[Git][security-tracker-team/security-tracker][master] Review updates potentially pending for 13.4 point release
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Mar 13 16:36:21 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d75c9167 by Salvatore Bonaccorso at 2026-03-13T17:36:11+01:00
Review updates potentially pending for 13.4 point release
- - - - -
1 changed file:
- data/next-point-update.txt
Changes:
=====================================
data/next-point-update.txt
=====================================
@@ -26,6 +26,74 @@ CVE-2025-66034
[trixie] - fonttools 4.57.0-1+deb13u1
CVE-2025-62727
[trixie] - starlette 0.46.1-3+deb13u1
+CVE-2026-26076
+ [trixie] - rust-ntp-proto 1.4.0-4+deb13u1
+CVE-2025-48038
+ [trixie] - erlang 1:27.3.4.1+dfsg-1+deb13u1
+CVE-2025-48039
+ [trixie] - erlang 1:27.3.4.1+dfsg-1+deb13u1
+CVE-2025-48040
+ [trixie] - erlang 1:27.3.4.1+dfsg-1+deb13u1
+CVE-2025-48041
+ [trixie] - erlang 1:27.3.4.1+dfsg-1+deb13u1
+CVE-2016-1000107
+ [trixie] - erlang 1:27.3.4.1+dfsg-1+deb13u1
+CVE-2026-27699
+ [trixie] - node-proxy-agents 0~2024040606-6+deb13u1
+CVE-2026-3201
+ [trixie] - wireshark 4.4.14-0+deb13u1
+CVE-2026-3203
+ [trixie] - wireshark 4.4.14-0+deb13u1
+CVE-2025-14876
+ [trixie] - qemu 1:10.0.8+ds-0+deb13u1
+CVE-2026-0665
+ [trixie] - qemu 1:10.0.8+ds-0+deb13u1
+(CVE-2025-69209
+ [trixie] - arduino-core-avr 1.8.7+dfsg-1~deb13u1
+CVE-2025-67873
+ [trixie] - capstone 5.0.7-1~deb13u1
+CVE-2025-68114
+ [trixie] - capstone 5.0.7-1~deb13u1
+CVE-2025-27231
+ [trixie] - zabbix 1:7.0.22+dfsg-1~deb13u1
+CVE-2025-27233
+ [trixie] - zabbix 1:7.0.22+dfsg-1~deb13u1
+CVE-2025-27236
+ [trixie] - zabbix 1:7.0.22+dfsg-1~deb13u1
+CVE-2025-27238
+ [trixie] - zabbix 1:7.0.22+dfsg-1~deb13u1
+CVE-2025-49641
+ [trixie] - zabbix 1:7.0.22+dfsg-1~deb13u1
+CVE-2025-49643
+ [trixie] - zabbix 1:7.0.22+dfsg-1~deb13u1
+CVE-2026-23925
+ [trixie] - zabbix 1:7.0.22+dfsg-1~deb13u1
+CVE-2025-58150
+ [trixie] - xen 4.20.2+37-g61ff35323e-0+deb13u1
+CVE-2026-23553
+ [trixie] - xen 4.20.2+37-g61ff35323e-0+deb13u1
+CVE-2026-26007
+ [trixie] - python-cryptography 43.0.0-3+deb13u1
+CVE-2026-2219
+ [trixie] - dpkg 1.22.22
+CVE-2025-56226
+ [trixie] - libsndfile 1.2.2-2+deb13u1
+CVE-2025-56225
+ [trixie] - fluidsynth 2.4.4+dfsg-1+deb13u2
+CVE-2025-2588
+ [trixie] - augeas 1.14.1-1.1~deb13u1
+CVE-2025-9648
+ [trixie] - civetweb 1.16+dfsg-2+deb13u1
+CVE-2025-55763
+ [trixie] - civetweb 1.16+dfsg-2+deb13u1
+CVE-2024-47081
+ [trixie] - requests 2.32.3+dfsg-5+deb13u1
+CVE-2025-13699
+ [trixie] - mariadb 11.8.6-0+deb13u1
+CVE-2026-21968
+ [trixie] - mariadb 11.8.6-0+deb13u1
+CVE-2026-24486
+ [trixie] - python-multipart 0.0.20-1.1~deb13u1
CVE-2026-25635
[trixie] - calibre 8.5.0+ds-1+deb13u2
CVE-2026-25636
@@ -124,18 +192,6 @@ CVE-2026-26955
[trixie] - freerdp3 3.15.0+dfsg-2.1+deb13u1
CVE-2026-26965
[trixie] - freerdp3 3.15.0+dfsg-2.1+deb13u1
-CVE-2026-26076
- [trixie] - rust-ntp-proto 1.4.0-4+deb13u1
-CVE-2025-48038
- [trixie] - erlang 1:27.3.4.1+dfsg-1+deb13u1
-CVE-2025-48039
- [trixie] - erlang 1:27.3.4.1+dfsg-1+deb13u1
-CVE-2025-48040
- [trixie] - erlang 1:27.3.4.1+dfsg-1+deb13u1
-CVE-2025-48041
- [trixie] - erlang 1:27.3.4.1+dfsg-1+deb13u1
-CVE-2016-1000107
- [trixie] - erlang 1:27.3.4.1+dfsg-1+deb13u1
CVE-2026-0988
[trixie] - glib2.0 2.84.4-3~deb13u3
CVE-2026-1484
@@ -156,16 +212,6 @@ CVE-2026-22262
[trixie] - suricata 1:7.0.10-1+deb13u3
CVE-2026-22264
[trixie] - suricata 1:7.0.10-1+deb13u3
-CVE-2026-27699
- [trixie] - node-proxy-agents 0~2024040606-6+deb13u1
-CVE-2026-3201
- [trixie] - wireshark 4.4.14-0+deb13u1
-CVE-2026-3203
- [trixie] - wireshark 4.4.14-0+deb13u1
-CVE-2025-14876
- [trixie] - qemu 1:10.0.8+ds-0+deb13u1
-CVE-2026-0665
- [trixie] - qemu 1:10.0.8+ds-0+deb13u1
CVE-2025-68158
[trixie] - python-authlib 1.6.0-1+deb13u1
CVE-2025-62706
@@ -174,55 +220,9 @@ CVE-2025-61920
[trixie] - python-authlib 1.6.0-1+deb13u1
CVE-2025-59420
[trixie] - python-authlib 1.6.0-1+deb13u1
-(CVE-2025-69209
- [trixie] - arduino-core-avr 1.8.7+dfsg-1~deb13u1
-CVE-2025-67873
- [trixie] - capstone 5.0.7-1~deb13u1
-CVE-2025-68114
- [trixie] - capstone 5.0.7-1~deb13u1
CVE-2025-68920
[trixie] - ckermit 416~beta12-1+deb13u1
-CVE-2025-27231
- [trixie] - zabbix 1:7.0.22+dfsg-1~deb13u1
-CVE-2025-27233
- [trixie] - zabbix 1:7.0.22+dfsg-1~deb13u1
-CVE-2025-27236
- [trixie] - zabbix 1:7.0.22+dfsg-1~deb13u1
-CVE-2025-27238
- [trixie] - zabbix 1:7.0.22+dfsg-1~deb13u1
-CVE-2025-49641
- [trixie] - zabbix 1:7.0.22+dfsg-1~deb13u1
-CVE-2025-49643
- [trixie] - zabbix 1:7.0.22+dfsg-1~deb13u1
-CVE-2026-23925
- [trixie] - zabbix 1:7.0.22+dfsg-1~deb13u1
-CVE-2025-58150
- [trixie] - xen 4.20.2+37-g61ff35323e-0+deb13u1
-CVE-2026-23553
- [trixie] - xen 4.20.2+37-g61ff35323e-0+deb13u1
-CVE-2026-26007
- [trixie] - python-cryptography 43.0.0-3+deb13u1
-CVE-2026-2219
- [trixie] - dpkg 1.22.22
-CVE-2025-56226
- [trixie] - libsndfile 1.2.2-2+deb13u1
-CVE-2025-56225
- [trixie] - fluidsynth 2.4.4+dfsg-1+deb13u2
-CVE-2025-2588
- [trixie] - augeas 1.14.1-1.1~deb13u1
-CVE-2025-9648
- [trixie] - civetweb 1.16+dfsg-2+deb13u1
-CVE-2025-55763
- [trixie] - civetweb 1.16+dfsg-2+deb13u1
-CVE-2024-47081
- [trixie] - requests 2.32.3+dfsg-5+deb13u1
CVE-2025-13034
[trixie] - curl 8.14.1-2+deb13u3
-CVE-2025-13699
- [trixie] - mariadb 11.8.6-0+deb13u1
-CVE-2026-21968
- [trixie] - mariadb 11.8.6-0+deb13u1
-CVE-2026-24486
- [trixie] - python-multipart 0.0.20-1.1~deb13u1
CVE-2021-37746
[trixie] - sylpheed 3.8.0~beta1-2+deb13u1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d75c9167a3011a167727971c4c42fdd0ff0975d6
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d75c9167a3011a167727971c4c42fdd0ff0975d6
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260313/cdab8e4f/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list