[Git][security-tracker-team/security-tracker][master] bugnums
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Tue Jun 2 18:50:43 BST 2026
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
790d1fc2 by Moritz Muehlenhoff at 2026-06-02T19:50:15+02:00
bugnums
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -116,7 +116,7 @@ CVE-2026-10548 (A security flaw has been discovered in NousResearch hermes-agent
CVE-2026-10529 (A weakness has been identified in westboy CicadasCMS up to 2431154dac8 ...)
NOT-FOR-US: CicadasCMS
CVE-2026-10528 (A security flaw has been discovered in Orthanc DICOM Server up to 1.12 ...)
- - orthanc <unfixed>
+ - orthanc <unfixed> (bug #1138713)
[trixie] - orthanc <no-dsa> (Minor issue)
[bookworm] - orthanc <no-dsa> (Minor issue)
NOTE: https://orthanc.uclouvain.be/bugs/show_bug.cgi?id=258
@@ -144,7 +144,7 @@ CVE-2026-10296 (A vulnerability was determined in itsourcecode Fees Management S
CVE-2026-10295 (A vulnerability was found in SourceCodester Customer Review App 1.0. A ...)
NOT-FOR-US: SourceCodester
CVE-2026-10294 (A vulnerability has been found in PackageKit up to 1.3.5. Affected is ...)
- - packagekit <unfixed>
+ - packagekit <unfixed> (bug #1138711)
[trixie] - packagekit <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - packagekit <postponed> (Minor issue, revisit when fixed upstream)
NOTE: https://github.com/PackageKit/PackageKit/issues/969
@@ -6650,7 +6650,7 @@ CVE-2026-44730 (OpenCTI is an open source platform for managing cyber threat int
CVE-2026-44729 (Twenty is an open source CRM. In 1.18.0 and earlier, the file serving ...)
NOT-FOR-US: Twenty CRM
CVE-2026-44728 (Babel is a compiler for writing next generation JavaScript. From 7.12. ...)
- - node-babel7 <unfixed>
+ - node-babel7 <unfixed> (bug #1138712)
NOTE: https://github.com/babel/babel/security/advisories/GHSA-fv7c-fp4j-7gwp
CVE-2026-44723 (Vowpal Wabbit is a machine learning system. The workflow .github/workf ...)
NOT-FOR-US: Vowpal Wabbit
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/790d1fc2d54f316d2d47a062b51f8f2dde132591
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/790d1fc2d54f316d2d47a062b51f8f2dde132591
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260602/191c5aee/attachment.htm>
More information about the debian-security-tracker-commits
mailing list