[Git][security-tracker-team/security-tracker][master] Track fixed version for strongswan via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Apr 26 13:21:35 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
7ee4c908 by Salvatore Bonaccorso at 2026-04-26T14:21:25+02:00
Track fixed version for strongswan via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2568,37 +2568,37 @@ CVE-2026-33602 (A rogue backend can send a crafted UDP response with a query ID
NOTE: https://www.dnsdist.org/security-advisories/powerdns-advisory-for-dnsdist-2026-04.html#cve-2026-33602-off-by-one-access-when-processing-crafted-udp-responses
CVE-2026-35328 [strongswan: libtls infinite loop]
{DSA-6227-1}
- - strongswan <unfixed> (bug #1134897)
+ - strongswan 6.0.6-1 (bug #1134897)
NOTE: https://github.com/strongswan/strongswan/releases/tag/6.0.6
NOTE: https://www.strongswan.org/blog/2026/04/22/strongswan-vulnerability-(cve-2026-35328).html
CVE-2026-35329 [strongswan: pkcs7 crash]
{DSA-6227-1}
- - strongswan <unfixed> (bug #1134897)
+ - strongswan 6.0.6-1 (bug #1134897)
NOTE: https://github.com/strongswan/strongswan/releases/tag/6.0.6
NOTE: https://www.strongswan.org/blog/2026/04/22/strongswan-vulnerability-(cve-2026-35329).html
CVE-2026-35330 [strongswan: libsimaka infinite loop]
{DSA-6227-1}
- - strongswan <unfixed> (bug #1134897)
+ - strongswan 6.0.6-1 (bug #1134897)
NOTE: https://github.com/strongswan/strongswan/releases/tag/6.0.6
NOTE: https://www.strongswan.org/blog/2026/04/22/strongswan-vulnerability-(cve-2026-35330).html
CVE-2026-35331 [strongswan: constraints plugin]
{DSA-6227-1}
- - strongswan <unfixed> (bug #1134897)
+ - strongswan 6.0.6-1 (bug #1134897)
NOTE: https://github.com/strongswan/strongswan/releases/tag/6.0.6
NOTE: https://www.strongswan.org/blog/2026/04/22/strongswan-vulnerability-(cve-2026-35331).html
CVE-2026-35332 [strongswan: libtls ECDH crash]
{DSA-6227-1}
- - strongswan <unfixed> (bug #1134897)
+ - strongswan 6.0.6-1 (bug #1134897)
NOTE: https://github.com/strongswan/strongswan/releases/tag/6.0.6
NOTE: https://www.strongswan.org/blog/2026/04/22/strongswan-vulnerability-(cve-2026-35332).html
CVE-2026-35333 [strongswan: libradius infinite loop]
{DSA-6227-1}
- - strongswan <unfixed> (bug #1134897)
+ - strongswan 6.0.6-1 (bug #1134897)
NOTE: https://github.com/strongswan/strongswan/releases/tag/6.0.6
NOTE: https://www.strongswan.org/blog/2026/04/22/strongswan-vulnerability-(cve-2026-35333).html
CVE-2026-35334 [strongswan: gmp plugin crash]
{DSA-6227-1}
- - strongswan <unfixed> (bug #1134897)
+ - strongswan 6.0.6-1 (bug #1134897)
NOTE: https://github.com/strongswan/strongswan/releases/tag/6.0.6
NOTE: https://www.strongswan.org/blog/2026/04/22/strongswan-vulnerability-(cve-2026-35334).html
CVE-2026-41651 (PackageKit is a a D-Bus abstraction layer that allows the user to mana ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7ee4c9080a8d18accb7dff241d3625703245efae
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7ee4c9080a8d18accb7dff241d3625703245efae
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260426/524dcda5/attachment.htm>
More information about the debian-security-tracker-commits
mailing list