[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Jun 4 20:13:25 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
3c53b178 by security tracker role at 2026-06-04T19:13:19+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,27 +1,365 @@
-CVE-2026-46741
+CVE-2026-8916 (Out-of-bounds write vulnerability in Samsung Open Source rlottie allow ...)
+ TODO: check
+CVE-2026-8762
+ REJECTED
+CVE-2026-8653 (The MasterStudy LMS Pro Plus plugin for WordPress is vulnerable to gen ...)
+ TODO: check
+CVE-2026-8037 (OS Command Injection Remote Code Execution Vulnerability in API in Pro ...)
+ TODO: check
+CVE-2026-7774 (tarfile.data_filter could be bypassed using crafted link entries, incl ...)
+ TODO: check
+CVE-2026-7764 (An out-of-bounds read vulnerability in the morse.ko HaLow Wi-Fi kernel ...)
+ TODO: check
+CVE-2026-5228 (Improper Access Control, Missing Authorization vulnerability in Kurt S ...)
+ TODO: check
+CVE-2026-50266 (In OpenStack Neutron before 28.0.1, a project manager can create or up ...)
+ TODO: check
+CVE-2026-50226 (Fixed AES-128-CBC keys inside the AcerConnect OTA application let atta ...)
+ TODO: check
+CVE-2026-50225 (The registration path/v1/account/registerprovides no bot mitigation me ...)
+ TODO: check
+CVE-2026-50224 (The web administration panel binds broadly to the public IPv6 address ...)
+ TODO: check
+CVE-2026-50214 (The/v1/Planservice relies entirely on a shared global API token for fu ...)
+ TODO: check
+CVE-2026-50213 (The account validation endpoint/v1/User/validatereturns comprehensive ...)
+ TODO: check
+CVE-2026-50212 (Weak validation logic within device dissociation API routines allows a ...)
+ TODO: check
+CVE-2026-50211 (Leftover engineering diagnostics and factory-level diagnostic software ...)
+ TODO: check
+CVE-2026-50210 (The device encrypts data using AES-CBC with static zero-filled Initial ...)
+ TODO: check
+CVE-2026-50209 (Broadcast events allow malicious software to rewrite the device's defa ...)
+ TODO: check
+CVE-2026-50208 (High-riskTrustAllCertsroutines disable standard TLS certificate valida ...)
+ TODO: check
+CVE-2026-50207 (The system Binder boundary accepts unverified pass-through AT commands ...)
+ TODO: check
+CVE-2026-50206 (Incoming VPN network profile settings fail to process special characte ...)
+ TODO: check
+CVE-2026-50205 (System log files output unencrypted SMTP server authentication passwor ...)
+ TODO: check
+CVE-2026-50076 (Deserialization of Untrusted Data in the Java replace-resolve path in ...)
+ TODO: check
+CVE-2026-50033 (Local privilege escalation due to DLL hijacking vulnerability. The fol ...)
+ TODO: check
+CVE-2026-4881 (In affected versions of Octopus Server, permissions were not checked c ...)
+ TODO: check
+CVE-2026-4104 (Authorization bypass through User-Controlled SQL primary key vulnerabi ...)
+ TODO: check
+CVE-2026-49771 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
+ TODO: check
+CVE-2026-49510 (Integer overflow or wraparound vulnerability in Samsung Open Source rl ...)
+ TODO: check
+CVE-2026-49204 (Leftover debug modules contain fixed credentials for internal AWS Cogn ...)
+ TODO: check
+CVE-2026-49203 (Crucial management API endpoints for cellular eSIM allocation do not v ...)
+ TODO: check
+CVE-2026-49202 (Internal multimedia session archives are accessible without authentica ...)
+ TODO: check
+CVE-2026-49194 (The debugging routineSCREEN_CLICK(5053)enables a connection to skip th ...)
+ TODO: check
+CVE-2026-49193 (Overly permissive configuration settings on cloud storage containers e ...)
+ TODO: check
+CVE-2026-49192 (The summary service endpoint suffers from an IDOR vulnerability where ...)
+ TODO: check
+CVE-2026-49191 (The production build of the M3WebServer hard-codes its backend API key ...)
+ TODO: check
+CVE-2026-49190 (The system fails to evaluate instructional permissions over multiple i ...)
+ TODO: check
+CVE-2026-49189 (Unchecked public access permissions on a core Broadcast Receiver allow ...)
+ TODO: check
+CVE-2026-49188 (Theai_cmdutility executes with full root permissions. It pipes socket ...)
+ TODO: check
+CVE-2026-49187 (The hard-coded APK resource files never expire, and the shared scepter ...)
+ TODO: check
+CVE-2026-49186 (The local MQTT broker does not enforce topic-level Access Control List ...)
+ TODO: check
+CVE-2026-49185 (The FieldX MDM adb messaging topic passes unverified payloads directly ...)
+ TODO: check
+CVE-2026-49077 (Exposure of Sensitive System Information to an Unauthorized Control Sp ...)
+ TODO: check
+CVE-2026-48480 (The netty incubator codec.bhttp is a java language binary http parser. ...)
+ TODO: check
+CVE-2026-48040 (The netty incubator codec.bhttp is a java language binary http parser. ...)
+ TODO: check
+CVE-2026-47707 (Strawberry GraphQL is a library for creating GraphQL APIs. In versions ...)
+ TODO: check
+CVE-2026-47706 (Strawberry GraphQL is a library for creating GraphQL APIs. In versions ...)
+ TODO: check
+CVE-2026-47320 (Access of uninitialized pointer, Uncontrolled Recursion vulnerability ...)
+ TODO: check
+CVE-2026-47319 (Memory allocation with excessive size value vulnerability in Samsung O ...)
+ TODO: check
+CVE-2026-47318 (Stack-based buffer overflow vulnerability in Samsung Open Source rlott ...)
+ TODO: check
+CVE-2026-47306 (Uncontrolled Recursion vulnerability in Samsung Open Source rlottie al ...)
+ TODO: check
+CVE-2026-45739 (Strawberry GraphQL is a library for creating GraphQL APIs. In versions ...)
+ TODO: check
+CVE-2026-45433 (This vulnerability exists in GX Earth 2022 ONT models due to the prese ...)
+ TODO: check
+CVE-2026-45432 (This vulnerability exists in GX Earth ONT models due to the transmissi ...)
+ TODO: check
+CVE-2026-45431 (This vulnerability exists in GX Earth ONT models due to improper handl ...)
+ TODO: check
+CVE-2026-45287 (OpenTelemetry-Go is the Go implementation of OpenTelemetry. Prior to v ...)
+ TODO: check
+CVE-2026-44682 (Local privilege escalation due to DLL hijacking vulnerability. The fol ...)
+ TODO: check
+CVE-2026-44609 (Local privilege escalation due to EXE hijacking vulnerability. The fol ...)
+ TODO: check
+CVE-2026-43986 (Tautulli is a Python based monitoring and tracking tool for Plex Media ...)
+ TODO: check
+CVE-2026-43985 (Tautulli is a Python based monitoring and tracking tool for Plex Media ...)
+ TODO: check
+CVE-2026-43984 (Tautulli is a Python based monitoring and tracking tool for Plex Media ...)
+ TODO: check
+CVE-2026-43926 (FOSSBilling is a free, open-source billing and client management syste ...)
+ TODO: check
+CVE-2026-43924 (FOSSBilling is a free, open-source billing and client management syste ...)
+ TODO: check
+CVE-2026-42061 (Local privilege escalation due to excessive permissions assigned to ch ...)
+ TODO: check
+CVE-2026-41860 (CWE-326 in BOSH allows a local attacker to steal Basic-auth credential ...)
+ TODO: check
+CVE-2026-41859 (A network man-in-the-middle between nats-sync and the BOSH director ca ...)
+ TODO: check
+CVE-2026-41858 (Weak Randomness / Insecure Cryptographic Primitive (CWE-338) in Get-Ra ...)
+ TODO: check
+CVE-2026-41237 (Froxlor is open source server administration software. In version 2.3. ...)
+ TODO: check
+CVE-2026-41236 (Froxlor is open source server administration software. Version 2.3.6 c ...)
+ TODO: check
+CVE-2026-41235 (Froxlor is open source server administration software. Version 2.3.6 l ...)
+ TODO: check
+CVE-2026-41234 (Froxlor is open source server administration software. Prior to versio ...)
+ TODO: check
+CVE-2026-41207 (The netty incubator codec.bhttp is a java language binary http parser. ...)
+ TODO: check
+CVE-2026-41178 (OpenTelemetry-Go is the Go implementation of OpenTelemetry. Versions 1 ...)
+ TODO: check
+CVE-2026-41065 (Tautulli is a Python based monitoring and tracking tool for Plex Media ...)
+ TODO: check
+CVE-2026-41011 (PackagePersister.validate_tgz builds "tar -tf #{tgz} 2>&1" where tgz = ...)
+ TODO: check
+CVE-2026-41010 (ReleaseJob#unpack builds job_dir = File.join(@release_dir, 'jobs', nam ...)
+ TODO: check
+CVE-2026-40898 (quic-go is an implementation of the QUIC protocol in Go. Prior to vers ...)
+ TODO: check
+CVE-2026-40605 (Tautulli is a Python based monitoring and tracking tool for Plex Media ...)
+ TODO: check
+CVE-2026-40495 (FOSSBilling is a free, open-source billing and client management syste ...)
+ TODO: check
+CVE-2026-3820 (There is a vulnerability in the Supermicro BMC SMTP service at Superm ...)
+ TODO: check
+CVE-2026-38570 (bacnet_stack 1.3.1 contains an Out-of-bounds Read in bacnet_tag_number ...)
+ TODO: check
+CVE-2026-37700 (Cross Site Scripting vulnerability in MaxSite CMS v.109.2 allows a rem ...)
+ TODO: check
+CVE-2026-36499 (A missing upper-bound check in the udpif_set_threads() function of Ope ...)
+ TODO: check
+CVE-2026-36182 (GNCC GP5 v7.1.76 was discovered to utilize a weak hashing algorithm to ...)
+ TODO: check
+CVE-2026-36180 (A lack of runtime integrity in GNCC GP5 v7.1.76 allows physically-prox ...)
+ TODO: check
+CVE-2026-36178 (The factory reset functionality in GNCC GP5 v7.1.76 fails to clear sen ...)
+ TODO: check
+CVE-2026-36176 (GNCC GP5 v7.1.76 was discovered to store pre-signed Backblaze B2 uploa ...)
+ TODO: check
+CVE-2026-36175 (An issue in the U-Boot component of GNCC GP5 v7.1.76 allows physically ...)
+ TODO: check
+CVE-2026-36174 (GNCC GP5 v7.1.76 was discovered to store sensitive wireless network in ...)
+ TODO: check
+CVE-2026-35906 (An undocumented debug CGI endpoint in T3 Technology CPE models T625Pro ...)
+ TODO: check
+CVE-2026-35905 (T3 Technology CPE models T625Pro v1.0.07, T6825G v1.0.03, and T7281 v1 ...)
+ TODO: check
+CVE-2026-35904 (Incorrect access control in the web management interface of T3 Technol ...)
+ TODO: check
+CVE-2026-2596
+ REJECTED
+CVE-2026-28318 (SolarWinds Serv-U is susceptible to specially crafted POST requests th ...)
+ TODO: check
+CVE-2026-26825 (A use-of-uninitialized memory vulnerability exists in libxls 1.6.3 whe ...)
+ TODO: check
+CVE-2026-26824 (libxls through version 1.6.3 contains a use of uninitialized memory vu ...)
+ TODO: check
+CVE-2026-25551 (Seagull Software BarTender 2021 R1 through 12.0.1contains an insecure ...)
+ TODO: check
+CVE-2026-25550 (Seagull Software BarTender 2010, 2016, and 2019 contain an unauthentic ...)
+ TODO: check
+CVE-2026-22055 (Active IQ OneCollect version 2.7.3 contains hard-coded credentials tha ...)
+ TODO: check
+CVE-2026-22054 (Active IQ Config Advisor version 6.7.3 contains hard-coded credentials ...)
+ TODO: check
+CVE-2026-10880 (OSNexus QuantaStor SDS Manager is vulnerable to SQL injection in the l ...)
+ TODO: check
+CVE-2026-10868 (A mass assignment vulnerability exists in the MISP user edit functiona ...)
+ TODO: check
+CVE-2026-10864 (A vulnerability in the MISP dashboard widgets allowed an authenticated ...)
+ TODO: check
+CVE-2026-10863 (A security issue was fixed in the correlations over-correlation endpoi ...)
+ TODO: check
+CVE-2026-10861 (An open redirect vulnerability existed in MISP UsersController::routea ...)
+ TODO: check
+CVE-2026-10860 (A logic error in the MISP CRUD component delete handler allowed valida ...)
+ TODO: check
+CVE-2026-10856 (A URL validation flaw in the MISP dashboard button widget allowed a cr ...)
+ TODO: check
+CVE-2026-10855 (An authorization flaw existed in the MISP Event Template Importer over ...)
+ TODO: check
+CVE-2026-10854 (A visibility control issue in the event template creation workflow all ...)
+ TODO: check
+CVE-2026-10843 (A flaw was found in the OpenShift Cloud Credential Operator Mint-mode ...)
+ TODO: check
+CVE-2026-10840 (A flaw was found in the OpenShift Pipelines operator. The tekton-sched ...)
+ TODO: check
+CVE-2026-10815 (A vulnerability was found in LakshayD02 Hostel-Management-System-PHP u ...)
+ TODO: check
+CVE-2026-10814 (A vulnerability has been found in milvus-io milvus up to 2.6.13. This ...)
+ TODO: check
+CVE-2026-10813 (A flaw has been found in LMCache up to 0.4.6. This affects the functio ...)
+ TODO: check
+CVE-2026-10812 (A vulnerability was detected in zilliztech GPTCache up to 0.1.44. Affe ...)
+ TODO: check
+CVE-2026-10811 (A security vulnerability has been detected in itsourcecode Fees Manage ...)
+ TODO: check
+CVE-2026-10810 (A weakness has been identified in itsourcecode Fees Management System ...)
+ TODO: check
+CVE-2026-10809 (A security flaw has been discovered in itsourcecode Fees Management Sy ...)
+ TODO: check
+CVE-2026-10808 (A vulnerability was identified in itsourcecode Fees Management System ...)
+ TODO: check
+CVE-2026-10807 (A vulnerability was determined in mjperpinosa stumasy. The impacted el ...)
+ TODO: check
+CVE-2026-10806 (A vulnerability was found in mjperpinosa stumasy. The affected element ...)
+ TODO: check
+CVE-2026-10805 (A flaw was found in NetworkManager. This local privilege escalation vu ...)
+ TODO: check
+CVE-2026-10804 (A vulnerability has been found in Streamlit up to 1.53.0. Impacted is ...)
+ TODO: check
+CVE-2026-10803 (A flaw has been found in MLflow up to 3.10.0. This issue affects the f ...)
+ TODO: check
+CVE-2026-10802 (A vulnerability was detected in keystonejs keystone up to 20260319. Th ...)
+ TODO: check
+CVE-2026-10801 (A security vulnerability has been detected in modelscope ms-swift up t ...)
+ TODO: check
+CVE-2026-10800 (A weakness has been identified in PaddlePaddle FastDeploy up to 2.4.1. ...)
+ TODO: check
+CVE-2026-10796 (nvm (Node Version Manager) through 0.40.4 executes arbitrary commands ...)
+ TODO: check
+CVE-2026-10783 (A security flaw has been discovered in gradio-app gradio 6.14.0. This ...)
+ TODO: check
+CVE-2026-10777 (A vulnerability was identified in ealpha072 Student-Management-System ...)
+ TODO: check
+CVE-2026-10775 (A vulnerability was determined in sgl-project SGLang up to 0.5.11. Aff ...)
+ TODO: check
+CVE-2026-10771 (A vulnerability was found in crmeb crmeb_java 1.4. Affected is the fun ...)
+ TODO: check
+CVE-2026-10766 (A vulnerability has been found in mlrun up to 1.12.0-rc3. This impacts ...)
+ TODO: check
+CVE-2026-10737 (The SP Project & Document Manager plugin for WordPress is vulnerable t ...)
+ TODO: check
+CVE-2026-10597 (OMICARD EDM developed by ITPison has a Insecure Direct Object Referenc ...)
+ TODO: check
+CVE-2026-10305 (Out-of-bounds read vulnerability in Samsung Open Source rlottie allows ...)
+ TODO: check
+CVE-2025-71316 (SQLite 'sqldiff.exe' does not securely handle the way the Microsoft Wi ...)
+ TODO: check
+CVE-2025-69755 (An issue in Neterbit NW-431F Router vNW-431F-20241014-IR03 allows a re ...)
+ TODO: check
+CVE-2025-67448 (The SMS module in Neterbit NW-431F Router 20241014-IR03 and before is ...)
+ TODO: check
+CVE-2025-67447 (The network diagnosis (ping) module in Neterbit NW-431F Router 2024101 ...)
+ TODO: check
+CVE-2025-67446 (Improper Authentication (Authentication Bypass) exists in Neterbit NW- ...)
+ TODO: check
+CVE-2025-65640 (Cross Site Scripting (XSS) vulnerability in the "Task in Progress / Re ...)
+ TODO: check
+CVE-2025-62338 (The HCL BigFix Cloud Lifecycle Management is affected by Lack Of Input ...)
+ TODO: check
+CVE-2025-59874 (HCL Hive Telco Observability is affected by a Required directives miss ...)
+ TODO: check
+CVE-2025-52612 (HCL iControl was affected by Export CSV - CSV Injection vulnerability. ...)
+ TODO: check
+CVE-2025-52611 (HCL iControl v4.0.0 was affected by Unhandled Exception - Stack Trace ...)
+ TODO: check
+CVE-2025-52609 (HCL iControl was affected by Missing Security Headers vulnerability. w ...)
+ TODO: check
+CVE-2025-52608 (HCL iControl was affected by Missing Cookie Attributes vulnerability. ...)
+ TODO: check
+CVE-2025-52606 (HCL iControl was affected by Weak Input Validation vulnerability. This ...)
+ TODO: check
+CVE-2025-46638 (Dell BSAFE SSL-J contains an allocation of resources without limits or ...)
+ TODO: check
+CVE-2025-12694 (A local privilege escalation vulnerability exists in Forcepoint VPN Cl ...)
+ TODO: check
+CVE-2019-25745 (WordPress Plugin Google Review Slider 6.1 contains a time-based blind ...)
+ TODO: check
+CVE-2019-25744 (WordPress Popup Builder 3.49 contains a persistent cross-site scriptin ...)
+ TODO: check
+CVE-2019-25743 (WordPress Soliloquy Lite 2.5.6 contains a persistent cross-site script ...)
+ TODO: check
+CVE-2019-25742 (WordPress Theme Zoner Real Estate 4.1.1 contains a persistent cross-si ...)
+ TODO: check
+CVE-2019-25741 (Mobatek MobaXterm 12.1 contains a structured exception handling (SEH) ...)
+ TODO: check
+CVE-2019-25740 (Joomla com_jsjobs 1.2.6 contains an arbitrary file deletion vulnerabil ...)
+ TODO: check
+CVE-2019-25739 (GigToDo 1.3 contains a persistent cross-site scripting vulnerability t ...)
+ TODO: check
+CVE-2019-25738 (WordPress Hybrid Composer 1.4.6 contains an unauthenticated settings c ...)
+ TODO: check
+CVE-2019-25737 (Live Chat Unlimited 2.8.3 contains a stored cross-site scripting vulne ...)
+ TODO: check
+CVE-2019-25736 (LabF nfsAxe 3.7 Ping Client contains a buffer overflow vulnerability t ...)
+ TODO: check
+CVE-2019-25735 (AllPlayer 7.4 contains a local buffer overflow vulnerability in URL ha ...)
+ TODO: check
+CVE-2019-25734 (Contact Form by WD 1.13.1 contains a cross-site request forgery vulner ...)
+ TODO: check
+CVE-2019-25733 (NetShareWatcher 1.5.8.0 contains a structured exception handler buffer ...)
+ TODO: check
+CVE-2019-25732 (PHP EI-Tube Script 3 contains an SQL injection vulnerability that allo ...)
+ TODO: check
+CVE-2019-25731 (Zuz Music 2.1 contains a persistent cross-site scripting vulnerability ...)
+ TODO: check
+CVE-2019-25730 (Listing Hub CMS 1.0 contains a SQL injection vulnerability that allows ...)
+ TODO: check
+CVE-2019-25729 (PDF Signer 3.0 contains a server-side template injection vulnerability ...)
+ TODO: check
+CVE-2019-25728 (Care2x 2.7 contains multiple SQL injection vulnerabilities that allow ...)
+ TODO: check
+CVE-2019-25727 (WordPress Plugin ad manager wd 1.0.11 contains an arbitrary file downl ...)
+ TODO: check
+CVE-2019-25726 (All in One Video Downloader 1.2 contains an SQL injection vulnerabilit ...)
+ TODO: check
+CVE-2026-46741 (Etsy::StatsD versions through 1.002002 for Perl allow metric injection ...)
NOT-FOR-US: Etsy::StatsD Perl module
-CVE-2026-46739
+CVE-2026-46739 (Net::Statsd versions before 0.13 for Perl allow metric injections. Th ...)
- libnet-statsd-perl <unfixed>
NOTE: https://lists.security.metacpan.org/cve-announce/msg/40702251/
NOTE: https://github.com/cosimo/perl5-net-statsd/pull/10
NOTE: Fixed by: https://github.com/cosimo/perl5-net-statsd/commit/a10b10173d6751991b7ade14b86dd272439d2283 (0.13)
NOTE: Testcase: https://github.com/cosimo/perl5-net-statsd/commit/583dfdf0385120768d6cfca7264a6ebf337ff377 (0.13)
-CVE-2026-50292
+CVE-2026-50292 (In libinput before 1.30.4 and 1.31.x before 1.31.3, libinput-device-gr ...)
- libinput 1.31.3-1
NOTE: https://gitlab.freedesktop.org/libinput/libinput/-/work_items/1296
NOTE: Fixed by: https://gitlab.freedesktop.org/libinput/libinput/-/commit/76f0d8a7f57e2868882864b4611281f12f704b55 (main)
NOTE: Fixed by: https://gitlab.freedesktop.org/libinput/libinput/-/commit/f5ac1e51fffffdc19aace7708175c10840a8b801 (1.31.3)
NOTE: Fixed by: https://gitlab.freedesktop.org/libinput/libinput/-/commit/b2bde9504d42a5976d76e1f27c640dc561fbd99b (1.30.4)
NOTE: https://www.openwall.com/lists/oss-security/2026/06/04/5
-CVE-2026-50219
+CVE-2026-50219 (libexpat before 2.8.2 lacks handler call depth tracking for calls to X ...)
- expat <unfixed>
NOTE: https://github.com/libexpat/libexpat/pull/1246
-CVE-2026-8829
+CVE-2026-8829 (HTML::Entities versions before 3.84 for Perl read freed heap memory in ...)
- libhtml-parser-perl 3.83-2
NOTE: https://lists.security.metacpan.org/cve-announce/msg/40702610/
NOTE: https://github.com/libwww-perl/HTML-Parser/pull/56
NOTE: Fixed by: https://github.com/libwww-perl/HTML-Parser/commit/6922552b0778c90a9587a3894e248be4d3a25e1c (3.84)
-CVE-2026-8722
+CVE-2026-8722 (Net::Async::Statsd::Client versions through 0.005 for Perl allow metri ...)
NOT-FOR-US: Net::Async::Statsd::Client Perl module
CVE-2026-XXXX [integer overflow in fax image allocation leads to undersized heap allocation]
- okular <unfixed>
@@ -43,19 +381,19 @@ CVE-2026-XXXX [heap out-of-bounds write in fax backend on zero-length input]
- okular <unfixed>
NOTE: https://kde.org/info/security/advisory-20260511-1.txt
NOTE: https://commits.kde.org/okular/466786c354d890e39a3871f80ed686958d2513a2
-CVE-2026-49941
+CVE-2026-49941 (Net::CIDR::Set versions through 0.20 for Perl did not validate IP addr ...)
- libnet-cidr-set-perl 0.21-1
[trixie] - libnet-cidr-set-perl <no-dsa> (Minor issue)
[bookworm] - libnet-cidr-set-perl <no-dsa> (Minor issue)
NOTE: https://lists.security.metacpan.org/cve-announce/msg/40702781/
NOTE: https://github.com/robrwo/perl-Net-CIDR-Set/commit/3a40b4c0d0e8ef996ccb7aee1d5f108187431c2b (0.21)
-CVE-2026-49942
+CVE-2026-49942 (Net::CIDR::Set versions through 0.20 for Perl did not validate network ...)
- libnet-cidr-set-perl 0.21-1
[trixie] - libnet-cidr-set-perl <no-dsa> (Minor issue)
[bookworm] - libnet-cidr-set-perl <no-dsa> (Minor issue)
NOTE: https://lists.security.metacpan.org/cve-announce/msg/40702816/
NOTE: https://github.com/robrwo/perl-Net-CIDR-Set/commit/875010b4217afe9a61cee519f0e0250847ecf699 (0.21)
-CVE-2026-49940
+CVE-2026-49940 (Net::CIDR::Set versions through 0.20 for Perl accept non-ASCII IP addr ...)
- libnet-cidr-set-perl 0.21-1
[trixie] - libnet-cidr-set-perl <no-dsa> (Minor issue)
[bookworm] - libnet-cidr-set-perl <no-dsa> (Minor issue)
@@ -194,7 +532,7 @@ CVE-2026-35076 (The bac-scanresult method allows a remote attacker with user pri
TODO: check
CVE-2026-35075 (An unauthenticated remote attacker can recover a default, hard coded p ...)
TODO: check
-CVE-2026-26379 (An issue in Koha v.25.11 and before allows a remote attacker to execut ...)
+CVE-2026-26379 (Koha versions up to 25.11 contain a Server-Side Request Forgery (SSRF) ...)
TODO: check
CVE-2026-26378 (Cross Site Scripting vulnerability in Koha 25.11 and before allows a r ...)
TODO: check
@@ -260,7 +598,7 @@ CVE-2026-XXXX [Mistral workflow execution context exposes Keystone auth token]
- mistral <unfixed> (bug #1138849)
NOTE: https://wiki.openstack.org/wiki/OSSN/OSSN-0098
NOTE: https://launchpad.net/bugs/2146554
-CVE-2026-44393
+CVE-2026-44393 (An issue was discovered in OpenStack oslo.messaging 1.0.0 through 17.3 ...)
- python-oslo.messaging <unfixed> (bug #1138848)
NOTE: https://wiki.openstack.org/wiki/OSSN/OSSN-0096
NOTE: https://launchpad.net/bugs/2150316
@@ -275,19 +613,19 @@ CVE-2026-XXXX [Neutron port RBAC policy bypass allows project managers to set tr
NOTE: https://www.openwall.com/lists/oss-security/2026/06/04/6
NOTE: https://security.openstack.org/ossa/OSSA-2026-021.html
NOTE: https://launchpad.net/bugs/2152115
-CVE-2026-41283
+CVE-2026-41283 (OpenStack Mistral through 22.0.0 allows Arbitrary Remote Code Executio ...)
- mistral <unfixed> (bug #1138843)
NOTE: https://www.openwall.com/lists/oss-security/2026/06/03/14
NOTE: https://launchpad.net/bugs/2147178
-CVE-2026-44917
+CVE-2026-44917 (OpenStack Ironic before 35.0.2 allows a malicious authenticated projec ...)
- ironic <unfixed> (bug #1138842)
NOTE: https://www.openwall.com/lists/oss-security/2026/06/03/13
NOTE: https://bugs.launchpad.net/ironic/+bug/2148319
-CVE-2026-48681
+CVE-2026-48681 (OpenStack Ironic through before 35.0.2 allows file overwrite via direc ...)
- ironic <unfixed> (bug #1138842)
NOTE: https://www.openwall.com/lists/oss-security/2026/06/03/12
NOTE: https://bugs.launchpad.net/ironic/+bug/2148333
-CVE-2026-46447
+CVE-2026-46447 (OpenStack Ironic before 35.0.2 allows Boot Script Injection of an iPXE ...)
- ironic <unfixed> (bug #1138842)
NOTE: https://www.openwall.com/lists/oss-security/2026/06/03/11
NOTE: https://bugs.launchpad.net/ironic/+bug/2150624
@@ -11422,7 +11760,7 @@ CVE-2026-8700 (Crypt::DSA versions before 1.20 for Perl generate seeds using ran
[bullseye] - libcrypt-dsa-perl <ignored> (Fix switches to Crypt::SysRandom not present in older releases)
NOTE: https://lists.security.metacpan.org/cve-announce/msg/40104301/
NOTE: Fixed by: https://github.com/perl-Crypt-OpenPGP/Crypt-DSA/commit/43f2ad133bca76c57665f42eb0dc8042df54d3f1 (1.20)
-CVE-2026-40930
+CVE-2026-40930 (LIBPNG is a reference library for use in applications that process PNG ...)
- libpng1.6 1.6.37-4
[bullseye] - libpng1.6 <postponed> (Minor issue, not exploitable in default configuration, unclear impact)
NOTE: The vulnerable code has its roots in the external libpng-apng patchset for 1.6
@@ -21344,6 +21682,7 @@ CVE-2026-37459 (An integer underflow in FRRouting (FRR) stable/10.0 to stable/10
NOTE: https://github.com/FRRouting/frr/commit/693a2e02687cdc9d16501275e05136edea9650d9 (master)
NOTE: https://github.com/FRRouting/frr/commit/854c4c579cbf3d799730bf7d4a584186954ce1da (frr-10.6.0)
CVE-2026-37458 (Missing input validation in the MP_REACH_NLRI component of FRRouting ( ...)
+ {DSA-6322-1}
- frr 10.6.0-2
NOTE: https://github.com/FRRouting/frr/commit/8102a8aeceb9f86fdfe1f80cd77080522bab69c8 (master)
NOTE: https://github.com/FRRouting/frr/commit/638ee72802b159056234400037421cc5749185be (frr-10.6.0)
@@ -22145,6 +22484,7 @@ CVE-2026-37504 (Sensitive server_token exposed via GET parameter in V2Board thru
CVE-2026-37503 (Cross-Site Scripting (XSS) in V2Board thru 1.7.4. The custom_html fiel ...)
NOT-FOR-US: V2Board
CVE-2026-37457 (An off-by-one out-of-bounds write vulnerability in the bgp_flowspec_op ...)
+ {DSA-6322-1}
- frr 10.6.0-2
NOTE: https://github.com/FRRouting/frr/commit/0e6882bc72c0278988a47b2f0f73b7a91099a25c (master)
NOTE: https://github.com/FRRouting/frr/commit/b413dbc239841ce4d13824119df4be9c6f06647e (frr-10.6.0)
@@ -23146,6 +23486,7 @@ CVE-2026-2311 (IBM i 7.6, 7.5, 7.4, 7.3, and 7.2 s vulnerable to privilege escal
CVE-2026-28909 (Users who connect to malicious registries with hostnames matching the ...)
NOT-FOR-US: Apple
CVE-2026-28532 (FRRouting before 10.5.3 contains an integer overflow vulnerability in ...)
+ {DSA-6322-1}
- frr 10.5.3-1
NOTE: https://github.com/FRRouting/frr/pull/21002
NOTE: Fixed by: https://github.com/FRRouting/frr/commit/d3e8aedb87671f38db59b0df908e25e1d4af027d (main)
@@ -38374,6 +38715,7 @@ CVE-2026-34088 (Exposure of Sensitive Information to an Unauthorized Actor vulne
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/core/+/1265640 (master)
NOTE: https://lists.wikimedia.org/hyperkitty/list/wikitech-l@lists.wikimedia.org/thread/DIBLSBHISKX6NFRUFNOGZRVW42E7R2QP/
CVE-2026-35535 (In Sudo through 1.9.17p2 before 3e474c2, a failure of a setuid, setgid ...)
+ {DLA-4614-1}
- sudo 1.9.17p2-5 (bug #1130593)
[trixie] - sudo 1.9.16p2-3+deb13u2
[bookworm] - sudo 1.9.13p3-1+deb12u4
@@ -40743,6 +41085,7 @@ CVE-2026-5119 (A flaw was found in libsoup. When establishing HTTPS tunnels thro
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2452932
NOTE: https://gitlab.gnome.org/GNOME/libsoup/-/issues/502
CVE-2026-5107 (A vulnerability has been found in FRRouting FRR up to 10.5.1. This aff ...)
+ {DSA-6322-1}
- frr 10.6.0-2 (bug #1132329)
NOTE: https://github.com/FRRouting/frr/pull/21098
NOTE: Fixed by: https://github.com/FRRouting/frr/commit/7676cad65114aa23adde583d91d9d29e2debd045 (master)
@@ -71759,7 +72102,7 @@ CVE-2026-23953 (Incus is a system container and virtual machine manager. In vers
NOTE: https://github.com/lxc/incus/security/advisories/GHSA-x6jc-phwx-hp32
NOTE: https://github.com/canonical/lxd/commit/6343c2cb0c2c5d4057821f05094671bff032ede8 (lxd-5.0.6)
CVE-2024-31884
- {DLA-4482-1}
+ {DSA-6321-1 DLA-4482-1}
- ceph 18.2.8+ds-1 (bug #1126573)
NOTE: https://www.openwall.com/lists/oss-security/2026/01/21/6
NOTE: https://github.com/ceph/ceph/security/advisories/GHSA-xj9f-7g59-m4jx
@@ -99643,7 +99986,7 @@ CVE-2025-10495 (A potential vulnerability was reported in the Lenovo PC Manager,
CVE-2024-48829 (Dell SmartFabric OS10 Software, versions prior to 10.6.1.0, contain an ...)
NOT-FOR-US: Dell / EMC
CVE-2024-47866 (Ceph is a distributed object, block, and file storage platform. In ver ...)
- {DLA-4460-1}
+ {DSA-6321-1 DLA-4460-1}
- ceph 18.2.7+ds-1.1 (bug #1120797)
NOTE: https://www.openwall.com/lists/oss-security/2025/11/11/3
NOTE: https://github.com/ceph/ceph/security/advisories/GHSA-mgrm-g92q-f8h8
@@ -104193,21 +104536,25 @@ CVE-2025-61155 (The GameDriverX64.sys kernel-mode anti-cheat driver (v7.23.4.7 a
CVE-2025-61128 (Stack-based buffer overflow vulnerability in WAVLINK QUANTUM D3G/WL-WN ...)
NOT-FOR-US: Wavlink
CVE-2025-61107 (FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NU ...)
+ {DSA-6322-1}
- frr 10.5.1-3 (bug #1119292)
NOTE: https://github.com/FRRouting/frr/issues/19471
NOTE: https://github.com/FRRouting/frr/pull/19480
NOTE: https://github.com/FRRouting/frr/pull/19983
CVE-2025-61106 (FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NU ...)
+ {DSA-6322-1}
- frr 10.5.1-3 (bug #1119292)
NOTE: https://github.com/FRRouting/frr/issues/19471
NOTE: https://github.com/FRRouting/frr/pull/19480
NOTE: https://github.com/FRRouting/frr/pull/19983
CVE-2025-61104 (FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NU ...)
+ {DSA-6322-1}
- frr 10.5.1-3 (bug #1119292)
NOTE: https://github.com/FRRouting/frr/issues/19471
NOTE: https://github.com/FRRouting/frr/pull/19480
NOTE: https://github.com/FRRouting/frr/pull/19983
CVE-2025-61103 (FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NU ...)
+ {DSA-6322-1}
- frr 10.5.1-3 (bug #1119292)
NOTE: https://github.com/FRRouting/frr/issues/19471
NOTE: https://github.com/FRRouting/frr/pull/19480
@@ -104792,26 +105139,31 @@ CVE-2025-61385 (SQL injection vulnerability in tlocke pg8000 1.31.4 allows remot
CVE-2025-61247 (indieka900 online-shopping-system-php 1.0 is vulnerable to SQL Injecti ...)
NOT-FOR-US: indieka900 online-shopping-system-php
CVE-2025-61105 (FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NU ...)
+ {DSA-6322-1}
- frr 10.5.1-3 (bug #1119292)
NOTE: https://github.com/FRRouting/frr/issues/19471
NOTE: https://github.com/FRRouting/frr/pull/19480
NOTE: https://github.com/FRRouting/frr/pull/19983
CVE-2025-61102 (FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NU ...)
+ {DSA-6322-1}
- frr 10.5.1-3 (bug #1119292)
NOTE: https://github.com/FRRouting/frr/issues/19471
NOTE: https://github.com/FRRouting/frr/pull/19480
NOTE: https://github.com/FRRouting/frr/pull/19983
CVE-2025-61101 (FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NU ...)
+ {DSA-6322-1}
- frr 10.5.1-3 (bug #1119292)
NOTE: https://github.com/FRRouting/frr/issues/19471
NOTE: https://github.com/FRRouting/frr/pull/19480
NOTE: https://github.com/FRRouting/frr/pull/19983
CVE-2025-61100 (FRRouting/frr from v2.0 through v10.4.1 was discovered to contain a NU ...)
+ {DSA-6322-1}
- frr 10.5.1-3 (bug #1119292)
NOTE: https://github.com/FRRouting/frr/issues/19471
NOTE: https://github.com/FRRouting/frr/pull/19480
NOTE: https://github.com/FRRouting/frr/pull/19983
CVE-2025-61099 (FRRouting/frr from v2.0 through v10.4.1 was discovered to contain a NU ...)
+ {DSA-6322-1}
- frr 10.5.1-3 (bug #1119292)
NOTE: https://github.com/FRRouting/frr/issues/19471
NOTE: https://github.com/FRRouting/frr/pull/19480
@@ -275315,6 +275667,7 @@ CVE-2024-3411 (Implementations of IPMI Authenticated sessions does not provide e
CVE-2024-3072 (The ACF Front End Editor plugin for WordPress is vulnerable to unautho ...)
NOT-FOR-US: WordPress plugin
CVE-2024-34088 (In FRRouting (FRR) through 9.1, it is possible for the get_edge() func ...)
+ {DSA-6322-1}
- frr 10.0.1-0.1 (bug #1070377)
[bullseye] - frr <not-affected> (Vulnerable code introduced later)
[buster] - frr <not-affected> (Vulnerable code introduced later)
@@ -282321,6 +282674,7 @@ CVE-2024-3431 (A vulnerability was found in EyouCMS 1.6.5. It has been declared
CVE-2024-3430 (A vulnerability was found in QKSMS up to 3.9.4 on Android. It has been ...)
NOT-FOR-US: QKSMS
CVE-2024-31951 (In the Opaque LSA Extended Link parser in FRRouting (FRR) through 9.1, ...)
+ {DSA-6322-1}
- frr 10.0.1-0.1 (bug #1070377)
[bullseye] - frr <not-affected> (Vulnerable code not present)
[buster] - frr <not-affected> (Vulnerable code not present)
@@ -282331,6 +282685,7 @@ CVE-2024-31951 (In the Opaque LSA Extended Link parser in FRRouting (FRR) throug
NOTE: https://github.com/FRRouting/frr/commit/e08495a4a8ad4d2050691d9e5e13662d2635b2e0
NOTE: vulnerable feature introduced in https://github.com/FRRouting/frr/commit/f173deb35206a09e8dc22828cb08638e289b72a5 (first shipped with 8.0)
CVE-2024-31950 (In FRRouting (FRR) through 9.1, there can be a buffer overflow and dae ...)
+ {DSA-6322-1}
- frr 10.0.1-0.1 (bug #1070377)
[bullseye] - frr <not-affected> (Vulnerable code not present)
[buster] - frr <not-affected> (Vulnerable code not present)
@@ -294146,6 +294501,7 @@ CVE-2023-51786 (An issue was discovered in Lustre versions 2.13.x, 2.14.x, and 2
- lustre <removed>
NOTE: http://lists.lustre.org/pipermail/lustre-announce-lustre.org/2024/000270.html
CVE-2024-27913 (ospf_te_parse_te in ospfd/ospf_te.c in FRRouting (FRR) through 9.1 all ...)
+ {DSA-6322-1}
- frr 9.1-0.1 (bug #1065144)
[bullseye] - frr <not-affected> (Vulnerable code not present)
[buster] - frr <not-affected> (Vulnerable code not present)
@@ -333194,6 +333550,7 @@ CVE-2023-3750 (A flaw was found in libvirt. The virStoragePoolObjListSearch func
NOTE: Introduced with: https://gitlab.com/libvirt/libvirt/-/commit/0c4b391e2a90c3e0f8a8721cb539e03f14eb1d5e (v8.3.0-rc1)
NOTE: Fixed by: https://gitlab.com/libvirt/libvirt/-/commit/9a47442366fcf8a7b6d7422016d7bbb6764a1098 (v9.6.0-rc1)
CVE-2023-3748 (A flaw was found in FRRouting when parsing certain babeld unicast hell ...)
+ {DSA-6322-1}
- frr 9.1-0.1 (bug #1042473)
[bullseye] - frr <not-affected> (The vulnerable code was introduced later)
[buster] - frr <not-affected> (The vulnerable code was introduced later)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3c53b178c5e65d4877b0146b6edcc799cf8d08eb
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3c53b178c5e65d4877b0146b6edcc799cf8d08eb
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260604/ed88c5f1/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list