[Git][security-tracker-team/security-tracker][master] Add CVE-2026-26203/pjproject
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Feb 19 21:18:55 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
16d3bd56 by Salvatore Bonaccorso at 2026-02-19T22:18:32+01:00
Add CVE-2026-26203/pjproject
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -99,7 +99,9 @@ CVE-2026-26223 (SPIP before 4.4.8 allows Cross-Site Scripting (XSS) in the priva
CVE-2026-26205 (opa-envoy-plugun is a plugin to enforce OPA policies with Envoy. Versi ...)
NOT-FOR-US: opa-envoy-plugun
CVE-2026-26203 (PJSIP is a free and open source multimedia communication library. Vers ...)
- TODO: check
+ - pjproject <removed>
+ NOTE: https://github.com/pjsip/pjproject/security/advisories/GHSA-p965-mf7j-gwv8
+ NOTE: Fixed by: https://github.com/pjsip/pjproject/commit/5aee54f09d4f91538d55279d7316591b28fded6c
CVE-2026-26202 (Penpot is an open-source design tool for design and code collaboration ...)
NOT-FOR-US: Penpot
CVE-2026-26201 (emp3r0r is a C2 designed by Linux users for Linux environments. Prior ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/16d3bd56d9d7ed5bf14f2a17bfee8db483b4e53b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/16d3bd56d9d7ed5bf14f2a17bfee8db483b4e53b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260219/307d0a79/attachment.htm>
More information about the debian-security-tracker-commits
mailing list