[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for logback issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun Jun 28 13:54:00 BST 2026



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
54e96119 by Salvatore Bonaccorso at 2026-06-28T14:53:36+02:00
Add Debian bug reference for logback issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -4450,7 +4450,7 @@ CVE-2026-39253 (An issue in Pivotal CRM v.6.6.04.08 allows a remote attacker to
 CVE-2026-23513 (FOSSBilling is a free, open-source billing and client management syste ...)
 	NOT-FOR-US: FOSSBilling
 CVE-2026-13006 (ACE vulnerability in conditional configuration file processing  by QOS ...)
-	- logback <unfixed>
+	- logback <unfixed> (bug #1140922)
 	NOTE: https://logback.qos.ch/news.html#1.5.35
 CVE-2026-12892 (A flaw was found in GStreamer's gst-plugins-bad package. When processi ...)
 	- gst-plugins-bad1.0 <unfixed>
@@ -131833,7 +131833,7 @@ CVE-2025-11233 (Starting from Rust 1.87.0 and before Rust 1.89.0, the tier 3 Cyg
 	[bullseye] - rustc <not-affected> (Introduced in 1.87)
 	NOTE: https://groups.google.com/g/rustlang-security-announcements/c/oT9zCvLLYkw
 CVE-2025-11226 (ACE vulnerability in conditional configuration file processing  by QOS ...)
-	- logback <unfixed>
+	- logback <unfixed> (bug #1140922)
 	NOTE: https://logback.qos.ch/news.html#1.5.19
 	NOTE: Fixed by: https://github.com/qos-ch/logback/commit/61f6a2544f36b3016e0efd434ee21f19269f1df7 (v_1.5.19)
 CVE-2025-10847 (DX Unified Infrastructure Management (Nimsoft/UIM) and below contains  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/54e96119b8e87dab23ffc278e52484b849d130a1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/54e96119b8e87dab23ffc278e52484b849d130a1
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260628/a272dce0/attachment.htm>


More information about the debian-security-tracker-commits mailing list