[Git][security-tracker-team/security-tracker][master] trixie/bookworm triage

Moritz Muehlenhoff (@jmm) jmm at debian.org
Sun Apr 26 19:41:58 BST 2026 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
bf846b8b by Moritz Muehlenhoff at 2026-04-26T20:41:48+02:00
trixie/bookworm triage

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -149,6 +149,7 @@ CVE-2026-41477 (Deskflow is a keyboard and mouse sharing app.  In 1.20.0, 1.26.0
 	NOTE: https://github.com/deskflow/deskflow/security/advisories/GHSA-6rx5-g478-775c
 CVE-2026-41476 (Deskflow is a keyboard and mouse sharing app.  Prior to 1.26.0.138, a  ...)
 	- deskflow <unfixed>
+	[trixie] - deskflow <no-dsa> (Minor issue)
 	NOTE: https://github.com/deskflow/deskflow/security/advisories/GHSA-3jp5-g964-cgmh
 CVE-2026-41475 (BACnet Stack is a BACnet open source protocol stack C library for embe ...)
 	NOT-FOR-US: BACnet Stack
@@ -6624,6 +6625,8 @@ CVE-2026-5086 (Crypt::SecretBuffer versions before 0.019 for Perl is suseceptibl
 	NOT-FOR-US: Crypt::SecretBuffer Perl module
 CVE-2026-6231 (The bson_validate function may return early on specific inputs and inc ...)
 	- mongo-c-driver 2.1.0-1
+	[trixie] - mongo-c-driver <no-dsa> (Minor issue)
+	[bookworm] - mongo-c-driver <no-dsa> (Minor issue)
 	[bullseye] - mongo-c-driver <postponed> (minor issue)
 	NOTE: https://jira.mongodb.org/browse/CDRIVER-6017
 	NOTE: Fixed by: https://github.com/mongodb/mongo-c-driver/commit/d184525513e5bf21f30810c00d6b0094aac8b00c (2.1.0)
@@ -7068,6 +7071,8 @@ CVE-2026-6121 (A flaw has been found in Tenda F451 1.0.0.7. Affected by this vul
 	NOT-FOR-US: Tenda
 CVE-2026-40393 (In Mesa before 25.3.6 and 26 before 26.0.1, out-of-bounds memory acces ...)
 	- mesa 26.0.1-1
+	[trixie] - mesa <ignored> (Minor issue, too intrusive to backport)
+	[bookworm] - mesa <ignored> (Minor issue, too intrusive to backport)
 	NOTE: https://lists.freedesktop.org/archives/mesa-dev/2026-February/226597.html
 	NOTE: https://gitlab.freedesktop.org/mesa/mesa/-/merge_requests/39866
 	NOTE: Fixed by: https://gitlab.freedesktop.org/mesa/mesa/-/commit/978fd42b4b7d1e9c0435ffa7e1a4d339cba9b76e (mesa-26.0.1)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bf846b8b91117b27e42bcdaef0021ef69a0a3ba8

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bf846b8b91117b27e42bcdaef0021ef69a0a3ba8
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260426/4c0f6cc6/attachment.htm>

More information about the debian-security-tracker-commits mailing list