[Git][security-tracker-team/security-tracker][master] Add two new gvfs issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Feb 26 21:13:48 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
bc1b798b by Salvatore Bonaccorso at 2026-02-26T22:13:27+01:00
Add two new gvfs issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -11,9 +11,11 @@ CVE-2026-2677 (Reflected Cross-Site Scripting (XSS) on the A3factura web platfor
CVE-2026-2244 (A vulnerability in Google Cloud Vertex AI Workbench from7/21/2025 to 0 ...)
NOT-FOR-US: Google Cloud Vertex AI Workbench
CVE-2026-28296 (A flaw was found in the FTP GVfs backend. A remote attacker could expl ...)
- TODO: check
+ - gvfs <unfixed>
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2443003
CVE-2026-28295 (A flaw was found in the FTP GVfs backend. A malicious FTP server can e ...)
- TODO: check
+ - gvfs <unfixed>
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2443004
CVE-2026-28138 (Deserialization of Untrusted Data vulnerability in Stylemix uListing u ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2026-28136 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bc1b798bb956be174730472e7daaa9f9a15876f1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bc1b798bb956be174730472e7daaa9f9a15876f1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260226/a6114c7a/attachment.htm>
More information about the debian-security-tracker-commits
mailing list