[Git][security-tracker-team/security-tracker][master] Correct upstream tag for commit for CVE-2026-41401
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Jun 1 06:32:12 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
550c35a5 by Salvatore Bonaccorso at 2026-06-01T07:31:29+02:00
Correct upstream tag for commit for CVE-2026-41401
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5492,7 +5492,7 @@ CVE-2026-41401 (libyang before 5.2.6 contains a heap use-after-free write vulner
- libyang <unfixed>
- libyang2 <removed>
NOTE: https://github.com/CESNET/libyang/security/advisories/GHSA-9f49-8x56-jmjc
- NOTE: Fixed by: https://github.com/CESNET/libyang/commit/54c3276d871023da266d4ed3ceaee7e8d71d0b04 (5.4.3)
+ NOTE: Fixed by: https://github.com/CESNET/libyang/commit/54c3276d871023da266d4ed3ceaee7e8d71d0b04 (v5.4.9)
CVE-2026-41164 (nuts-node is the reference implementation of the Nuts specification. P ...)
TODO: check
CVE-2026-40564 (Files or Directories Accessible to External Parties, Server-Side Reque ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/550c35a5984cd5e247e9e0be79f0c73efdb7951e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/550c35a5984cd5e247e9e0be79f0c73efdb7951e
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260601/b76ed030/attachment.htm>
More information about the debian-security-tracker-commits
mailing list