[Git][security-tracker-team/security-tracker][master] Add CVE-2026-23643/cakephp
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Jan 17 08:36:49 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9097aa64 by Salvatore Bonaccorso at 2026-01-17T09:35:12+01:00
Add CVE-2026-23643/cakephp
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -11,7 +11,10 @@ CVE-2026-23742 (Skipper is an HTTP router and reverse proxy for service composit
CVE-2026-23735 (GraphQL Modules is a toolset of libraries and guidelines dedicated to ...)
NOT-FOR-US: GraphQL Modules
CVE-2026-23643 (CakePHP is a rapid development framework for PHP. The PaginatorHelper: ...)
- TODO: check
+ - cakephp <removed>
+ NOTE: https://github.com/cakephp/cakephp/security/advisories/GHSA-qh8m-9qxx-53m5
+ NOTE: https://github.com/cakephp/cakephp/issues/19172
+ NOTE: Fixed by: https://github.com/cakephp/cakephp/commit/c842e7f45d85696e6527d8991dd72f525ced955f (5.3.1)
CVE-2026-22865 (Gradle is a build automation tool, and its native-platform tool provid ...)
TODO: check
CVE-2026-22816 (Gradle is a build automation tool, and its native-platform tool provid ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9097aa64960ad31134b5cf2860119300ed328c87
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9097aa64960ad31134b5cf2860119300ed328c87
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260117/5d2b0319/attachment.htm>
More information about the debian-security-tracker-commits
mailing list