[Git][security-tracker-team/security-tracker][master] Triage CVE-2026-2659, CVE-2026-2661, CVE-2026-3388 & CVE-2026-3389 in squirrel3 for bullseye LTS.

[Chris Lamb (@lamby)]

Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker


Commits:
22b16ff1 by Chris Lamb at 2026-03-07T11:05:11-08:00
Triage CVE-2026-2659, CVE-2026-2661, CVE-2026-3388 & CVE-2026-3389 in squirrel3 for bullseye LTS.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2817,10 +2817,12 @@ CVE-2026-3390 (A vulnerability was identified in FascinatedBox lily up to 2.3. T
 CVE-2026-3389 (A vulnerability was determined in Squirrel up to 3.2. This vulnerabili ...)
 	- squirrel3 <unfixed>
 	[trixie] - squirrel3 <no-dsa> (Minor issue)
+	[bullseye] - squirrel3 <postponed> (Minor issue; can be fixed in next update)
 	NOTE: https://github.com/albertodemichelis/squirrel/issues/314
 CVE-2026-3388 (A vulnerability was found in Squirrel up to 3.2. This affects the func ...)
 	- squirrel3 <unfixed>
 	[trixie] - squirrel3 <no-dsa> (Minor issue)
+	[bullseye] - squirrel3 <postponed> (Minor issue; can be fixed in next update)
 	NOTE: https://github.com/albertodemichelis/squirrel/issues/312
 CVE-2026-3387 (A vulnerability has been found in wren-lang wren up to 0.4.0. Affected ...)
 	NOT-FOR-US: wren-lang wren
@@ -7554,12 +7556,14 @@ CVE-2026-2662 (A weakness has been identified in FascinatedBox lily up to 2.3. T
 CVE-2026-2661 (A security flaw has been discovered in Squirrel up to 3.2. This affect ...)
 	- squirrel3 <unfixed>
 	[trixie] - squirrel3 <no-dsa> (Minor issue)
+	[bullseye] - squirrel3 <postponed> (Minor issue; can be fixed in next update)
 	NOTE: https://github.com/albertodemichelis/squirrel/issues/310
 CVE-2026-2660 (A vulnerability was identified in FascinatedBox lily up to 2.3. Affect ...)
 	NOT-FOR-US: FascinatedBox lily
 CVE-2026-2659 (A vulnerability was determined in Squirrel up to 3.2. Affected by this ...)
 	- squirrel3 <unfixed>
 	[trixie] - squirrel3 <no-dsa> (Minor issue)
+	[bullseye] - squirrel3 <postponed> (Minor issue; can be fixed in next update)
 	NOTE: https://github.com/albertodemichelis/squirrel/issues/311
 CVE-2026-2658 (A vulnerability was found in newbee-ltd newbee-mall up to a069069b0702 ...)
 	NOT-FOR-US: newbee-ltd newbee-mall



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/22b16ff1548c98b198d663e8e8c0caea328ca5ae

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/22b16ff1548c98b198d663e8e8c0caea328ca5ae
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260307/f00369bd/attachment-0001.htm>