[Git][security-tracker-team/security-tracker][master] Triage CVE-2026-41205 in mako for bullseye LTS.
Chris Lamb (@lamby)
lamby at debian.org
Thu Apr 30 13:13:52 BST 2026
Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0d9805a2 by Chris Lamb at 2026-04-30T05:13:46-07:00
Triage CVE-2026-41205 in mako for bullseye LTS.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2974,6 +2974,7 @@ CVE-2026-41205 (Mako is a template library written in Python. Prior to 1.3.11, T
- mako <unfixed> (bug #1134729)
[trixie] - mako <no-dsa> (Minor issue)
[bookworm] - mako <no-dsa> (Minor issue)
+ [bullseye] - mako <postponed> (Minor issue; can be fixed in next update)
NOTE: https://github.com/sqlalchemy/mako/security/advisories/GHSA-v92g-xgxw-vvmm
CVE-2026-41173 (The AWS X-Ray Remote Sampler package provides a sampler which can get ...)
NOT-FOR-US: AWS X-Ray Remote Sampler package
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0d9805a25080a991b57bec38b3640d34b022706f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0d9805a25080a991b57bec38b3640d34b022706f
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260430/dc4f4610/attachment.htm>
More information about the debian-security-tracker-commits
mailing list