[Git][security-tracker-team/security-tracker][master] Add CVE-2026-50127/weblate, itp'ed

Thu Jun 11 21:53:56 BST 2026


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
28677c1d by Salvatore Bonaccorso at 2026-06-11T22:53:36+02:00
Add CVE-2026-50127/weblate, itp'ed

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -112,7 +112,7 @@ CVE-2026-50223 (Improper Control of Generation of Code ('Code Injection') vulner
 CVE-2026-50131 (Fedify is a TypeScript library for building federated server apps powe ...)
 	NOT-FOR-US: Fedify
 CVE-2026-50127 (Weblate is a web based localization tool. From version 5.15 to before  ...)
-	TODO: check
+	- weblate <itp> (bug #745661)
 CVE-2026-4764 (A Missing Authorization vulnerability in the playbook import functiona ...)
 	NOT-FOR-US: Dialogflow CX on Google Cloud Platform
 CVE-2026-4096 (IBM DevOps Plan 3.0.0 through 3.0.6 is vulnerable to HTTP header injec ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/28677c1d7ee3d1d2d7efd0202cb9b89555181aea

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/28677c1d7ee3d1d2d7efd0202cb9b89555181aea
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260611/87d7ccc7/attachment.htm>
