[Git][security-tracker-team/security-tracker][master] Add CVE-2026-1965/curl
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Mar 11 07:10:07 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
3ab05e3b by Salvatore Bonaccorso at 2026-03-11T08:09:41+01:00
Add CVE-2026-1965/curl
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,11 @@
+CVE-2026-1965
+ - curl 8.19.0~rc3-1
+ [trixie] - curl <no-dsa> (Minor issue)
+ [bookworm] - curl <no-dsa> (Minor issue)
+ NOTE: https://curl.se/docs/CVE-2026-1965.html
+ NOTE: Introduced with: https://github.com/curl/curl/commit/e56ae1426cb7a0a4a427cf8d6099a821fdaae428 (curl-7_10_6)
+ NOTE: Fixed by: https://github.com/curl/curl/commit/34fa034d9a390c4bd65e2d05262755ec8646ac12 (curl-8_19_0, rc-8_19_0-1)
+ NOTE: Fixed by: https://github.com/curl/curl/commit/f1a39f221d57354990e3eeeddc3404aede2aff70 (curl-8_19_0, rc-8_19_0-3)
CVE-2026-3862 (Cross-site Scripting (XSS) allows an attacker to submit specially craf ...)
NOT-FOR-US: Symantec
CVE-2026-3854 (An improper neutralization of special elements vulnerability was ident ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3ab05e3b07dd35cedb09bca7f92f42841c863ebd
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3ab05e3b07dd35cedb09bca7f92f42841c863ebd
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260311/464cad88/attachment.htm>
More information about the debian-security-tracker-commits
mailing list