[Git][security-tracker-team/security-tracker][master] Add CVE-2026-33317/optee-os

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun Apr 26 20:30:48 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
08e91d54 by Salvatore Bonaccorso at 2026-04-26T21:30:01+02:00
Add CVE-2026-33317/optee-os

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1172,7 +1172,11 @@ CVE-2026-33819 (Deserialization of untrusted data in Microsoft Bing allows an un
 CVE-2026-33318 (Actual is a local-first personal finance tool. Prior to version 26.4.0 ...)
 	NOT-FOR-US: Actual
 CVE-2026-33317 (OP-TEE is a Trusted Execution Environment (TEE) designed as companion  ...)
-	TODO: check
+	- optee-os <unfixed>
+	NOTE: https://github.com/OP-TEE/optee_os/security/advisories/GHSA-8cqw-mg7v-c9p9
+	NOTE: Fixed by: https://github.com/OP-TEE/optee_os/commit/149e8d7ecc4ef8bb00ab4a37fd2ccede6d79e1ca (master)
+	NOTE: Fixed by: https://github.com/OP-TEE/optee_os/commit/16926d5a46934c46e6656246b4fc18385a246900 (master)
+	NOTE: Fixed by: https://github.com/OP-TEE/optee_os/commit/e031c4e562023fd9f199e39fd2e85797e4cbdca9 (master)
 CVE-2026-33208 (Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Kee ...)
 	NOT-FOR-US: Roxy-WI
 CVE-2026-33102 (Url redirection to untrusted site ('open redirect') in M365 Copilot al ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/08e91d5449884e9a0f2ee845f1dec95f954efe97

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/08e91d5449884e9a0f2ee845f1dec95f954efe97
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260426/6ad64463/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list