[Git][security-tracker-team/security-tracker][master] Process some Nextcloud server CVEs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Jun 1 20:41:30 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9b4fb1ae by Salvatore Bonaccorso at 2026-06-01T21:41:17+02:00
Process some Nextcloud server CVEs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -63,7 +63,7 @@ CVE-2026-47294 (Deserialization of untrusted data in Microsoft Office SharePoint
CVE-2026-46605 (Incomplete authorization by Apache ActiveMQ server before versions v6. ...)
TODO: check
CVE-2026-45810 (Nextcloud is an open source content collaboration platform. In Nextclo ...)
- TODO: check
+ - nextcloud-server <itp> (bug #941708)
CVE-2026-45729 (Thor Vector Graphics (ThorVG) is a production-ready vector graphics en ...)
- thorvg <unfixed>
NOTE: https://github.com/thorvg/thorvg/security/advisories/GHSA-f863-8ghq-7h64
@@ -77,9 +77,9 @@ CVE-2026-45722 (Nextcloud is an open source content collaboration platform. From
CVE-2026-45701 (Sulu is an open-source PHP content management system based on the Symf ...)
NOT-FOR-US: Sulu
CVE-2026-45691 (Nextcloud is an open source content collaboration platform. In Nextclo ...)
- TODO: check
+ - nextcloud-server <itp> (bug #941708)
CVE-2026-45690 (Nextcloud is an open source content collaboration platform. In Nextclo ...)
- TODO: check
+ - nextcloud-server <itp> (bug #941708)
CVE-2026-45545 (Nextcloud is an open source content collaboration platform. From versi ...)
NOT-FOR-US: Nextcloud Tables
CVE-2026-45544 (Nextcloud is an open source content collaboration platform. From versi ...)
@@ -101,9 +101,9 @@ CVE-2026-45283 (Nextcloud is an open source content collaboration platform. In N
CVE-2026-45282 (Nextcloud is an open source content collaboration platform. In Nextclo ...)
NOT-FOR-US: Nextcloud Text
CVE-2026-45281 (Nextcloud is an open source content collaboration platform. In Nextclo ...)
- TODO: check
+ - nextcloud-server <itp> (bug #941708)
CVE-2026-45279 (Nextcloud is an open source content collaboration platform. In Nextclo ...)
- TODO: check
+ - nextcloud-server <itp> (bug #941708)
CVE-2026-45278 (Nextcloud is an open source content collaboration platform. From versi ...)
NOT-FOR-US: Nextcloud User OIDC
CVE-2026-45277 (Nextcloud is an open source content collaboration platform. Prior to v ...)
@@ -119,7 +119,7 @@ CVE-2026-45264 (Nextcloud is an open source content collaboration platform. From
CVE-2026-45159 (Nextcloud is an open source content collaboration platform. From versi ...)
TODO: check
CVE-2026-45157 (Nextcloud is an open source content collaboration platform. In Nextclo ...)
- TODO: check
+ - nextcloud-server <itp> (bug #941708)
CVE-2026-45156 (Nextcloud is an open source content collaboration platform. From versi ...)
NOT-FOR-US: Nextcloud User OIDC
CVE-2026-45155 (Nextcloud is an open source content collaboration platform. In Nextclo ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9b4fb1ae3bd57489ed654228f03638bd971c41b3
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9b4fb1ae3bd57489ed654228f03638bd971c41b3
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260601/bf2e99ca/attachment.htm>
More information about the debian-security-tracker-commits
mailing list