[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Jan 1 20:13:10 GMT 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
54ca0981 by security tracker role at 2026-01-01T20:13:00+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,53 @@
+CVE-2026-21437 (eopkg is a Solus package manager implemented in python3. In versions p ...)
+	TODO: check
+CVE-2026-21436 (eopkg is a Solus package manager implemented in python3. In versions p ...)
+	TODO: check
+CVE-2026-21428 (cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTT ...)
+	TODO: check
+CVE-2026-0544 (A security flaw has been discovered in itsourcecode School Management  ...)
+	TODO: check
+CVE-2025-69203 (Signal K Server is a server application that runs on a central hub in  ...)
+	TODO: check
+CVE-2025-68620 (Signal K Server is a server application that runs on a central hub in  ...)
+	TODO: check
+CVE-2025-68619 (Signal K Server is a server application that runs on a central hub in  ...)
+	TODO: check
+CVE-2025-68273 (Signal K Server is a server application that runs on a central hub in  ...)
+	TODO: check
+CVE-2025-68272 (Signal K Server is a server application that runs on a central hub in  ...)
+	TODO: check
+CVE-2025-66398 (Signal K Server is a server application that runs on a central hub in  ...)
+	TODO: check
+CVE-2025-66023 (NanoMQ MQTT Broker (NanoMQ) is an all-around Edge Messaging Platform.  ...)
+	TODO: check
+CVE-2025-55065 (CWE-89 Improper Neutralization of Special Elements used in an SQL Comm ...)
+	TODO: check
+CVE-2025-48769 (Use After Free vulnerability was discovered in fs/vfs/fs_rename code o ...)
+	TODO: check
+CVE-2025-48768 (Release of Invalid Pointer or Reference vulnerability was discovered i ...)
+	TODO: check
+CVE-2025-47411 (A user with a legitimate non-administrator account can exploit a vulne ...)
+	TODO: check
+CVE-2025-15411 (A weakness has been identified in WebAssembly wabt up to 1.0.39. This  ...)
+	TODO: check
+CVE-2025-15410 (A vulnerability was identified in code-projects Online Guitar Store 1. ...)
+	TODO: check
+CVE-2025-15409 (A vulnerability was determined in code-projects Online Guitar Store 1. ...)
+	TODO: check
+CVE-2025-15408 (A vulnerability was found in code-projects Online Guitar Store 1.0. Af ...)
+	TODO: check
+CVE-2025-15407 (A vulnerability has been found in code-projects Online Guitar Store 1. ...)
+	TODO: check
+CVE-2025-15406 (A flaw has been found in PHPGurukul Online Course Registration up to 3 ...)
+	TODO: check
+CVE-2025-15405 (A vulnerability was detected in PHPEMS up to 11.0. The impacted elemen ...)
+	TODO: check
+CVE-2025-15404 (A security vulnerability has been detected in campcodes School File Ma ...)
+	TODO: check
+CVE-2025-14627 (The WP Import \u2013 Ultimate CSV XML Importer for WordPress plugin fo ...)
+	TODO: check
+CVE-2025-14428 (The All-in-one Sticky Floating Contact Form, Call, Click to Chat, and  ...)
+	TODO: check
 CVE-2025-69413 (In Gitea before 1.25.2, /api/v1/user has different responses for faile ...)
 	- gitea <removed>
 CVE-2025-69412 (KDE messagelib before 25.11.90 ignores SSL errors for threatMatches:fi ...)
@@ -4904,6 +4954,7 @@ CVE-2021-47714 (Hasura GraphQL 1.3.3 contains a local file read vulnerability th
 CVE-2021-47713 (Hasura GraphQL 1.3.3 contains a denial of service vulnerability that a ...)
 	NOT-FOR-US: Hasura
 CVE-2025-68615 (net-snmp is a SNMP application library, tools and daemon. Prior to ver ...)
+	{DLA-4430-1}
 	- net-snmp 5.9.5.2+dfsg-1 (bug #1123861)
 	NOTE: https://github.com/net-snmp/net-snmp/security/advisories/GHSA-4389-rwqf-q9gq
 	NOTE: https://github.com/net-snmp/net-snmp/issues/1037



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/54ca0981852c57a912db9f9bc0d477e2aa02774b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/54ca0981852c57a912db9f9bc0d477e2aa02774b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260101/ff5ac9e9/attachment.htm>

More information about the debian-security-tracker-commits mailing list