[Git][security-tracker-team/security-tracker][master] Add new dracut issue
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Jun 11 07:40:47 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
92247e6a by Salvatore Bonaccorso at 2026-06-11T08:40:40+02:00
Add new dracut issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,7 @@
+CVE-2026-6893 [Root code execution via DHCP options command injection]
+ - dracut <unfixed>
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2459963
+ TODO: check upstream status, as only reference is Red Hat bugzilla entry
CVE-2026-9758 (Improper comparison with the certificates trusted list in S2OPC allows ...)
NOT-FOR-US: S2OPC library
CVE-2026-9151 (An OS command injection vulnerability exists in the VPN module of TP-L ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/92247e6a0db2b5a5a736c2f547aeb0f864a95602
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/92247e6a0db2b5a5a736c2f547aeb0f864a95602
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260611/5f4f8e88/attachment.htm>
More information about the debian-security-tracker-commits
mailing list