[Git][security-tracker-team/security-tracker][master] Add CVE-2026-28356/multipart
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Mar 12 16:27:52 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
79e1f271 by Salvatore Bonaccorso at 2026-03-12T17:27:06+01:00
Add CVE-2026-28356/multipart
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,8 @@
+CVE-2026-28356 [Denial of Service via maliciously crafted HTTP or multipart segment headers]
+ - multipart 1.3.1-1
+ NOTE: https://github.com/defnull/multipart/security/advisories/GHSA-p2m9-wcp5-6qw3
+ NOTE: Fixed by: https://github.com/defnull/multipart/commit/7e4fe6faaf64b2088faa5533a1a1c21c3c94c60c (v1.3.1)
+ NOTE: Fixed by: https://github.com/defnull/multipart/commit/d6f79b30ee21904ab552950acfe4aae79fa55d3d (v1.2.2)
CVE-2026-4014 (A security flaw has been discovered in itsourcecode Cafe Reservation S ...)
NOT-FOR-US: itsourcecode System
CVE-2026-4013 (A vulnerability was identified in SourceCodester Web-based Pharmacy Pr ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/79e1f27144128f56ab71bcd84b7557cacfb9cb61
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/79e1f27144128f56ab71bcd84b7557cacfb9cb61
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260312/c8b538c0/attachment.htm>
More information about the debian-security-tracker-commits
mailing list