[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2026-7111 via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue May 5 16:52:52 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
cfd08772 by Salvatore Bonaccorso at 2026-05-05T17:52:21+02:00
Track fixed version for CVE-2026-7111 via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2828,7 +2828,7 @@ CVE-2026-XXXX [RUSTSEC-2026-0113]
- rust-astral-tokio-tar 0.6.1-1
NOTE: https://rustsec.org/advisories/RUSTSEC-2026-0113.html
CVE-2026-7111 (Text::CSV_XS versions before 1.62 for Perl have a use-after-free when ...)
- - libtext-csv-xs-perl <unfixed> (bug #1135232)
+ - libtext-csv-xs-perl 1.62-1 (bug #1135232)
NOTE: https://lists.security.metacpan.org/cve-announce/msg/39453344/
NOTE: https://github.com/cpan-authors/Text-CSV_XS/issues/65
NOTE: Requisite for test case: https://github.com/cpan-authors/Text-CSV_XS/commit/b69bd94c2847cf3a28442af6286a345435955bcd
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cfd08772f5f9689ce9bee0a29ed9904b96d92071
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cfd08772f5f9689ce9bee0a29ed9904b96d92071
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260505/271a21f3/attachment.htm>
More information about the debian-security-tracker-commits
mailing list