[Git][security-tracker-team/security-tracker][master] Add new 389-ds-base issues

Wed Jun 10 05:09:36 BST 2026


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a3e4d2f8 by Salvatore Bonaccorso at 2026-06-10T06:09:10+02:00
Add new 389-ds-base issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -855,21 +855,37 @@ CVE-2026-24064 (Waves Central for macOS versions 13.0.9 through 16.5.5 contain a
 CVE-2026-22926 (Omnissa Workspace ONE\xae Assist for macOS contains a Local Privilege  ...)
 	NOT-FOR-US: Omnissa
 CVE-2026-11793 (A stack buffer overflow flaw was found in 389 Directory Server. The ch ...)
-	TODO: check
+	- 389-ds-base <unfixed>
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2484914
+	TODO: check details
 CVE-2026-11792 (A heap buffer overflow flaw was found in 389 Directory Server. When au ...)
-	TODO: check
+	- 389-ds-base <unfixed>
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2484915
+	TODO: check details
 CVE-2026-11790 (A flaw was found in 389 Directory Server. The PBKDF2-SHA256 password s ...)
-	TODO: check
+	- 389-ds-base <unfixed>
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2485421
+	TODO: check details
 CVE-2026-11789 (A flaw was found in 389 Directory Server. The SMD5 password storage pl ...)
-	TODO: check
+	- 389-ds-base <unfixed>
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2485422
+	TODO: check details
 CVE-2026-11788 (A flaw was found in 389 Directory Server. The dereference control plug ...)
-	TODO: check
+	- 389-ds-base <unfixed>
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2485423
+	TODO: check details
 CVE-2026-11787 (A flaw was found in 389 Directory Server. The ldap_utf8prev() function ...)
-	TODO: check
+	- 389-ds-base <unfixed>
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2485425
+	TODO: check details
 CVE-2026-11786 (A flaw was found in 389 Directory Server. The LDIF parser reads past t ...)
-	TODO: check
+	- 389-ds-base <unfixed>
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2485426
+	TODO: check details
 CVE-2026-11785 (A flaw was found in 389 Directory Server. A type confusion in the SSO  ...)
-	TODO: check
+	- 389-ds-base <unfixed>
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2485427
+	TODO: check details
 CVE-2026-11764 (When creating an export of all reusable media, the secrets of connecte ...)
 	NOT-FOR-US: rami.io products
 CVE-2026-11616 (The Events Calendar for GeoDirectory plugin for WordPress is vulnerabl ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a3e4d2f81cb82c03a5c4f3337a5dbc61a1d8fd86

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a3e4d2f81cb82c03a5c4f3337a5dbc61a1d8fd86
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260610/76858187/attachment.htm>
