[Git][security-tracker-team/security-tracker][master] Add two new glibc issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Apr 28 21:39:51 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e508abda by Salvatore Bonaccorso at 2026-04-28T22:39:28+02:00
Add two new glibc issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -78,7 +78,9 @@ CVE-2026-7235 (A security vulnerability has been detected in ErlichLiu claude-ag
 CVE-2026-6706 (Improper  access control in the vault documentation feature in Devolut ...)
 	NOT-FOR-US: Devolutions
 CVE-2026-6238 (The deprecated functions ns_printrrf, ns_printrr and fp_nquery in the  ...)
-	TODO: check
+	- glibc <unfixed>
+	NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=34069
+	NOTE: https://sourceware.org/git/?p=glibc.git;a=blob_plain;f=advisories/GLIBC-SA-2026-0012
 CVE-2026-5944 (An improper access control vulnerability exists in the Cisco Intersigh ...)
 	TODO: check
 CVE-2026-5794 (A vulnerability affecting the detailed versions ofCryptobox allows a l ...)
@@ -90,7 +92,9 @@ CVE-2026-5780 (An insecure direct object reference (IDOR) vulnerability in MphRx
 CVE-2026-5779 (An insecure direct object reference (IDOR) vulnerability in MphRx's Mi ...)
 	NOT-FOR-US: MphRx Minerva
 CVE-2026-5435 (The deprecated functions ns_printrrf, ns_printrr and fp_nquery in the  ...)
-	TODO: check
+	- glibc <unfixed>
+	NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=34033
+	NOTE: https://sourceware.org/git/?p=glibc.git;a=blob_plain;f=advisories/GLIBC-SA-2026-0011
 CVE-2026-4911 (The Booking Package plugin for WordPress is vulnerable to Price Manipu ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2026-4805 (The Woostify plugin for WordPress is vulnerable to Stored Cross-Site S ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e508abda6d0e18094624fee6650db1484ef6645a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e508abda6d0e18094624fee6650db1484ef6645a
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260428/6f2b5dcb/attachment.htm>

More information about the debian-security-tracker-commits mailing list