[Git][security-tracker-team/security-tracker][master] Add CVE-2026-33320/dasel
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Mar 24 21:48:33 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ef1a5ba1 by Salvatore Bonaccorso at 2026-03-24T22:48:11+01:00
Add CVE-2026-33320/dasel
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -589,7 +589,10 @@ CVE-2026-33847 (Improper Restriction of Operations within the Bounds of a Memory
CVE-2026-33634 (Trivy is a security scanner. On March 19, 2026, a threat actor used co ...)
- trivy <itp> (bug #929458)
CVE-2026-33320 (Dasel is a command-line tool and library for querying, modifying, and ...)
- TODO: check
+ - dasel <not-affected> (Vulnerable code not present)
+ NOTE: https://github.com/TomWright/dasel/security/advisories/GHSA-4fcp-jxh7-23x8
+ NOTE: https://github.com/TomWright/dasel/pull/531
+ NOTE: Fixed by: https://github.com/TomWright/dasel/commit/282943b3720684ae0ea89432f51755325a841c75 (v3.3.2)
CVE-2026-33308 (Mod_gnutls is a TLS module for Apache HTTPD based on GnuTLS. Prior to ...)
TODO: check
CVE-2026-33307 (Mod_gnutls is a TLS module for Apache HTTPD based on GnuTLS. In versio ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ef1a5ba1b01ae05ca6dd2b3c014a84d4d9a60156
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ef1a5ba1b01ae05ca6dd2b3c014a84d4d9a60156
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260324/cf01c9fb/attachment.htm>
More information about the debian-security-tracker-commits
mailing list