[Git][security-tracker-team/security-tracker][master] 2 commits: Add Debian bug references for glibc issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Mar 21 11:46:38 GMT 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
60e14e73 by Salvatore Bonaccorso at 2026-03-21T12:44:57+01:00
Add Debian bug references for glibc issues

- - - - -
956727ab by Salvatore Bonaccorso at 2026-03-21T12:46:04+01:00
Mark two glibc issues as no-dsa

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -465,11 +465,15 @@ CVE-2026-4486 (A vulnerability was found in D-Link DIR-513 1.10. This affects th
 CVE-2026-4485 (A vulnerability has been found in itsourcecode College Management Syst ...)
 	NOT-FOR-US: itsourcecode System
 CVE-2026-4438 (Calling gethostbyaddr or gethostbyaddr_r with a configured nsswitch.co ...)
-	- glibc <unfixed>
+	- glibc <unfixed> (bug #1131435)
+	[trixie] - glibc <no-dsa> (Minor issue)
+	[bookworm] - glibc <no-dsa> (Minor issue)
 	NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=34015
 	NOTE: Proposed patch: https://inbox.sourceware.org/libc-alpha/20260320194250.1089143-1-carlos@redhat.com/
 CVE-2026-4437 (Calling gethostbyaddr or gethostbyaddr_r with a configured nsswitch.co ...)
-	- glibc <unfixed>
+	- glibc <unfixed> (bug #1131435)
+	[trixie] - glibc <no-dsa> (Minor issue)
+	[bookworm] - glibc <no-dsa> (Minor issue)
 	NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=34014
 	NOTE: Proposed patch: https://inbox.sourceware.org/libc-alpha/20260320194250.1089143-1-carlos@redhat.com/
 CVE-2026-4434 (Improper certificate validation in the PAM propagation WinRM connectio ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/fc9cd7b5add584d081096e553a538bdd86350aa9...956727ab8c43b3e18c47f21b8c50eca68547cbe0

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/fc9cd7b5add584d081096e553a538bdd86350aa9...956727ab8c43b3e18c47f21b8c50eca68547cbe0
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260321/08f448e1/attachment.htm>

More information about the debian-security-tracker-commits mailing list