[Git][security-tracker-team/security-tracker][master] Add Debian bug references for onionshare issues

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4c9d8889 by Salvatore Bonaccorso at 2026-06-11T21:06:31+02:00
Add Debian bug references for onionshare issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -278,10 +278,10 @@ CVE-2025-10237 (During an internal security assessment, a potential vulnerabilit
 CVE-2024-58350 (Ghidra before 11.2 contains a use after free vulnerability in the Slei ...)
 	- ghidra <itp> (bug #923851)
 CVE-2026-XXXX [OnionShare follows symlinks in shared directories, allowing unintended disclosure of local files]
-	- onionshare <unfixed>
+	- onionshare <unfixed> (bug #1139717)
 	NOTE: https://github.com/onionshare/onionshare/security/advisories/GHSA-22p9-r2f5-22mf
 CVE-2026-XXXX [OnionShare Receive mode writes uploaded files even when file uploads are disabled]
-	- onionshare <unfixed>
+	- onionshare <unfixed> (bug #1139716)
 	NOTE: https://github.com/onionshare/onionshare/security/advisories/GHSA-v833-3823-cmhp
 CVE-2026-11853 (Debusine is an integrated solution to build, distribute and maintain a ...)
 	- debusine 0.14.9



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4c9d8889c28ced7f3512786aab10197057f94da8

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4c9d8889c28ced7f3512786aab10197057f94da8
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260611/a0e2b43f/attachment-0001.htm>