[Git][security-tracker-team/security-tracker][master] Add two new libvncserver issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Mar 26 10:37:23 GMT 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
95daaf97 by Salvatore Bonaccorso at 2026-03-26T11:37:06+01:00
Add two new libvncserver issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1933,9 +1933,13 @@ CVE-2026-33157 (Craft CMS is a content management system (CMS). From version 5.6
 CVE-2026-32948 (sbt is a build tool for Scala, Java, and others. From version 0.9.5 to ...)
 	TODO: check
 CVE-2026-32854 (LibVNCServer versions 0.9.15 and prior (fixed incommit dc78dee) contai ...)
-	TODO: check
+	- libvncserver <unfixed>
+	NOTE: https://github.com/LibVNC/libvncserver/security/advisories/GHSA-xjp8-4qqv-5x4x
+	NOTE: Fixed by: https://github.com/LibVNC/libvncserver/commit/dc78dee51a7e270e537a541a17befdf2073f5314
 CVE-2026-32853 (LibVNCServer versions 0.9.15 and prior (fixed incommit 009008e) contai ...)
-	TODO: check
+	- libvncserver <unfixed>
+	NOTE: https://github.com/LibVNC/libvncserver/security/advisories/GHSA-87q7-v983-qwcj
+	NOTE: Fixed by: https://github.com/LibVNC/libvncserver/commit/009008e2f4d5a54dd71f422070df3af7b3dbc931
 CVE-2026-32647 (NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_ ...)
 	TODO: check
 CVE-2026-30932 (Froxlor is open source server administration software. Prior to versio ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/95daaf973867fc70003cdbd55e72630ba12f660d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/95daaf973867fc70003cdbd55e72630ba12f660d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260326/c2b6ff32/attachment.htm>

More information about the debian-security-tracker-commits mailing list