[Git][security-tracker-team/security-tracker][master] trixie/bookworm triage

Wed Jun 10 13:19:07 BST 2026


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
bb38735c by Moritz Muehlenhoff at 2026-06-10T14:18:54+02:00
trixie/bookworm triage

- - - - -


2 changed files:

- data/CVE/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -12590,6 +12590,8 @@ CVE-2026-44985 (Dozzle is a realtime log viewer for docker containers. Prior to
 	NOT-FOR-US: Dozzle
 CVE-2026-44983 (smallbitvec is a growable bit-vector for Rust, optimized for size. Fro ...)
 	- rust-smallbitvec 2.6.1-1
+	[trixie] - rust-smallbitvec <no-dsa> (Minor issue)
+	[bookworm] - rust-smallbitvec <no-dsa> (Minor issue)
 	NOTE: https://github.com/servo/smallbitvec/security/advisories/GHSA-97wc-2hqc-cjgr
 CVE-2026-44966 (Velocity.js is a JavaScript implementation of the Apache Velocity temp ...)
 	NOT-FOR-US: Velocity.js
@@ -61645,6 +61647,8 @@ CVE-2026-2428 (The Fluent Forms Pro Add On Pack plugin for WordPress is vulnerab
 	NOT-FOR-US: WordPress plugin
 CVE-2026-28370 (In the query parser in OpenStack Vitrage before 12.0.1, 13.0.0, 14.0.0 ...)
 	- vitrage 15.0.1-1 (bug #1139452)
+	[trixie] - vitrage <no-dsa> (Minor issue)
+	[bookworm] - vitrage <no-dsa> (Minor issue)
 	NOTE: https://storyboard.openstack.org/#!/story/2011539
 	NOTE: Fixed by: https://github.com/openstack/vitrage/commit/5b57e2b32a6d02992a28d9a671ebba5e308fd141 (master)
 	NOTE: Fixed by: https://github.com/openstack/vitrage/commit/89df4bd2ffda1a5ddea66cd828438a6a171a3b11 (15.0.1)


=====================================
data/dsa-needed.txt
=====================================
@@ -42,6 +42,8 @@ gst-plugins-good1.0/oldstable (jmm)
 --
 inkscape/oldstable
 --
+ironic (jmm)
+--
 isc-kea/oldstable
 --
 jackson-core (apo)
@@ -93,6 +95,8 @@ prometheus
 python-aiohttp/oldstable
   Daniel Leidert is proposing to work on the update and provide debdiffs for bookworm and trixie
 --
+python-urllib3 (jmm)
+--
 rsync
   for regression fixes
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bb38735c9128f49e6b7b52f5d9d6faae61510fdb

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bb38735c9128f49e6b7b52f5d9d6faae61510fdb
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260610/50721074/attachment-0001.htm>
