[Git][security-tracker-team/security-tracker][master] Merge changes for suricata which got actually acepted for 13.4
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Mar 17 09:21:52 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5c3edf1d by Salvatore Bonaccorso at 2026-03-17T10:21:14+01:00
Merge changes for suricata which got actually acepted for 13.4
Thanks: Andreas Dolp
- - - - -
2 changed files:
- data/CVE/list
- data/next-point-update.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -20069,7 +20069,7 @@ CVE-2026-23592 (Insecure file operations in HPE Aruba Networking Fabric Composer
NOT-FOR-US: HPE
CVE-2026-22264 (Suricata is a network IDS, IPS and NSM engine. Prior to version 8.0.3 ...)
- suricata 1:8.0.3-1
- [trixie] - suricata <no-dsa> (Minor issue)
+ [trixie] - suricata 1:7.0.10-1+deb13u3
[bookworm] - suricata <no-dsa> (Minor issue)
NOTE: https://github.com/OISF/suricata/security/advisories/GHSA-mqr8-m3m4-2hw5
NOTE: https://github.com/OISF/suricata/commit/549d7bf60616de8e54686a188196453b5b22f715 (suricata-8.0.3)
@@ -20083,7 +20083,7 @@ CVE-2026-22263 (Suricata is a network IDS, IPS and NSM engine. Starting in versi
NOTE: https://github.com/OISF/suricata/commit/018a377f74e3eb2b042c6f783ad9043060923428 (suricata-8.0.3)
CVE-2026-22262 (Suricata is a network IDS, IPS and NSM engine. While saving a dataset ...)
- suricata 1:8.0.3-1
- [trixie] - suricata <no-dsa> (Minor issue)
+ [trixie] - suricata 1:7.0.10-1+deb13u3
[bookworm] - suricata <no-dsa> (Minor issue)
NOTE: https://github.com/OISF/suricata/security/advisories/GHSA-9qg5-2gwh-xp86
NOTE: https://github.com/OISF/suricata/commit/32a1b9ae6aa80a60c073897e38a2ac6ea0f64521 (suricata-8.0.3)
@@ -20092,7 +20092,7 @@ CVE-2026-22262 (Suricata is a network IDS, IPS and NSM engine. While saving a da
NOTE: https://github.com/OISF/suricata/commit/27a2180bceaa3477419c78c54fce364398d011f1 (suricata-7.0.14)
CVE-2026-22261 (Suricata is a network IDS, IPS and NSM engine. Prior to versions 8.0.3 ...)
- suricata 1:8.0.3-1
- [trixie] - suricata <no-dsa> (Minor issue)
+ [trixie] - suricata 1:7.0.10-1+deb13u3
[bookworm] - suricata <no-dsa> (Minor issue)
NOTE: https://github.com/OISF/suricata/security/advisories/GHSA-5jvg-5j3p-34cf
NOTE: https://github.com/OISF/suricata/commit/3f0725b34c7871c2de4346c8af872f10f4501e44 (suricata-8.0.3)
@@ -20105,14 +20105,14 @@ CVE-2026-22260 (Suricata is a network IDS, IPS and NSM engine. Starting in versi
NOTE: https://github.com/OISF/suricata/commit/0dddac7278c8b9cf3c1e4c1c71e620a78ec1c185 (suricata-8.0.3)
CVE-2026-22259 (Suricata is a network IDS, IPS and NSM engine. Prior to versions 8.0.3 ...)
- suricata 1:8.0.3-1
- [trixie] - suricata <no-dsa> (Minor issue)
+ [trixie] - suricata 1:7.0.10-1+deb13u3
[bookworm] - suricata <no-dsa> (Minor issue)
NOTE: https://github.com/OISF/suricata/security/advisories/GHSA-878h-2x6v-84q9
NOTE: https://github.com/OISF/suricata/commit/50cac2e2465ca211eabfa156623e585e9037bb7e (suricata-8.0.3)
NOTE: https://github.com/OISF/suricata/commit/63225d5f8ef64cc65164c0bb1800730842d54942 (suricata-7.0.14)
CVE-2026-22258 (Suricata is a network IDS, IPS and NSM engine. Prior to versions 8.0.3 ...)
- suricata 1:8.0.3-1
- [trixie] - suricata <no-dsa> (Minor issue)
+ [trixie] - suricata 1:7.0.10-1+deb13u3
[bookworm] - suricata <no-dsa> (Minor issue)
NOTE: https://github.com/OISF/suricata/security/advisories/GHSA-289c-h599-3xcx
NOTE: https://github.com/OISF/suricata/commit/39d8c302af3422a096b75474a4f295a754ec6a74 (suricata-8.0.3)
=====================================
data/next-point-update.txt
=====================================
@@ -106,16 +106,6 @@ CVE-2026-1489
[trixie] - glib2.0 2.84.4-3~deb13u3
CVE-2026-25727
[trixie] - rust-time 0.3.37-1+deb13u1
-CVE-2026-22258
- [trixie] - suricata 1:7.0.10-1+deb13u3
-CVE-2026-22259
- [trixie] - suricata 1:7.0.10-1+deb13u3
-CVE-2026-22261
- [trixie] - suricata 1:7.0.10-1+deb13u3
-CVE-2026-22262
- [trixie] - suricata 1:7.0.10-1+deb13u3
-CVE-2026-22264
- [trixie] - suricata 1:7.0.10-1+deb13u3
CVE-2025-68158
[trixie] - python-authlib 1.6.0-1+deb13u1
CVE-2025-62706
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5c3edf1d1589018f41c3445743b29546ee48063b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5c3edf1d1589018f41c3445743b29546ee48063b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260317/c757fd0e/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list