[Git][security-tracker-team/security-tracker][master] Track fixed version for spip issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Feb 28 08:53:55 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
30dae5fa by Salvatore Bonaccorso at 2026-02-28T09:50:48+01:00
Track fixed version for spip issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -481,10 +481,10 @@ CVE-2026-22877 (An arbitrary file-read vulnerability exists in XWEB Pro version
CVE-2026-22207 (OpenViking through version 0.1.18, prior to commit0251c70,contains a b ...)
NOT-FOR-US: OpenViking
CVE-2026-22206 (SPIP versions prior to 4.4.10 contain a SQL injection vulnerability th ...)
- - spip <unfixed>
+ - spip 4.4.10+dfsg-1
NOTE: https://blog.spip.net/Mise-a-jour-de-securite-sortie-de-SPIP-4-4-10.html
CVE-2026-22205 (SPIP versions prior to 4.4.10 contain an authentication bypass vulnera ...)
- - spip <unfixed>
+ - spip 4.4.10+dfsg-1
NOTE: https://blog.spip.net/Mise-a-jour-de-securite-sortie-de-SPIP-4-4-10.html
CVE-2026-21718 (An authentication bypass vulnerability exists in Copeland XWEB Pro ve ...)
NOT-FOR-US: XWEB Pro
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/30dae5faf618a3e03270e1e748b512fc8fc06ce7
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/30dae5faf618a3e03270e1e748b512fc8fc06ce7
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260228/8be6366e/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list