[Git][security-tracker-team/security-tracker][master] Track fixed version for rust-openssl issues addressed via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Apr 25 19:41:49 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d461ceee by Salvatore Bonaccorso at 2026-04-25T20:41:03+02:00
Track fixed version for rust-openssl issues addressed via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -175,12 +175,12 @@ CVE-2026-41907 (uuid is for the creation of RFC9562 (formerly RFC4122) UUIDs. Pr
NOTE: Fixed by: https://github.com/uuidjs/uuid/commit/3d2c5b0342f0fcb52a5ac681c3d47c13e7444b34 (v14.0.0)
NOTE: Duplicate with CVE-2026-41988 (CNA contacted)
CVE-2026-41898 (rust-openssl provides OpenSSL bindings for the Rust programming langua ...)
- - rust-openssl <unfixed> (bug #1134881)
+ - rust-openssl 0.10.78-1 (bug #1134881)
NOTE: https://github.com/rust-openssl/rust-openssl/security/advisories/GHSA-hppc-g8h3-xhp3
NOTE: https://github.com/rust-openssl/rust-openssl/pull/2607
NOTE: https://github.com/rust-openssl/rust-openssl/commit/1d109020d98fff2fb2e45c39a373af3dff99b24c (openssl-v0.10.78)
CVE-2026-41681 (rust-openssl provides OpenSSL bindings for the Rust programming langua ...)
- - rust-openssl <unfixed> (bug #1134881)
+ - rust-openssl 0.10.78-1 (bug #1134881)
NOTE: https://github.com/rust-openssl/rust-openssl/security/advisories/GHSA-ghm9-cr32-g9qj
NOTE: https://github.com/rust-openssl/rust-openssl/pull/2608
NOTE: https://github.com/rust-openssl/rust-openssl/commit/826c3888b77add418b394770e2b2e3a72d9f92fe (openssl-v0.10.78)
@@ -188,13 +188,13 @@ CVE-2026-41680 (Marked is a markdown parser and compiler. From 18.0.0 to 18.0.1,
- node-marked <not-affected> (Only affects 18.0.0 and 18.0.1)
NOTE: https://github.com/markedjs/marked/security/advisories/GHSA-6v9c-7cg6-27q7
CVE-2026-41678 (rust-openssl provides OpenSSL bindings for the Rust programming langua ...)
- - rust-openssl <unfixed> (bug #1134881)
+ - rust-openssl 0.10.78-1 (bug #1134881)
NOTE: https://github.com/rust-openssl/rust-openssl/security/advisories/GHSA-8c75-8mhr-p7r9
CVE-2026-41677 (rust-openssl provides OpenSSL bindings for the Rust programming langua ...)
- - rust-openssl <unfixed> (bug #1134881)
+ - rust-openssl 0.10.78-1 (bug #1134881)
NOTE: https://github.com/rust-openssl/rust-openssl/security/advisories/GHSA-xmgf-hq76-4vx2
CVE-2026-41676 (rust-openssl provides OpenSSL bindings for the Rust programming langua ...)
- - rust-openssl <unfixed> (bug #1134881)
+ - rust-openssl 0.10.78-1 (bug #1134881)
NOTE: https://github.com/rust-openssl/rust-openssl/security/advisories/GHSA-pqf5-4pqq-29f5
CVE-2026-41492 (Dgraph is an open source distributed GraphQL database. Prior to 25.3.3 ...)
NOT-FOR-US: Dgraph
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d461ceee25e08cd392dd35a9bc499524b2731f26
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d461ceee25e08cd392dd35a9bc499524b2731f26
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260425/2755f7e3/attachment.htm>
More information about the debian-security-tracker-commits
mailing list