[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Jun 22 08:13:17 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
54ae5150 by security tracker role at 2026-06-22T07:13:11+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,55 @@
+CVE-2026-8918 (A permissive list of allowed inputs in ASUS Armoury Crate allows a loc ...)
+ TODO: check
+CVE-2026-8157 (The Vitepos WordPress plugin before 3.4.2 does not properly restrict ...)
+ TODO: check
+CVE-2026-7859 (The Motors WordPress plugin before 1.4.110 does not have proper autho ...)
+ TODO: check
+CVE-2026-6858 (The Transbank Webpay WordPress plugin before 1.14.0 does not sanitize ...)
+ TODO: check
+CVE-2026-6645 (An insecure process execution vulnerability exists in the pc-printer-u ...)
+ TODO: check
+CVE-2026-4259 (The ultimate-woocommerce-auction-pro WordPress plugin through 2.4.5 do ...)
+ TODO: check
+CVE-2026-4110 (The ultimate-woocommerce-auction-pro WordPress plugin through 2.4.5 do ...)
+ TODO: check
+CVE-2026-12845
+ REJECTED
+CVE-2026-12823 (A security flaw has been discovered in Browserbase up to 20260526. Thi ...)
+ TODO: check
+CVE-2026-12822 (A vulnerability was identified in langflow-ai langflow up to 1.9.3. Th ...)
+ TODO: check
+CVE-2026-12821 (A vulnerability was determined in FlowiseAI Flowise up to 3.1.2. The i ...)
+ TODO: check
+CVE-2026-12815 (A vulnerability has been found in coollabsio coolify 4.0.0. Impacted i ...)
+ TODO: check
+CVE-2026-12814 (A flaw has been found in Comfast CF-WR631AX V3 up to 2.7.0.8. This iss ...)
+ TODO: check
+CVE-2026-12813 (A vulnerability was detected in activepieces up to 0.83.0. This vulner ...)
+ TODO: check
+CVE-2026-12812 (A security vulnerability has been detected in Radware Cyber Controller ...)
+ TODO: check
+CVE-2026-12811 (A weakness has been identified in kortix-ai suna up to 0.8.38. Affecte ...)
+ TODO: check
+CVE-2026-12810 (A security flaw has been discovered in Edimax BR-6478AC V2 1.23. Affec ...)
+ TODO: check
+CVE-2026-12809 (A vulnerability was identified in Edimax BR-6478AC V2 1.23. Affected i ...)
+ TODO: check
+CVE-2026-12808 (A vulnerability was determined in Edimax BR-6478AC V2 1.23. This impac ...)
+ TODO: check
+CVE-2026-12807 (A vulnerability was found in Edimax BR-6478AC V2 1.23. This affects th ...)
+ TODO: check
+CVE-2026-12806 (A vulnerability has been found in Edimax BR-6478AC V2 1.23. The impact ...)
+ TODO: check
+CVE-2026-12805 (A flaw has been found in OFFIS DCMTK up to 3.7.0. The affected element ...)
+ TODO: check
+CVE-2026-11748 (A vulnerability has been identified in centraldogma-server-auth-shiro ...)
+ TODO: check
+CVE-2026-11746 (A vulnerability has been identified in centraldogma-server versions pr ...)
+ TODO: check
+CVE-2026-11745 (A vulnerability has been identified in centraldogma-server-mirror-git ...)
+ TODO: check
+CVE-2026-10530 (The Pie Register WordPress plugin before 3.8.4.10 does not use suffic ...)
+ TODO: check
CVE-2026-56412 (libexpat before 2.8.2 does not consider XML_TOK_DATA_CHARS in doCdataS ...)
- expat <unfixed>
NOTE: https://github.com/libexpat/libexpat/pull/1278
@@ -50120,7 +50172,7 @@ CVE-2026-5266 (Exposure of Sensitive Information to an Unauthorized Actor vulner
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/extensions/Echo/+/1265608 (master)
NOTE: https://lists.wikimedia.org/hyperkitty/list/wikitech-l@lists.wikimedia.org/thread/DIBLSBHISKX6NFRUFNOGZRVW42E7R2QP/
CVE-2026-34095 (Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability ...)
- {DSA-6208-1}
+ {DSA-6208-1 DLA-4640-1}
- mediawiki 1:1.43.8+dfsg-2
NOTE: http://phabricator.wikimedia.org/T419192
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/core/+/1265669 (REL1_43)
@@ -50150,14 +50202,14 @@ CVE-2026-34086 (Vulnerability in Wikimedia Foundation AbuseFilter. This issue a
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/extensions/AbuseFilter/+/1265611 (master)
NOTE: https://lists.wikimedia.org/hyperkitty/list/wikitech-l@lists.wikimedia.org/thread/DIBLSBHISKX6NFRUFNOGZRVW42E7R2QP/
CVE-2026-34093 (Exposure of Sensitive Information to an Unauthorized Actor vulnerabili ...)
- {DSA-6208-1}
+ {DSA-6208-1 DLA-4640-1}
- mediawiki 1:1.43.8+dfsg-1
NOTE: https://phabricator.wikimedia.org/T414547
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/core/+/1265667 (REL1_43)
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/core/+/1265639 (master)
NOTE: https://lists.wikimedia.org/hyperkitty/list/wikitech-l@lists.wikimedia.org/thread/DIBLSBHISKX6NFRUFNOGZRVW42E7R2QP/
CVE-2026-34087 (Exposure of Sensitive Information to an Unauthorized Actor vulnerabili ...)
- {DSA-6208-1}
+ {DSA-6208-1 DLA-4640-1}
- mediawiki 1:1.43.8+dfsg-1
NOTE: https://phabricator.wikimedia.org/T412061
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/extensions/OATHAuth/+/1265614 (REL1_43)
@@ -50186,7 +50238,7 @@ CVE-2026-34092 (Exposure of Sensitive Information to an Unauthorized Actor vulne
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/core/+/1265638 (master)
NOTE: https://lists.wikimedia.org/hyperkitty/list/wikitech-l@lists.wikimedia.org/thread/DIBLSBHISKX6NFRUFNOGZRVW42E7R2QP/
CVE-2026-34088 (Exposure of Sensitive Information to an Unauthorized Actor vulnerabili ...)
- {DSA-6208-1}
+ {DSA-6208-1 DLA-4640-1}
- mediawiki 1:1.43.8+dfsg-1
NOTE: https://phabricator.wikimedia.org/T410429
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/core/+/1265670 (REL1_43)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/54ae515072d56c24b96957dccd708e3e2f2c8c3d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/54ae515072d56c24b96957dccd708e3e2f2c8c3d
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260622/857c0f49/attachment.htm>
More information about the debian-security-tracker-commits
mailing list