[Git][security-tracker-team/security-tracker][master] cargo/bullseye triagging

[Bastien Roucariès (@rouca)]

Bastien Roucariès pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e959a3d7 by Bastien Roucariès at 2026-06-08T22:22:37+02:00
cargo/bullseye triagging

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -11485,6 +11485,7 @@ CVE-2026-7766 (Kenik Camera management Panel is vulnerable to Path Traversal vul
 CVE-2026-5223 (Cargo incorrectly handled symlinks inside of crate tarballs downloaded ...)
 	- cargo <removed>
 	[bookworm] - cargo <no-dsa> (Minor issue)
+	[bullseye] - cargo <postponed> (Minor issue)
 	- rust-cargo 0.91.0-3
 	[trixie] - rust-cargo <no-dsa> (Minor issue)
 	[bookworm] - rust-cargo <no-dsa> (Minor issue)
@@ -11498,6 +11499,7 @@ CVE-2026-5223 (Cargo incorrectly handled symlinks inside of crate tarballs downl
 CVE-2026-5222 (Cargo between 1.68 and 1.96 incorrectly normalized the URLs of third-p ...)
 	- cargo <removed>
 	[bookworm] - cargo <no-dsa> (Minor issue)
+	[bullseye] - cargo <postponed> (Minor issue)
 	- rust-cargo 0.91.0-3
 	[trixie] - rust-cargo <no-dsa> (Minor issue)
 	[bookworm] - rust-cargo <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e959a3d76240d9207c129eb35a0eb980859672fb

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e959a3d76240d9207c129eb35a0eb980859672fb
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260608/ad385d5a/attachment-0001.htm>