[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2026-3497/openssh
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Mar 27 19:54:09 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
2bead080 by Salvatore Bonaccorso at 2026-03-27T20:52:57+01:00
Track fixed version for CVE-2026-3497/openssh
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -7482,7 +7482,7 @@ CVE-2026-3989 (SGLangs `replay_request_dump.py` contains an insecure pickle.load
CVE-2026-3841 (A command injection vulnerability has been identified in the Telnet co ...)
NOT-FOR-US: TPLink
CVE-2026-3497 (Vulnerability in the OpenSSH GSSAPI delta included in various Linux di ...)
- - openssh <unfixed> (bug #1130595)
+ - openssh 1:10.2p1-6 (bug #1130595)
NOTE: https://www.openwall.com/lists/oss-security/2026/03/12/3
NOTE: Introduced with: https://salsa.debian.org/ssh-team/openssh/-/commit/865a97e05b6aab1619e1c8eeb33ccb8f9a9e48d3 (debian/1%8.0p1-1)
CVE-2026-3060 (SGLang' encoder parallel disaggregation system is vulnerable to unauth ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2bead0800b41f5a46940b6f0f44f6b2bb33554aa
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2bead0800b41f5a46940b6f0f44f6b2bb33554aa
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260327/3825047d/attachment.htm>
More information about the debian-security-tracker-commits
mailing list