[Git][security-tracker-team/security-tracker][master] Add two new glances issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Mar 11 05:47:10 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9e4fd7ab by Salvatore Bonaccorso at 2026-03-11T06:46:48+01:00
Add two new glances issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -98,9 +98,17 @@ CVE-2026-30934 (FileBrowser Quantum is a free, self-hosted, web-based file manag
CVE-2026-30933 (FileBrowser Quantum is a free, self-hosted, web-based file manager. Pr ...)
NOT-FOR-US: FileBrowser Quantum
CVE-2026-30930 (Glances is an open-source system cross-platform monitoring tool. Prior ...)
- TODO: check
+ - glances <unfixed>
+ [trixie] - glances <not-affected> (Vulnerable code introduced later)
+ [bookworm] - glances <not-affected> (Vulnerable code introduced later)
+ NOTE: https://github.com/nicolargo/glances/security/advisories/GHSA-x46r-mf5g-xpr6
+ NOTE: Introduced with: https://github.com/nicolargo/glances/commit/1365d600a3c92483efa42ad67aad8b9aa2769635 (v4.3.2)
+ NOTE: Fixed by: https://github.com/nicolargo/glances/commit/39161f0d6fd723d83f534b48f24cdca722573336 (v4.5.1)
CVE-2026-30928 (Glances is an open-source system cross-platform monitoring tool. Prior ...)
- TODO: check
+ - glances <unfixed>
+ [bookworm] - glances <not-affected> (Vulnerable code introduced later)
+ NOTE: https://github.com/nicolargo/glances/security/advisories/GHSA-gh4x-f7cq-wwx6
+ NOTE: Fixed by: https://github.com/nicolargo/glances/commit/5d3de603e63f21b0fd6aa2b9da0301f757c33e39 (v4.5.1)
CVE-2026-30897 (A stack-based buffer overflow vulnerability in Fortinet FortiWeb 8.0.0 ...)
NOT-FOR-US: Fortinet
CVE-2026-2742 (An authentication bypass vulnerability exists in Vaadin 14.0.0 through ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9e4fd7abbf54c7c2e6056a264945fdc0d59d4329
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9e4fd7abbf54c7c2e6056a264945fdc0d59d4329
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260311/f9b07200/attachment.htm>
More information about the debian-security-tracker-commits
mailing list