[Git][security-tracker-team/security-tracker][master] trixie triage
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Wed Jun 17 19:09:54 BST 2026
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
48298871 by Moritz Muehlenhoff at 2026-06-17T20:09:14+02:00
trixie triage
- - - - -
2 changed files:
- data/CVE/list
- data/dsa-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -56603,6 +56603,7 @@ CVE-2026-33057 (Mesop is a Python-based UI framework that allows users to build
NOT-FOR-US: Mesop
CVE-2026-33056 (tar-rs is a tar archive reading/writing library for Rust. In versions ...)
- rustc 1.92.0+dfsg1-2
+ [trixie] - rustc <no-dsa> (Minor issue)
[bullseye] - rustc <postponed> (Minor issue, parsing inconsistencies among tar libraries, requires recompiling rdeps)
- rust-tar 0.4.45-1 (bug #1131481)
[bullseye] - rust-tar <postponed> (Minor issue, parsing inconsistencies among tar libraries, requires recompiling rdeps)
@@ -56611,6 +56612,7 @@ CVE-2026-33056 (tar-rs is a tar archive reading/writing library for Rust. In ver
NOTE: Fixed by: https://github.com/alexcrichton/tar-rs/commit/17b1fd84e632071cb8eef9d3709bf347bd266446 (0.4.45)
CVE-2026-33055 (tar-rs is a tar archive reading/writing library for Rust. Versions 0.4 ...)
- rustc 1.92.0+dfsg1-2 (bug #1135225)
+ [trixie] - rustc <no-dsa> (Minor issue)
[bullseye] - rustc <postponed> (Minor issue, path traversal, requires recompiling rdeps)
- rust-tar 0.4.45-1 (bug #1131480)
[bullseye] - rust-tar <postponed> (Minor issue, path traversal, requires recompiling rdeps)
=====================================
data/dsa-needed.txt
=====================================
@@ -96,6 +96,8 @@ squid
--
thunderbird (jmm)
--
+util-linux
+--
vim
some of the issues seem worth fixing
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/48298871721c2d98babb7193951af0c033f8b2da
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/48298871721c2d98babb7193951af0c033f8b2da
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260617/002e5b05/attachment.htm>
More information about the debian-security-tracker-commits
mailing list