[Git][security-tracker-team/security-tracker][master] Add CVE-2026-24910/bun, itp'ed

Wed Jan 28 08:48:57 GMT 2026


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9af587aa by Salvatore Bonaccorso at 2026-01-28T09:46:42+01:00
Add CVE-2026-24910/bun, itp'ed

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
 CVE-2026-24910 (In Bun before 1.3.5, the default trusted dependencies list (aka trust  ...)
-	TODO: check
+	- bun <itp> (bug #1014479)
 CVE-2026-24909 (vlt before 1.0.0-rc.10 mishandles path sanitization for tar, leading t ...)
 	TODO: check
 CVE-2026-24867



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9af587aacba890ad65535a3258441ac93b60f988

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9af587aacba890ad65535a3258441ac93b60f988
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260128/76c584f4/attachment.htm>
