[Git][security-tracker-team/security-tracker][master] Reference upstream commit for CVE-2026-41651

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2883fc22 by Salvatore Bonaccorso at 2026-04-25T14:17:21+02:00
Reference upstream commit for CVE-2026-41651

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2458,6 +2458,7 @@ CVE-2026-41651 (PackageKit is a a D-Bus abstraction layer that allows the user t
 	NOTE: https://lists.freedesktop.org/archives/packagekit/2026-April/026513.html
 	NOTE: https://github.com/PackageKit/PackageKit/security/advisories/GHSA-f55j-vvr9-69xv
 	NOTE: https://github.security.telekom.com/2026/04/pack2theroot-linux-local-privilege-escalation.html
+	NOTE: Fixed by: https://github.com/PackageKit/PackageKit/commit/76cfb675fb31acc3ad5595d4380bfff56d2a8697 (v1.3.5)
 CVE-2026-4367
 	- libxpm 1:3.5.19-1 (bug #1134690)
 	[trixie] - libxpm <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2883fc22c5d5b645a9dd79a0adbea0d22e40d2dd

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2883fc22c5d5b645a9dd79a0adbea0d22e40d2dd
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260425/920d800b/attachment.htm>