[Git][security-tracker-team/security-tracker][master] Add two kibana CVEs, itp'ed
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Mar 20 22:05:39 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8fcf99e1 by Salvatore Bonaccorso at 2026-03-20T23:04:43+01:00
Add two kibana CVEs, itp'ed
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -881,9 +881,9 @@ CVE-2026-27065 (Improper Control of Filename for Include/Require Statement in PH
CVE-2026-27043 (Unrestricted Upload of File with Dangerous Type vulnerability in Theme ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2026-26940 (Improper Validation of Specified Quantity in Input (CWE-1284) in the T ...)
- TODO: check
+ - kibana <itp> (bug #700337)
CVE-2026-26939 (Missing Authorization (CWE-862) in Kibana\u2019s server-side Detection ...)
- TODO: check
+ - kibana <itp> (bug #700337)
CVE-2026-26933 (Improper Validation of Array Index (CWE-129) in multiple protocol pars ...)
TODO: check
CVE-2026-26931 (Memory Allocation with Excessive Size Value (CWE-789) in the Prometheu ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8fcf99e1e5ea2ad55657defa273ee2ba83659116
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8fcf99e1e5ea2ad55657defa273ee2ba83659116
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260320/5afa704c/attachment.htm>
More information about the debian-security-tracker-commits
mailing list