[Git][security-tracker-team/security-tracker][master] CVE-2026-44227 n/a for RT4/5
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Mon Jun 1 22:06:11 BST 2026
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ebe4c20b by Moritz Muehlenhoff at 2026-06-01T23:05:50+02:00
CVE-2026-44227 n/a for RT4/5
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -8459,9 +8459,10 @@ CVE-2026-44230
NOTE: Introduced with: https://github.com/bestpractical/rt/commit/1db06229c5839a158f2365c436d9aa325d6ea459 (rt-5.0.4beta1)
NOTE: Fixed by: https://github.com/bestpractical/rt/commit/510d8d6c6a260da22830039e362c990a6c029665 (rt-5.0.10)
CVE-2026-44227
- - request-tracker5 5.0.10+dfsg-1
- - request-tracker4 <removed>
+ - request-tracker5 <not-affected> (Only affects RT6)
+ - request-tracker4 <not-affected> (Only affects RT6)
NOTE: https://github.com/bestpractical/rt/releases/tag/rt-5.0.10
+ NOTE: Was mentioned in release notes for RT5 by mistake
CVE-2026-6841 (Request Tracker is vulnerable to a reflected cross-site scripting (XSS ...)
- request-tracker5 5.0.10+dfsg-1
- request-tracker4 <removed>
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ebe4c20b5cfe2dbe1e6f1329c7811e8b906a5008
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ebe4c20b5cfe2dbe1e6f1329c7811e8b906a5008
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260601/a962ccc6/attachment.htm>
More information about the debian-security-tracker-commits
mailing list