[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2026-21619/rebar3 via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Mar 11 13:24:39 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
fbc22763 by Salvatore Bonaccorso at 2026-03-11T14:24:06+01:00
Track fixed version for CVE-2026-21619/rebar3 via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -4790,7 +4790,7 @@ CVE-2026-21654 (Improper Neutralization of Special Elements used in an OS Comman
NOT-FOR-US: Johnson Controls
CVE-2026-21619 (Uncontrolled Resource Consumption, Deserialization of Untrusted Data v ...)
- erlang-hex <unfixed>
- - rebar3 <unfixed>
+ - rebar3 3.27.0-1
NOTE: https://github.com/advisories/GHSA-hx9w-f2w9-9g96
NOTE: https://github.com/hexpm/hex_core/commit/cdf726095bca85ad2549d146df1e831ae93c2b13 (v0.12.1)
NOTE: https://github.com/hexpm/hex/commit/636739f3322514e9303ca335fb630696fcbb3c95 (v2.3.2)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fbc2276364fee8b79c89deacd8bb5ed2d6972b52
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fbc2276364fee8b79c89deacd8bb5ed2d6972b52
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260311/32b69d15/attachment.htm>
More information about the debian-security-tracker-commits
mailing list