[Git][security-tracker-team/security-tracker][master] Add Debian bug references for shiro issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Feb 14 15:36:49 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1c7f636f by Salvatore Bonaccorso at 2026-02-14T16:36:30+01:00
Add Debian bug references for shiro issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2342,13 +2342,13 @@ CVE-2026-23906 (Affected Products and Versions * Apache Druid * Affected V
- druid <itp> (bug #825797)
NOTE: https://www.openwall.com/lists/oss-security/2026/02/09/5
CVE-2026-23903 (Authentication Bypass by Alternate Name vulnerability in Apache Shiro. ...)
- - shiro <unfixed>
+ - shiro <unfixed> (bug #1127942)
[trixie] - shiro <no-dsa> (Minor issue)
[bookworm] - shiro <no-dsa> (Minor issue)
[bullseye] - shiro <postponed> (Minor issue)
NOTE: https://www.openwall.com/lists/oss-security/2026/02/08/1
CVE-2026-23901 (Observable Timing Discrepancy vulnerability in Apache Shiro. This iss ...)
- - shiro <unfixed>
+ - shiro <unfixed> (bug #1127944)
[trixie] - shiro <no-dsa> (Minor issue)
[bookworm] - shiro <no-dsa> (Minor issue)
[bullseye] - shiro <postponed> (Minor issue)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1c7f636f2989fa828a61c2d7bd9bfc6a79df8b63
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1c7f636f2989fa828a61c2d7bd9bfc6a79df8b63
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260214/303b620f/attachment.htm>
More information about the debian-security-tracker-commits
mailing list