[Git][security-tracker-team/security-tracker][master] Add CVE-2026-36499 with unclear upstream status/validity
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Jun 5 21:19:20 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d8fcfc1c by Salvatore Bonaccorso at 2026-06-05T22:18:53+02:00
Add CVE-2026-36499 with unclear upstream status/validity
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1324,7 +1324,9 @@ CVE-2026-38570 (bacnet_stack 1.3.1 contains an Out-of-bounds Read in bacnet_tag_
CVE-2026-37700 (Cross Site Scripting vulnerability in MaxSite CMS v.109.2 allows a rem ...)
NOT-FOR-US: MaxSite CMS
CVE-2026-36499 (A missing upper-bound check in the udpif_set_threads() function of Ope ...)
- TODO: check
+ - openvswitch <undetermined>
+ NOTE: https://github.com/majdlatah/OVS-Other-Config-Bug
+ TODO: check, unclear status/validity
CVE-2026-36182 (GNCC GP5 v7.1.76 was discovered to utilize a weak hashing algorithm to ...)
NOT-FOR-US: GNCC GP5
CVE-2026-36180 (A lack of runtime integrity in GNCC GP5 v7.1.76 allows physically-prox ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d8fcfc1cf6a8716bcaf7a83743f283c61366b841
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d8fcfc1cf6a8716bcaf7a83743f283c61366b841
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260605/878c5fe1/attachment.htm>
More information about the debian-security-tracker-commits
mailing list