[Git][security-tracker-team/security-tracker][master] mark two commonleague issues as no-dsa

Moritz Muehlenhoff (@jmm) jmm at debian.org
Fri Mar 27 20:15:43 GMT 2026 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4e6f0a1e by Moritz Mühlenhoff at 2026-03-27T21:15:19+01:00
mark two commonleague issues as no-dsa

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3370,6 +3370,8 @@ CVE-2019-25620 (Tree Studio 2.17 contains a denial of service vulnerability that
 	NOT-FOR-US: Tree Studio
 CVE-2026-33347 (league/commonmark is a PHP Markdown parser. From version 2.3.0 to befo ...)
 	- php-league-commonmark 2.8.2-1
+	[trixie] - php-league-commonmark <no-dsa> (Minor issue)
+	[bookworm] - php-league-commonmark <no-dsa> (Minor issue)
 	NOTE: https://github.com/thephpleague/commonmark/security/advisories/GHSA-hh8v-hgvp-g3f5
 	NOTE: Fixed by: https://github.com/thephpleague/commonmark/commit/59fb075d2101740c337c7216e3f32b36c204218b (2.8.2)
 CVE-2026-33699
@@ -10189,6 +10191,8 @@ CVE-2026-30848 (Parse Server is an open source backend that can be deployed to a
 	NOT-FOR-US: Parse Server
 CVE-2026-30838 (league/commonmark is a PHP Markdown parser. Prior to version 2.8.1, th ...)
 	- php-league-commonmark 2.8.1-1
+	[trixie] - php-league-commonmark <no-dsa> (Minor issue)
+	[bookworm] - php-league-commonmark <no-dsa> (Minor issue)
 	NOTE: https://github.com/thephpleague/commonmark/security/advisories/GHSA-4v6x-c7xx-hw9f
 	NOTE: Regression test: https://github.com/thephpleague/commonmark/commit/f6e74434dd1a91f195f80cb0184b746a4187272a (2.8.1)
 	NOTE: Fixed by: https://github.com/thephpleague/commonmark/commit/5c0c4c8fe5a31e8260be99e0afad7136a27c79e6 (2.8.1)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4e6f0a1ea0ea1c67754f2736cfd8823d28f2b4ba

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4e6f0a1ea0ea1c67754f2736cfd8823d28f2b4ba
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260327/ca439831/attachment.htm>

More information about the debian-security-tracker-commits mailing list