[Git][security-tracker-team/security-tracker][master] Update status for CVE-2026-3184/util-linux
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Feb 26 13:57:01 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
085b53a2 by Salvatore Bonaccorso at 2026-02-26T14:56:31+01:00
Update status for CVE-2026-3184/util-linux
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -220,8 +220,10 @@ CVE-2026-3190
- keycloak <itp> (bug #1088287)
CVE-2026-3184 [Access control bypass due to improper hostname canonicalization]
- util-linux <unfixed>
+ [trixie] - util-linux <no-dsa> (Minor issue)
+ [bookworm] - util-linux <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2442570
- TODO: check upstream status
+ NOTE: Fixed by: https://github.com/util-linux/util-linux/commit/8b29aeb081e297e48c4c1ac53d88ae07e1331984 (v2.42-rc1)
CVE-2026-1747 (GitLab has remediated an issue in GitLab EE affecting all versions fro ...)
- gitlab <not-affected> (Specific to EE)
CVE-2026-1725 (GitLab has remediated an issue in GitLab CE/EE affecting versions from ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/085b53a21ed43e961796ae01f5576f044bd3329b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/085b53a21ed43e961796ae01f5576f044bd3329b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260226/29fc5fe8/attachment.htm>
More information about the debian-security-tracker-commits
mailing list