[Git][security-tracker-team/security-tracker][master] Add upstream tag reference for CVE-2026-41035 upstream fix
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Apr 30 06:39:55 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9621f4f8 by Salvatore Bonaccorso at 2026-04-30T07:39:24+02:00
Add upstream tag reference for CVE-2026-41035 upstream fix
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6869,7 +6869,7 @@ CVE-2026-41035 (In rsync 3.0.1 through 3.4.1, receive_xattr relies on an untrust
NOTE: https://www.openwall.com/lists/oss-security/2026/04/16/2
NOTE: https://github.com/RsyncProject/rsync/issues/871
NOTE: https://github.com/RsyncProject/rsync/pull/875
- NOTE: https://github.com/RsyncProject/rsync/commit/bb0a8118c2d2ab01140bac5e4e327e5e1ef90c9c
+ NOTE: https://github.com/RsyncProject/rsync/commit/bb0a8118c2d2ab01140bac5e4e327e5e1ef90c9c (v3.4.2)
NOTE: No security impact
CVE-2026-25219 (The `access_key` and `connection_string` connection properties were no ...)
- airflow <itp> (bug #819700)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9621f4f8477d670a9fedfa381bda8a2fc1eb1e89
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9621f4f8477d670a9fedfa381bda8a2fc1eb1e89
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260430/9fa7d7b0/attachment.htm>
More information about the debian-security-tracker-commits
mailing list