[Git][security-tracker-team/security-tracker][master] Add new dhcpcd issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Jun 23 20:59:42 BST 2026



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0a30d161 by Salvatore Bonaccorso at 2026-06-23T21:59:15+02:00
Add new dhcpcd issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -63,15 +63,20 @@ CVE-2026-56225 (Capgo before 12.128.2 contains an authorization bypass vulnerabi
 CVE-2026-56222 (Capgo before 12.128.2 contains an authorization bypass vulnerability i ...)
 	NOT-FOR-US: Cap-go
 CVE-2026-56117 (dhcpcd through 10.3.2, fixed in commit 78ea09e, contains a heap use-af ...)
-	TODO: check
+	- dhcpcd <unfixed>
+	NOTE: Fixed by: https://github.com/NetworkConfiguration/dhcpcd/commit/78ea09ed1633a583dbcde6e7bab9df4639ec8a34
 CVE-2026-56116 (dhcpcd through 10.3.2, fixed in commit 708b4a5, contains a memory leak ...)
-	TODO: check
+	- dhcpcd <unfixed>
+	NOTE: Fixed by: https://github.com/NetworkConfiguration/dhcpcd/commit/708b4a56bae080a5b18c2e0c4c6fbe103131a2b0
 CVE-2026-56115 (dhcpcd through 10.3.2, fixed in commit 2f00c7b, contains a one-byte st ...)
-	TODO: check
+	- dhcpcd <unfixed>
+	NOTE: Fixed by: https://github.com/NetworkConfiguration/dhcpcd/commit/2f00c7bfc408b6582d331932dfa47829c4819029
 CVE-2026-56114 (dhcpcd through 10.3.2, fixed in commit 2f00c7b, contains a one-byte st ...)
-	TODO: check
+	- dhcpcd <unfixed>
+	NOTE: Fixed by: https://github.com/NetworkConfiguration/dhcpcd/commit/2f00c7bfc408b6582d331932dfa47829c4819029
 CVE-2026-56113 (dhcpcd through 10.3.2, fixed in commit 5733d3c, contains a heap use-af ...)
-	TODO: check
+	- dhcpcd <unfixed>
+	NOTE: Fixed by: https://github.com/NetworkConfiguration/dhcpcd/commit/5733d3c59a5651f64357ac11c98b4f39895c8d25
 CVE-2026-55736 (Improperly Controlled Modification of Dynamically-Determined Object At ...)
 	NOT-FOR-US: ash-project ash
 CVE-2026-55517 (Deno is a JavaScript, TypeScript, and WebAssembly runtime. Prior to 2. ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0a30d1617142032ad63ed242d5215fef41572911

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0a30d1617142032ad63ed242d5215fef41572911
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260623/ab8b472f/attachment.htm>


More information about the debian-security-tracker-commits mailing list