[Git][security-tracker-team/security-tracker][master] Add CVE-2026-21885/miniflux
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Jan 8 21:51:40 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b6396d7e by Salvatore Bonaccorso at 2026-01-08T22:51:21+01:00
Add CVE-2026-21885/miniflux
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -79,7 +79,9 @@ CVE-2026-21892 (Parsl is a Python parallel scripting library. A SQL Injection vu
CVE-2026-21891 (ZimaOS is a fork of CasaOS, an operating system for Zima devices and x ...)
NOT-FOR-US: ZimaOS
CVE-2026-21885 (Miniflux 2 is an open source feed reader. Prior to version 2.2.16, Min ...)
- TODO: check
+ - miniflux 2.2.16-1
+ NOTE: https://github.com/miniflux/v2/security/advisories/GHSA-xwh2-742g-w3wp
+ NOTE: Fixed by: https://github.com/miniflux/v2/commit/6c83e8c477b4d476aee5fbb87e47472c9ded01de (v2.2.16)
CVE-2026-21876 (The OWASP core rule set (CRS) is a set of generic attack detection rul ...)
TODO: check
CVE-2026-21874 (NiceGUI is a Python-based UI framework. From versions v2.10.0 to 3.4.1 ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b6396d7ed80d410b70e86bbb77f5f45d7f85b557
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b6396d7ed80d410b70e86bbb77f5f45d7f85b557
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260108/51a94741/attachment.htm>
More information about the debian-security-tracker-commits
mailing list