[Git][security-tracker-team/security-tracker][master] Add CVE-2026-58374/wpa

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Jun 30 22:23:05 BST 2026



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0900bcba by Salvatore Bonaccorso at 2026-06-30T23:22:54+02:00
Add CVE-2026-58374/wpa

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -29,7 +29,8 @@ CVE-2026-58376 (Dolibarr through 23.0.3, fixed in commit 14db36e, contains a sql
 CVE-2026-58375 (JimuReport through 2.5.0 exposes the POST /jmreport/auto/export endpoi ...)
 	NOT-FOR-US: JimuReport
 CVE-2026-58374 (In hostapd before 2.12, a missing bounds check in AP-mode Wi-Fi 7 (IEE ...)
-	TODO: check
+	- wpa <unfixed>
+	NOTE: https://w1.fi/security/2026-1/missing-ml-parsing-validation.txt
 CVE-2026-58373 (CVAT before 2.69.0 contains an improper authorization vulnerability in ...)
 	TODO: check
 CVE-2026-58372 (SeaweedFS before 4.34 contains a path traversal vulnerability in the S ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0900bcbacd7ea17aae84a20ff7be35291f9ba469

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0900bcbacd7ea17aae84a20ff7be35291f9ba469
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260630/2fdc1622/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list