[Git][security-tracker-team/security-tracker][master] Reference upstream commit for CVE-2026-3888
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Mar 19 22:01:35 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
c966526d by Salvatore Bonaccorso at 2026-03-19T23:01:08+01:00
Reference upstream commit for CVE-2026-3888
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -938,6 +938,7 @@ CVE-2026-3888 (Local privilege escalation in snapd on Linux allows local attacke
[bookworm] - snapd <no-dsa> (Minor issue; no automatic tmpfiles.d cleanup)
NOTE: https://www.openwall.com/lists/oss-security/2026/03/17/8
NOTE: https://cdn2.qualys.com/advisory/2026/03/17/snap-confine-systemd-tmpfiles.txt
+ NOTE: Fixed by: https://github.com/canonical/snapd/commit/5400bfdf1e4c3f861826a215417234420470cb25
CVE-2026-3564 (A condition in ScreenConnect may allow an actor with access to server- ...)
NOT-FOR-US: ScreenConnect
CVE-2026-3563 (Improper input validation in the apps and endpoints configuration in P ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c966526d58b1e4233bbfd63c74b7448be643117b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c966526d58b1e4233bbfd63c74b7448be643117b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260319/bbfe2bd0/attachment.htm>
More information about the debian-security-tracker-commits
mailing list