[Git][security-tracker-team/security-tracker][master] dnf5 fixed in sid
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Fri May 1 19:26:25 BST 2026
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
19b400dc by Moritz Muehlenhoff at 2026-05-01T20:26:04+02:00
dnf5 fixed in sid
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -21437,8 +21437,10 @@ CVE-2026-3889 (Spoofing issue in Thunderbird. This vulnerability was fixed in Th
- thunderbird 1:140.9.0esr-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-24/#CVE-2026-3889
CVE-2026-3836
- - dnf5 <unfixed>
+ - dnf5 5.4.2.0-1
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2445770
+ NOTE: https://github.com/rpm-software-management/dnf5/pull/2643
+ NOTE: https://github.com/rpm-software-management/dnf5/commit/ef98e1cc9a7b084a1ee70723206b3a5f450c48ee (5.4.1.0)
CVE-2026-21717 (A flaw in V8's string hashing mechanism causes integer-like strings to ...)
{DSA-6183-1}
- nodejs 22.22.2+dfsg+~cs22.19.15-1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/19b400dc6f8c32519dfc9d3ea5b4e5abf4231ab4
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/19b400dc6f8c32519dfc9d3ea5b4e5abf4231ab4
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260501/ea8b0e39/attachment.htm>
More information about the debian-security-tracker-commits
mailing list