[Git][security-tracker-team/security-tracker][master] Reference fix for CVE-2026-32952
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri May 1 13:11:55 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
c3cf3c8c by Salvatore Bonaccorso at 2026-05-01T14:11:44+02:00
Reference fix for CVE-2026-32952
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3374,6 +3374,7 @@ CVE-2026-32952 (go-ntlmssp is a Go package that provides NTLM/Negotiate authenti
[trixie] - golang-github-azure-go-ntlmssp <no-dsa> (Minor issue)
[bookworm] - golang-github-azure-go-ntlmssp <no-dsa> (Minor issue)
NOTE: https://github.com/Azure/go-ntlmssp/security/advisories/GHSA-pjcq-xvwq-hhpj
+ NOTE: Fixed by: https://github.com/Azure/go-ntlmssp/commit/bd8579c18d41bf5d91a5f74b1117c958f635b866 (v0.1.1)
CVE-2026-32870 (Kirby is an open-source content management system. Kirby's `Xml::value ...)
NOT-FOR-US: Kirby CMS
CVE-2026-32210 (Server-side request forgery (ssrf) in Microsoft Dynamics 365 (Online) ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c3cf3c8cceb805de8f67853cb4d8669badd2a46e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c3cf3c8cceb805de8f67853cb4d8669badd2a46e
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260501/80ab89ca/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list