[Git][security-tracker-team/security-tracker][master] Add CVE-2026-44740/go-billy

Mon Jun 1 21:32:11 BST 2026


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
500275fe by Salvatore Bonaccorso at 2026-06-01T22:28:56+02:00
Add CVE-2026-44740/go-billy

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -133,7 +133,9 @@ CVE-2026-45132 (CloudPirates Open Source Helm Charts is a collection of Helm cha
 CVE-2026-45131 (CloudPirates Open Source Helm Charts is a collection of Helm charts. P ...)
 	NOT-FOR-US: CloudPirates Open Source Helm Charts
 CVE-2026-44740 (Billy is an interface filesystem abstraction for Go. Prior to versions ...)
-	TODO: check
+	- golang-github-go-git-go-billy <unfixed>
+	- golang-github-go-git-go-billy-v6 <unfixed>
+	NOTE: https://github.com/go-git/go-billy/security/advisories/GHSA-m3xc-h892-ggx6
 CVE-2026-44211 (Cline is an autonomous coding agent as an SDK, IDE extension, or CLI a ...)
 	NOT-FOR-US: Cline
 CVE-2026-43958 (A flaw was found in rrdcached, a component of rrdtool. A local attacke ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/500275fe0aed3aae9071ddd51b8b508572d94cec

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/500275fe0aed3aae9071ddd51b8b508572d94cec
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260601/6e79b37c/attachment.htm>
