[Git][security-tracker-team/security-tracker][master] Process some mattermost-server issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Mar 26 21:33:58 GMT 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2b9401dd by Salvatore Bonaccorso at 2026-03-26T22:33:23+01:00
Process some mattermost-server issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -32,7 +32,7 @@ CVE-2026-4860 (A security flaw has been discovered in 648540858 wvp-GB28181-pro
 CVE-2026-4809 (plank/laravel-mediable through version 6.4.0 can allow upload of a dan ...)
 	NOT-FOR-US: plank/laravel-mediable
 CVE-2026-4274 (Mattermost versions 11.2.x <= 11.2.2, 10.11.x <= 10.11.10, 11.4.x <= 1 ...)
-	TODO: check
+	- mattermost-server <itp> (bug #823556)
 CVE-2026-4263 (Vulnerability of incorrect authorization inHiJiffy Chatbot allows an a ...)
 	NOT-FOR-US: HiJiffy Chatbot
 CVE-2026-4262 (Vulnerability of incorrect authorization inHiJiffy Chatbot allows an a ...)
@@ -40,17 +40,17 @@ CVE-2026-4262 (Vulnerability of incorrect authorization inHiJiffy Chatbot allows
 CVE-2026-3116 (Mattermost Plugins versions <=11.4 11.0.4 11.1.3 11.3.2 10.11.11.0 fai ...)
 	TODO: check
 CVE-2026-3115 (Mattermost versions 11.2.x <= 11.2.2, 10.11.x <= 10.11.10, 11.4.x <= 1 ...)
-	TODO: check
+	- mattermost-server <itp> (bug #823556)
 CVE-2026-3114 (Mattermost versions 11.4.x <= 11.4.0, 11.3.x <= 11.3.1, 11.2.x <= 11.2 ...)
-	TODO: check
+	- mattermost-server <itp> (bug #823556)
 CVE-2026-3113 (Mattermost versions 11.4.x <= 11.4.0, 11.3.x <= 11.3.1, 11.2.x <= 11.2 ...)
-	TODO: check
+	- mattermost-server <itp> (bug #823556)
 CVE-2026-3112 (Mattermost versions 11.4.x <= 11.4.0, 11.3.x <= 11.3.1, 11.2.x <= 11.2 ...)
-	TODO: check
+	- mattermost-server <itp> (bug #823556)
 CVE-2026-3109 (Mattermost Plugins versions <=11.4 10.11.11.0 fail to validate webhook ...)
 	TODO: check
 CVE-2026-3108 (Mattermost versions 11.2.x <= 11.2.2, 10.11.x <= 10.11.10, 11.4.x <= 1 ...)
-	TODO: check
+	- mattermost-server <itp> (bug #823556)
 CVE-2026-34071 (Stirling-PDF is a locally hosted web application that allows you to pe ...)
 	NOT-FOR-US: Stirling-PDF
 CVE-2026-33732 (srvx is a universal server based on web standards. Prior to version 0. ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2b9401dd42038132035b953cc661a491ecfbbcd2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2b9401dd42038132035b953cc661a491ecfbbcd2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260326/7535988e/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list