[Git][security-tracker-team/security-tracker][master] Track fixed version for some linux CVEs addressed via unstable

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Mar 27 21:25:07 GMT 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
40df24a5 by Salvatore Bonaccorso at 2026-03-27T22:17:25+01:00
Track fixed version for some linux CVEs addressed via unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -400,13 +400,13 @@ CVE-2018-25185 (Wecodex Restaurant CMS 1.0 contains an SQL injection vulnerabili
 CVE-2018-25183 (Shipping System CMS 1.0 contains an SQL injection vulnerability that a ...)
 	TODO: check
 CVE-2026-23398 (In the Linux kernel, the following vulnerability has been resolved:  i ...)
-	- linux <unfixed>
+	- linux 6.19.10-1
 	NOTE: https://git.kernel.org/linus/614aefe56af8e13331e50220c936fc0689cf5675 (7.0-rc5)
 CVE-2026-23397 (In the Linux kernel, the following vulnerability has been resolved:  n ...)
-	- linux <unfixed>
+	- linux 6.19.10-1
 	NOTE: https://git.kernel.org/linus/dbdfaae9609629a9569362e3b8f33d0a20fd783c (7.0-rc5)
 CVE-2026-23396 (In the Linux kernel, the following vulnerability has been resolved:  w ...)
-	- linux <unfixed>
+	- linux 6.19.10-1
 	NOTE: https://git.kernel.org/linus/c73bb9a2d33bf81f6eecaa0f474b6c6dbe9855bd (7.0-rc5)
 CVE-2026-33416 (LIBPNG is a reference library for use in applications that read, creat ...)
 	- libpng1.6 <unfixed> (bug #1132012)
@@ -1453,21 +1453,21 @@ CVE-2026-33526 (Squid is a caching proxy for the Web. Prior to version 7.5, due
 	NOTE: https://www.openwall.com/lists/oss-security/2026/03/25/2
 	NOTE: Fixed by: https://github.com/squid-cache/squid/commit/8a7d42f9d44befb8fcbbb619505587c8de6a1e91 (SQUID_7_5)
 CVE-2026-23395 (In the Linux kernel, the following vulnerability has been resolved:  B ...)
-	- linux <unfixed>
+	- linux 6.19.10-1
 	NOTE: https://git.kernel.org/linus/5b3e2052334f2ff6d5200e952f4aa66994d09899 (7.0-rc5)
 CVE-2026-23394 (In the Linux kernel, the following vulnerability has been resolved:  a ...)
-	- linux <unfixed>
+	- linux 6.19.10-1
 	[bullseye] - linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/e5b31d988a41549037b8d8721a3c3cae893d8670 (7.0-rc5)
 CVE-2026-23393 (In the Linux kernel, the following vulnerability has been resolved:  b ...)
-	- linux <unfixed>
+	- linux 6.19.10-1
 	[bullseye] - linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/3715a00855316066cdda69d43648336367422127 (7.0-rc5)
 CVE-2026-23392 (In the Linux kernel, the following vulnerability has been resolved:  n ...)
-	- linux <unfixed>
+	- linux 6.19.10-1
 	NOTE: https://git.kernel.org/linus/d73f4b53aaaea4c95f245e491aa5eeb8a21874ce (7.0-rc5)
 CVE-2026-23391 (In the Linux kernel, the following vulnerability has been resolved:  n ...)
-	- linux <unfixed>
+	- linux 6.19.10-1
 	NOTE: https://git.kernel.org/linus/f62a218a946b19bb59abdd5361da85fa4606b96b (7.0-rc5)
 CVE-2026-23390 (In the Linux kernel, the following vulnerability has been resolved:  t ...)
 	- linux 6.18.13-1
@@ -2239,7 +2239,7 @@ CVE-2026-21710
 	- nodejs 22.22.2+dfsg+~cs22.19.15-1
 	NOTE: https://nodejs.org/en/blog/vulnerability/march-2026-security-releases#denial-of-service-via-__proto__-header-name-in-reqheadersdistinct-uncaught-typeerror-crashes-nodejs-process-cve-2026-21710---high
 CVE-2026-31788 (In the Linux kernel, the following vulnerability has been resolved:  x ...)
-	- linux <unfixed>
+	- linux 6.19.10-1
 	NOTE: https://xenbits.xen.org/xsa/advisory-482.html
 	NOTE: https://git.kernel.org/linus/453b8fb68f3641fea970db88b7d9a153ed2a37e8
 	NOTE: https://git.kernel.org/linus/1613462be621ad5103ec338a7b0ca0746ec4e5f1
@@ -4419,22 +4419,22 @@ CVE-2024-32537 (Cross-Site request forgery (CSRF) vulnerability in joshuae1974 F
 CVE-2024-31119 (Improper neutralization of input during web page generation ('cross-si ...)
 	NOT-FOR-US: WordPress plugin or theme
 CVE-2026-23278 (In the Linux kernel, the following vulnerability has been resolved:  n ...)
-	- linux <unfixed>
+	- linux 6.19.10-1
 	NOTE: https://git.kernel.org/linus/7cb9a23d7ae40a702577d3d8bacb7026f04ac2a9 (7.0-rc4)
 CVE-2026-23277 (In the Linux kernel, the following vulnerability has been resolved:  n ...)
-	- linux <unfixed>
+	- linux 6.19.10-1
 	NOTE: https://git.kernel.org/linus/0cc0c2e661af418bbf7074179ea5cfffc0a5c466 (7.0-rc4)
 CVE-2026-23276 (In the Linux kernel, the following vulnerability has been resolved:  n ...)
-	- linux <unfixed>
+	- linux 6.19.10-1
 	NOTE: https://git.kernel.org/linus/6f1a9140ecda3baba3d945b9a6155af4268aafc4 (7.0-rc4)
 CVE-2026-23275 (In the Linux kernel, the following vulnerability has been resolved:  i ...)
-	- linux <unfixed>
+	- linux 6.19.10-1
 	[trixie] - linux <not-affected> (Vulnerable code not present)
 	[bookworm] - linux <not-affected> (Vulnerable code not present)
 	[bullseye] - linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/96189080265e6bb5dde3a4afbaf947af493e3f82 (7.0-rc4)
 CVE-2026-23274 (In the Linux kernel, the following vulnerability has been resolved:  n ...)
-	- linux <unfixed>
+	- linux 6.19.10-1
 	NOTE: https://git.kernel.org/linus/329f0b9b48ee6ab59d1ab72fef55fe8c6463a6cf (7.0-rc4)
 CVE-2026-23273 (In the Linux kernel, the following vulnerability has been resolved:  m ...)
 	- linux 6.18.14-1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/40df24a5f1fa3d31a0806fa24ffffbcfc2a0cf23

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/40df24a5f1fa3d31a0806fa24ffffbcfc2a0cf23
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260327/ab6b6860/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list