[Git][security-tracker-team/security-tracker][master] Update status for CVE-2026-11623/tmux

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Jun 27 08:29:05 BST 2026



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
64883b8e by Salvatore Bonaccorso at 2026-06-27T09:28:38+02:00
Update status for CVE-2026-11623/tmux

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -13286,10 +13286,11 @@ CVE-2026-26236 (A missing authorization vulnerability has been reported to affec
 CVE-2026-24315 (SAP Fiori Launchpad allows attackers to craft malicious URLs that trig ...)
 	NOT-FOR-US: SAP
 CVE-2026-11623 (A security vulnerability has been detected in tmux up to 3.6a. Affecte ...)
-	- tmux <unfixed> (bug #1140487)
+	- tmux 3.6b-1 (bug #1140487)
 	[trixie] - tmux <no-dsa> (Minor issue)
 	[bullseye] - tmux <postponed> (minor issue; hard to exploit)
-	NOTE: https://github.com/tmux/tmux/commit/fc6d94a9f8a593bd8b7031650802084385d4ee03 (3.7-rc)
+	NOTE: Fixed by: https://github.com/tmux/tmux/commit/fc6d94a9f8a593bd8b7031650802084385d4ee03 (3.7)
+	NOTE: Fixed by: https://github.com/tmux/tmux/commit/b8434182c9ead062be8d50a1ff88e98b41108c1f (3.6b)
 CVE-2026-11621 (A weakness has been identified in Dcat-Admin up to 2.2.3-beta. This im ...)
 	NOT-FOR-US: Dcat-Admin
 CVE-2026-11620 (A security flaw has been discovered in TOTOLINK EX200 4.0.3c.7646. Thi ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/64883b8e6bf3b77c4891ed51792f9a1b97316a18

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/64883b8e6bf3b77c4891ed51792f9a1b97316a18
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260627/160fa263/attachment.htm>


More information about the debian-security-tracker-commits mailing list