[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Mar 17 20:13:51 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
58894df2 by security tracker role at 2026-03-17T20:13:44+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,12 +1,152 @@
+CVE-2026-4359 (A compromised third party cloud server or man-in-the-middle attacker c ...)
+ TODO: check
+CVE-2026-4358 (A specially crafted aggregation query with $lookup by an authenticated ...)
+ TODO: check
+CVE-2026-4324 (A flaw was found in the Katello plugin for Red Hat Satellite. This vul ...)
+ TODO: check
+CVE-2026-4319 (A vulnerability was identified in code-projects Simple Food Order Syst ...)
+ TODO: check
+CVE-2026-4318 (A vulnerability was determined in UTT HiPER 810G up to 1.7.7-171114. A ...)
+ TODO: check
+CVE-2026-4295 (Improper trust boundary enforcement in Kiro IDE before version 0.8.0 o ...)
+ TODO: check
+CVE-2026-4271 (A flaw was found in libsoup, a library for handling HTTP requests. Thi ...)
+ TODO: check
+CVE-2026-4208 (The extension fails to properly reset the generated MFA code after suc ...)
+ TODO: check
+CVE-2026-4202 (The extension fails to verify, if an authenticated user has permission ...)
+ TODO: check
+CVE-2026-4148 (A use-after-free vulnerability can be triggered in sharded clusters by ...)
+ TODO: check
+CVE-2026-4147 (An authenticated user with the read role may read limited amounts of u ...)
+ TODO: check
+CVE-2026-4064 (Missing authorization checks on multiple gRPC service endpoints in Pow ...)
+ TODO: check
+CVE-2026-3888 (Local privilege escalation in snapd on Linux allows local attackers to ...)
+ TODO: check
+CVE-2026-3564 (A condition in ScreenConnect may allow an actor with access to server- ...)
+ TODO: check
+CVE-2026-3563 (Improper input validation in the apps and endpoints configuration in P ...)
+ TODO: check
+CVE-2026-3207 (Configuration issuein Java Management Extensions (JMX) in TIBCO BPM En ...)
+ TODO: check
+CVE-2026-32981 (A path traversal vulnerability was identified in Ray Dashboard (defaul ...)
+ TODO: check
+CVE-2026-32837 (miniaudio version 0.11.25 and earlier contain a heap out-of-bounds rea ...)
+ TODO: check
+CVE-2026-32836 (dr_libs version 0.13.3 and earlier contain an uncontrolled memory allo ...)
+ TODO: check
+CVE-2026-32586 (Missing Authorization vulnerability in Pluggabl Booster for WooCommerc ...)
+ TODO: check
+CVE-2026-32298 (The Angeet ES3 KVM does not properly sanitize user-supplied variables ...)
+ TODO: check
+CVE-2026-32297 (The Angeet ES3 KVM allows a remote, unauthenticated attacker to write ...)
+ TODO: check
+CVE-2026-32296 (Sipeed NanoKVM before 2.3.1 exposes a Wi-Fi configuration endpoint wit ...)
+ TODO: check
+CVE-2026-32295 (JetKVM before 0.5.4 does not rate limit login requests, enabling brute ...)
+ TODO: check
+CVE-2026-32294 (JetKVM prior to 0.5.4 does not verify the authenticity of downloaded f ...)
+ TODO: check
+CVE-2026-32293 (The GL-iNet Comet (GL-RM1) KVM connects to a GL-iNet site during boot- ...)
+ TODO: check
+CVE-2026-32292 (The GL-iNet Comet (GL-RM1) KVM web interface does not limit login requ ...)
+ TODO: check
+CVE-2026-32291 (The GL-iNet Comet (GL-RM1) KVM does not require authentication on the ...)
+ TODO: check
+CVE-2026-32290 (The GL-iNet Comet (GL-RM1) KVM does not sufficiently verify the authen ...)
+ TODO: check
+CVE-2026-30911 (Apache Airflow versions 3.1.0 through 3.1.7 missing authorization vuln ...)
+ TODO: check
+CVE-2026-30707 (An issue was discovered in SpeedExam Online Examination System (SaaS) ...)
+ TODO: check
+CVE-2026-28779 (Apache Airflow versions 3.1.0 through 3.1.7session token (_token) in c ...)
+ TODO: check
+CVE-2026-28563 (Apache Airflow versions 3.1.0 through 3.1.7 /ui/dependencies endpoint ...)
+ TODO: check
+CVE-2026-28506 (Outline is a service that allows for collaborative documentation. Prio ...)
+ TODO: check
+CVE-2026-26929 (Apache Airflow versions 3.0.0 through 3.1.7FastAPI DagVersion listing ...)
+ TODO: check
+CVE-2026-25936 (GLPI is a free Asset and IT management software package. Starting in v ...)
+ TODO: check
+CVE-2026-25790 (Wazuh is a free and open source platform used for threat prevention, d ...)
+ TODO: check
+CVE-2026-25772 (Wazuh is a free and open source platform used for threat prevention, d ...)
+ TODO: check
+CVE-2026-25771 (Wazuh is a free and open source platform used for threat prevention, d ...)
+ TODO: check
+CVE-2026-25770 (Wazuh is a free and open source platform used for threat prevention, d ...)
+ TODO: check
+CVE-2026-25769 (Wazuh is a free and open source platform used for threat prevention, d ...)
+ TODO: check
+CVE-2026-25534 (### Impact Spinnaker updated URL Validation logic on user input to pro ...)
+ TODO: check
+CVE-2026-24901 (Outline is a service that allows for collaborative documentation. Prio ...)
+ TODO: check
+CVE-2026-23759 (Perle IOLAN STS/SCS terminal server models with firmware versions prio ...)
+ TODO: check
+CVE-2026-22882 (An out-of-bounds read vulnerability exists in the EMF functionality of ...)
+ TODO: check
+CVE-2026-21886 (OpenCTI is an open source platform for managing cyber threat intellige ...)
+ TODO: check
+CVE-2026-21570 (This High severity RCE (Remote Code Execution) vulnerability was intro ...)
+ TODO: check
+CVE-2026-20726 (An out-of-bounds read vulnerability exists in the EMF functionality of ...)
+ TODO: check
+CVE-2026-1323 (The extension fails to properly define allowed classes used when deser ...)
+ TODO: check
+CVE-2025-66633 (An out-of-bounds read vulnerability exists in the EMF functionality of ...)
+ TODO: check
+CVE-2025-66617 (An out-of-bounds read vulnerability exists in the EMF functionality of ...)
+ TODO: check
+CVE-2025-66503 (An out-of-bounds read vulnerability exists in the EMF functionality of ...)
+ TODO: check
+CVE-2025-66342 (A type confusion vulnerability exists in the EMF functionality of Canv ...)
+ TODO: check
+CVE-2025-66042 (An out-of-bounds read vulnerability exists in the EMF functionality of ...)
+ TODO: check
+CVE-2025-66000 (An out-of-bounds read vulnerability exists in the EMF functionality of ...)
+ TODO: check
+CVE-2025-65119 (An out-of-bounds read vulnerability exists in the EMF functionality of ...)
+ TODO: check
+CVE-2025-64776 (An out-of-bounds read vulnerability exists in the EMF functionality of ...)
+ TODO: check
+CVE-2025-64735 (An out-of-bounds read vulnerability exists in the EMF functionality of ...)
+ TODO: check
+CVE-2025-64733 (An out-of-bounds read vulnerability exists in the EMF functionality of ...)
+ TODO: check
+CVE-2025-64301 (An out\u2011of\u2011bounds write vulnerability exists in the EMF funct ...)
+ TODO: check
+CVE-2025-62500 (An out-of-bounds read vulnerability exists in the EMF functionality of ...)
+ TODO: check
+CVE-2025-62403 (An out-of-bounds read vulnerability exists in the EMF functionality of ...)
+ TODO: check
+CVE-2025-62320 (HTML Injection can be carried out in Product when a web application do ...)
+ TODO: check
+CVE-2025-61979 (An out-of-bounds read vulnerability exists in the EMF functionality of ...)
+ TODO: check
+CVE-2025-61952 (An out-of-bounds read vulnerability exists in the EMF functionality of ...)
+ TODO: check
+CVE-2025-58427 (An out-of-bounds read vulnerability exists in the EMF functionality of ...)
+ TODO: check
+CVE-2025-47873 (An out-of-bounds read vulnerability exists in the EMF functionality of ...)
+ TODO: check
+CVE-2025-31966 (HCL Sametime is vulnerable to broken server-side validation. While the ...)
+ TODO: check
+CVE-2025-15584 (Netskope was notified about a potential gap in its Endpoint DLP Module ...)
+ TODO: check
+CVE-2025-13406 (NULL Pointer Dereference vulnerability in Softing Industrial Automatio ...)
+ TODO: check
CVE-2026-32953 [Error in Protocol Implementation]
- golang-github-tillitis-tkeyclient 1.3.0-1 (bug #1131010)
[trixie] - golang-github-tillitis-tkeyclient <no-dsa> (Minor issue)
NOTE: https://github.com/tillitis/tkeyclient/security/advisories/GHSA-4w7r-3222-8h6v
NOTE: Fixed by: https://github.com/tillitis/tkeyclient/commit/4954dccf0287657edf8d405057e134cdff9c59e8 (v1.3.0)
-CVE-2026-23241 [audit: add missing syscalls to read class]
+CVE-2026-23241 (In the Linux kernel, the following vulnerability has been resolved: a ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/bcb90a2834c7393c26df9609b889a3097b7700cd (7.0-rc1)
-CVE-2025-71239 [audit: add fchmodat2() to change attributes class]
+CVE-2025-71239 (In the Linux kernel, the following vulnerability has been resolved: a ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/4f493a6079b588cf1f04ce5ed6cdad45ab0d53dc (7.0-rc1)
CVE-2026-32829
@@ -310,7 +450,7 @@ CVE-2025-52643 (HCL AION is affected by a vulnerability where untrusted file par
NOT-FOR-US: HCL
CVE-2025-52642 (HCL AION is affected by a vulnerability where internal filesystem path ...)
NOT-FOR-US: HCL
-CVE-2025-52638 (HCL AION is affected by a vulnerability where container base images ar ...)
+CVE-2025-52638 (HCL AION is affected by a vulnerability where generated containers may ...)
NOT-FOR-US: HCL
CVE-2025-52637 (HCL AION is affected by a vulnerability where certain offering configu ...)
NOT-FOR-US: HCL
@@ -1523,7 +1663,7 @@ CVE-2025-66955 (Local File Inclusion in Contact Plan, E-Mail, SMS and Fax compon
NOT-FOR-US: Asseco SEE Live
CVE-2025-61154 (Heap buffer overflow vulnerability in LibreDWG versions v0.13.3.7571 u ...)
- libredwg <itp> (bug #595191)
-CVE-2025-13913 (If an Ignition user imports an external file with a specially crafted ...)
+CVE-2025-13913 (A privileged Ignition user, intentionally or otherwise, imports an ext ...)
NOT-FOR-US: Inductive Automation Ignition Software
CVE-2025-13462 (The "tarfile" module would still apply normalization of AREGTYPE (\x00 ...)
TODO: check
@@ -3222,6 +3362,7 @@ CVE-2026-2922 (GStreamer RealMedia Demuxer Out-Of-Bounds Write Remote Code Execu
NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/8a17c9d183ca3cfb5e97ae3b3f344ba79f8859df (main)
NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/cfc74588fca99328419eb16921fa559739a7b503 (main)
CVE-2026-2921 (GStreamer RIFF Palette Integer Overflow Remote Code Execution Vulnerab ...)
+ {DSA-6167-1}
- gst-plugins-base1.0 1.28.1-1
NOTE: https://gstreamer.freedesktop.org/security/sa-2026-0004.html
NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/66d1f79c78b573db714434cf08e7531bed4f4473 (main)
@@ -3618,17 +3759,17 @@ CVE-2025-69219 (A user with access to the DB could craft a database entry that w
NOT-FOR-US: Apache Airflow HTTP provider
CVE-2026-25604 (In AWS Auth manager, the origin of the SAML authentication has been us ...)
NOT-FOR-US: Apache Airflow AWS Auth Manager
-CVE-2026-3632
+CVE-2026-3632 (A flaw was found in libsoup, a library used by applications to send ne ...)
- libsoup3 <unfixed> (bug #1130499)
- libsoup2.4 <removed>
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2445127
NOTE: https://gitlab.gnome.org/GNOME/libsoup/-/issues/483
-CVE-2026-3633
+CVE-2026-3633 (A flaw was found in libsoup. A remote attacker, by controlling the met ...)
- libsoup3 <unfixed> (bug #1130500)
- libsoup2.4 <removed>
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2445128
NOTE: https://gitlab.gnome.org/GNOME/libsoup/-/issues/484
-CVE-2026-3634
+CVE-2026-3634 (A flaw was found in libsoup. An attacker controlling the value used to ...)
- libsoup3 <unfixed> (bug #1130501)
- libsoup2.4 <removed>
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2445129
@@ -25710,9 +25851,11 @@ CVE-2020-36919 (WPForms 1.7.8 contains a cross-site scripting vulnerability in t
CVE-2020-36911 (Covenant 0.1.3 - 0.5 contains a remote code execution vulnerability th ...)
NOT-FOR-US: Covenant
CVE-2025-55132 (A flaw in Node.js's permission model allows a file's access and modifi ...)
+ {DSA-6166-1}
- nodejs 22.22.0+dfsg+~cs22.19.6-1
NOTE: https://nodejs.org/en/blog/vulnerability/december-2025-security-releases#fsfutimes-bypasses-read-only-permission-model-cve-2025-55132---low
CVE-2026-21637 (A flaw in Node.js TLS error handling allows remote attackers to crash ...)
+ {DSA-6166-1}
- nodejs 22.22.0+dfsg+~cs22.19.6-1
NOTE: https://nodejs.org/en/blog/vulnerability/december-2025-security-releases#tls-pskalpn-callback-exceptions-bypass-error-handlers-causing-dos-and-fd-leak-cve-2026-21637---medium
CVE-2026-21636 (A flaw in Node.js's permission model allows Unix Domain Socket (UDS) c ...)
@@ -25722,15 +25865,19 @@ CVE-2025-59464 (A memory leak in Node.js\u2019s OpenSSL integration occurs when
- nodejs <not-affected> (Only affects Node.js v24 releases and fixed in v24.12.0)
NOTE: https://nodejs.org/en/blog/vulnerability/december-2025-security-releases#memory-leak-that-enables-remote-denial-of-service-against-applications-processing-tls-client-certificates-cve-2025-59464---medium
CVE-2025-59466 (We have identified a bug in Node.js error handling where "Maximum call ...)
+ {DSA-6166-1}
- nodejs 22.22.0+dfsg+~cs22.19.6-1
NOTE: https://nodejs.org/en/blog/vulnerability/december-2025-security-releases#uncatchable-maximum-call-stack-size-exceeded-error-on-nodejs-via-async_hooks-leads-to-process-crashes-bypassing-error-handlers-cve-2025-59466---medium
CVE-2025-59465 (A malformed `HTTP/2 HEADERS` frame with oversized, invalid `HPACK` dat ...)
+ {DSA-6166-1}
- nodejs 22.22.0+dfsg+~cs22.19.6-1
NOTE: https://nodejs.org/en/blog/vulnerability/december-2025-security-releases#nodejs-http2-server-crashes-with-unhandled-error-when-receiving-malformed-headers-frame-cve-2025-59465---high
CVE-2025-55130 (A flaw in Node.js\u2019s Permissions model allows attackers to bypass ...)
+ {DSA-6166-1}
- nodejs 22.22.0+dfsg+~cs22.19.6-1
NOTE: https://nodejs.org/en/blog/vulnerability/december-2025-security-releases#bypass-file-system-permissions-using-crafted-symlinks-cve-2025-55130---high
CVE-2025-55131 (A flaw in Node.js's buffer allocation logic can expose uninitialized m ...)
+ {DSA-6166-1}
- nodejs 22.22.0+dfsg+~cs22.19.6-1
NOTE: https://nodejs.org/en/blog/vulnerability/december-2025-security-releases#timeout-based-race-conditions-make-uint8arraybufferalloc-non-zerofilled-cve-2025-55131---high
CVE-2026-0908 (Use after free in ANGLE in Google Chrome prior to 144.0.7559.59 allowe ...)
@@ -148734,7 +148881,7 @@ CVE-2025-0411 (7-Zip Mark-of-the-Web Bypass Vulnerability. This vulnerability al
NOTE: https://www.zerodayinitiative.com/advisories/ZDI-25-045/
NOTE: https://www.openwall.com/lists/oss-security/2025/01/24/6
CVE-2025-23085 (A memory leak could occur when a remote peer abruptly closes the socke ...)
- {DLA-4067-1}
+ {DSA-6166-1 DLA-4067-1}
- nodejs 20.18.2+dfsg-1 (bug #1094134)
[bookworm] - nodejs <postponed> (Fix along with next DSA)
NOTE: https://nodejs.org/en/blog/vulnerability/january-2025-security-releases#goaway-http2-frames-cause-memory-leak-outside-heap-cve-2025-23085---medium
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/58894df21c5f47a49e40dfad45b433e889444e39
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/58894df21c5f47a49e40dfad45b433e889444e39
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260317/71dde26a/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list