[Git][security-tracker-team/security-tracker][master] Add three new issues in rust-russh
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Jun 11 21:54:40 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
43649b78 by Salvatore Bonaccorso at 2026-06-11T22:54:16+02:00
Add three new issues in rust-russh
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -153,11 +153,14 @@ CVE-2026-48547 (KanaDojo contains a command injection vulnerability that allows
CVE-2026-48546 (KanaDojo before 0.1.18 contains a sandbox escape vulnerability that al ...)
NOT-FOR-US: KanaDojo
CVE-2026-48110 (Russh is a Rust SSH client & server library. From version 0.34.0 to be ...)
- TODO: check
+ - rust-russh <unfixed>
+ NOTE: https://github.com/Eugeny/russh/security/advisories/GHSA-4r3c-5hpg-58qr
CVE-2026-48108 (Russh is a Rust SSH client & server library. From version 0.34.0-beta. ...)
- TODO: check
+ - rust-russh <unfixed>
+ NOTE: https://github.com/Eugeny/russh/security/advisories/GHSA-76r6-x97p-67vr
CVE-2026-48107 (Russh is a Rust SSH client & server library. From version 0.37.0 to be ...)
- TODO: check
+ - rust-russh <unfixed>
+ NOTE: https://github.com/Eugeny/russh/security/advisories/GHSA-g9g7-5cgw-6v28
CVE-2026-48011 (Shopware is an open commerce platform. Prior to versions 6.6.10.18 and ...)
NOT-FOR-US: Shopware
CVE-2026-47342 (A privilege escalation vulnerability in Apache OFBiz allows a low-priv ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/43649b7813e556d331345a687d06b23bad7937a4
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/43649b7813e556d331345a687d06b23bad7937a4
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260611/9ca2b788/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list