John Gruber's Markdown markup languag ...)
- TODO: check
+ - discount <unfixed>
+ [trixie] - discount <no-dsa> (Minor issue)
+ [bookworm] - discount <no-dsa> (Minor issue)
+ NOTE: https://github.com/davidfstr/rdiscount/security/advisories/GHSA-6r34-94wq-jhrc
+ NOTE: https://github.com/davidfstr/rdiscount/commit/b1a16445e92e0d12c07594dedcdc56f80b317761 (2.2.7.4)
CVE-2026-35200 (Parse Server is an open source backend that can be deployed to any inf ...)
NOT-FOR-US: Parse Server
CVE-2026-35199 (SymCrypt is the core cryptographic function library currently used by ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f554c6fe1d8fd1ae0c746783213c6dc70503d583
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f554c6fe1d8fd1ae0c746783213c6dc70503d583
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260407/57bcb3f4/attachment.htm>
More information about the debian-security-tracker-commits
mailing list