[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2026-44705
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Jun 12 16:18:54 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
dbc3fd97 by Salvatore Bonaccorso at 2026-06-12T17:18:28+02:00
Add Debian bug reference for CVE-2026-44705
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -501,7 +501,7 @@ CVE-2026-45176 (Idira Endpoint Privilege Manager Agent versions prior to 26.5 ex
CVE-2026-45106 (Weblate is a web based localization tool. Prior to version 2026.5, Web ...)
- weblate <itp> (bug #745661)
CVE-2026-44705 (tmp is a temporary file and directory creator for node.js. Prior to 0. ...)
- - node-tmp <unfixed>
+ - node-tmp <unfixed> (bug #1139827)
NOTE: https://github.com/raszi/node-tmp/security/advisories/GHSA-ph9p-34f9-6g65
NOTE: Fixed by: https://github.com/raszi/node-tmp/commit/efa4a06f24374797ae32ab2b6ae39b7a611ae429 (v0.2.6)
NOTE: When fixing this issue make sure to fix it completely to not open up CVE-2026-49982
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dbc3fd974906e8fa85cee8f9e426cd539d7d2617
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dbc3fd974906e8fa85cee8f9e426cd539d7d2617
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260612/0875cd52/attachment.htm>
More information about the debian-security-tracker-commits
mailing list