[Git][security-tracker-team/security-tracker][master] Mark nginx issues as no-dsa
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Mar 31 07:07:29 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
e7c60f0c by Salvatore Bonaccorso at 2026-03-31T08:07:03+02:00
Mark nginx issues as no-dsa
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3594,8 +3594,9 @@ CVE-2026-32853 (LibVNCServer versions 0.9.15 and prior (fixed incommit 009008e)
NOTE: Fixed by: https://github.com/LibVNC/libvncserver/commit/009008e2f4d5a54dd71f422070df3af7b3dbc931
CVE-2026-32647 (NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_ ...)
- nginx 1.28.3-1
+ [trixie] - nginx <no-dsa> (Minor issue)
+ [bookworm] - nginx <no-dsa> (Minor issue)
NOTE: https://my.f5.com/manage/s/article/K000160366
- TODO: research fixing commit
CVE-2026-30932 (Froxlor is open source server administration software. Prior to versio ...)
- froxlor <itp> (bug #581792)
CVE-2026-30662 (ConcreteCMS v9.4.7 contains a Denial of Service (DoS) vulnerability in ...)
@@ -3616,24 +3617,29 @@ CVE-2026-29772 (Astro is a web framework. Prior to version 10.0.0, Astro's Serve
NOT-FOR-US: Astro
CVE-2026-28755 (NGINX Plus and NGINX Open Source have a vulnerability in the ngx_strea ...)
- nginx 1.28.3-2
+ [trixie] - nginx <no-dsa> (Minor issue)
+ [bookworm] - nginx <no-dsa> (Minor issue)
NOTE: https://my.f5.com/manage/s/article/K000160368
- TODO: research fixing commit
CVE-2026-28753 (NGINX Plus and NGINX Open Source have a vulnerability in the ngx_mail_ ...)
- nginx 1.28.3-1
+ [trixie] - nginx <no-dsa> (Minor issue)
+ [bookworm] - nginx <no-dsa> (Minor issue)
NOTE: https://my.f5.com/manage/s/article/K000160367
- TODO: research upstream fixing commit
CVE-2026-27784 (The 32-bit implementation of NGINX Open Source has a vulnerability in ...)
- nginx 1.28.3-1
+ [trixie] - nginx <no-dsa> (Minor issue)
+ [bookworm] - nginx <no-dsa> (Minor issue)
NOTE: https://my.f5.com/manage/s/article/K000160364
- TODO: research fixing commit
CVE-2026-27654 (NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_ ...)
- nginx 1.28.3-1
+ [trixie] - nginx <no-dsa> (Minor issue)
+ [bookworm] - nginx <no-dsa> (Minor issue)
NOTE: https://my.f5.com/manage/s/article/K000160382
- TODO: research fixing commit
CVE-2026-27651 (When the ngx_mail_auth_http_modulemodule is enabled on NGINX Plus or N ...)
- nginx 1.28.3-1
+ [trixie] - nginx <no-dsa> (Minor issue)
+ [bookworm] - nginx <no-dsa> (Minor issue)
NOTE: https://my.f5.com/manage/s/article/K000160383
- TODO: research upstream commit
CVE-2026-26809
REJECTED
CVE-2026-23924 (Zabbix Agent 2 Docker plugin does not properly sanitize the 'docker.co ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e7c60f0c33039d9b7ac2e8f11d444b287f9ad85e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e7c60f0c33039d9b7ac2e8f11d444b287f9ad85e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260331/235ad5da/attachment.htm>
More information about the debian-security-tracker-commits
mailing list