[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for shiro issues

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4e2d08ec by Salvatore Bonaccorso at 2026-06-14T16:09:52+02:00
Add Debian bug reference for shiro issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -15322,13 +15322,13 @@ CVE-2026-44598 (With valid login credentials, URL Redirection to Untrusted Site
 	- shiro <not-affected> (Jakarta EE integration introduced in 2.0.0)
 	NOTE: https://www.openwall.com/lists/oss-security/2026/05/25/8
 CVE-2026-43828 (Default configurations of Apache Shiro send sensitive cookies in HTTPS ...)
-	- shiro <unfixed>
+	- shiro <unfixed> (bug #1140001)
 	[trixie] - shiro <no-dsa> (Minor issue)
 	[bookworm] - shiro <no-dsa> (Minor issue)
 	[bullseye] - shiro <no-dsa> (Minor issue)
 	NOTE: https://www.openwall.com/lists/oss-security/2026/05/25/7
 CVE-2026-43827 (Default configurations of Apache Shiro have a session fixation vulnera ...)
-	- shiro <unfixed>
+	- shiro <unfixed> (bug #1140001)
 	[trixie] - shiro <no-dsa> (Minor issue)
 	[bookworm] - shiro <no-dsa> (Minor issue)
 	[bullseye] - shiro <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4e2d08ec0d1074d403d8e2151323e7ea7d8e3699

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4e2d08ec0d1074d403d8e2151323e7ea7d8e3699
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260614/67514fb4/attachment-0001.htm>