[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2026-28370/vitrage
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Jun 9 12:19:46 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
eb3c3ace by Salvatore Bonaccorso at 2026-06-09T13:11:50+02:00
Add Debian bug reference for CVE-2026-28370/vitrage
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -60065,7 +60065,7 @@ CVE-2026-3037 (An OS command injection vulnerability exists in XWEB Pro version
CVE-2026-2428 (The Fluent Forms Pro Add On Pack plugin for WordPress is vulnerable to ...)
NOT-FOR-US: WordPress plugin
CVE-2026-28370 (In the query parser in OpenStack Vitrage before 12.0.1, 13.0.0, 14.0.0 ...)
- - vitrage 15.0.1-1
+ - vitrage 15.0.1-1 (bug #1139452)
NOTE: https://storyboard.openstack.org/#!/story/2011539
NOTE: Fixed by: https://github.com/openstack/vitrage/commit/5b57e2b32a6d02992a28d9a671ebba5e308fd141 (master)
NOTE: Fixed by: https://github.com/openstack/vitrage/commit/89df4bd2ffda1a5ddea66cd828438a6a171a3b11 (15.0.1)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/eb3c3acefa07797ecd8914e487b90f3518685f1e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/eb3c3acefa07797ecd8914e487b90f3518685f1e
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260609/a5137bc9/attachment.htm>
More information about the debian-security-tracker-commits
mailing list