[Git][security-tracker-team/security-tracker][master] Add CVE-2026-23535/wlc
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Jan 16 20:35:02 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
efdeff38 by Salvatore Bonaccorso at 2026-01-16T21:33:49+01:00
Add CVE-2026-23535/wlc
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -23,7 +23,10 @@ CVE-2026-23645 (SiYuan is self-hosted, open source personal knowledge management
CVE-2026-23634 (Pepr is a type safe K8s middleware. Prior to 1.0.5 , Pepr defaults to ...)
NOT-FOR-US: Pepr
CVE-2026-23535 (wlc is a Weblate command-line client using Weblate's REST API. Prior t ...)
- TODO: check
+ - wlc <unfixed>
+ NOTE: https://github.com/WeblateOrg/wlc/security/advisories/GHSA-mmwx-79f6-67jg
+ NOTE: https://github.com/WeblateOrg/wlc/pull/1128
+ NOTE: Fixed by: https://github.com/WeblateOrg/wlc/commit/216e691c6e50abae97fe2e4e4f21501bf49a585f (1.17.2)
CVE-2026-23529 (Kafka Connect BigQuery Connector is an implementation of a sink connec ...)
NOT-FOR-US: Kafka Connect BigQuery Connector
CVE-2026-23528 (Dask distributed is a distributed task scheduler for Dask. Prior to 20 ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/efdeff38a47819d1088c1b0006df6e47a821d063
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/efdeff38a47819d1088c1b0006df6e47a821d063
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260116/9433f629/attachment.htm>
More information about the debian-security-tracker-commits
mailing list