[Git][security-tracker-team/security-tracker][master] Add CVE-2026-21892/python-parsl
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Jan 8 21:51:13 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a0605356 by Salvatore Bonaccorso at 2026-01-08T22:50:49+01:00
Add CVE-2026-21892/python-parsl
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -73,7 +73,9 @@ CVE-2026-21895 (The `rsa` crate is an RSA implementation written in rust. Prior
CVE-2026-21894 (n8n is an open source workflow automation platform. In versions from 0 ...)
NOT-FOR-US: n8n
CVE-2026-21892 (Parsl is a Python parallel scripting library. A SQL Injection vulnerab ...)
- TODO: check
+ - python-parsl <unfixed>
+ NOTE: https://github.com/Parsl/parsl/security/advisories/GHSA-f2mf-q878-gh58
+ NOTE: Fixed by: https://github.com/Parsl/parsl/commit/013a928461e70f38a33258bd525a351ed828e974 (2026.01.05)
CVE-2026-21891 (ZimaOS is a fork of CasaOS, an operating system for Zima devices and x ...)
NOT-FOR-US: ZimaOS
CVE-2026-21885 (Miniflux 2 is an open source feed reader. Prior to version 2.2.16, Min ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a060535650a1285d9318f792fd3a32788d4a6fc9
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a060535650a1285d9318f792fd3a32788d4a6fc9
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260108/b4f32c2f/attachment.htm>
More information about the debian-security-tracker-commits
mailing list