[Git][security-tracker-team/security-tracker][master] Two rust-coreutils issues fixed already earlier
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu May 7 07:04:57 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9fda5899 by Salvatore Bonaccorso at 2026-05-07T08:04:36+02:00
Two rust-coreutils issues fixed already earlier
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -8333,7 +8333,7 @@ CVE-2026-35344 (The dd utility in uutils coreutils suppresses errors during file
[bookworm] - rust-coreutils <no-dsa> (Minor issue)
NOTE: https://github.com/uutils/coreutils/issues/9745
CVE-2026-35343 (The cut utility in uutils coreutils incorrectly handles the -s (only-d ...)
- - rust-coreutils 0.8.0-1 (bug #1134876)
+ - rust-coreutils 0.7.0-1 (bug #1134876)
[trixie] - rust-coreutils <no-dsa> (Minor issue)
[bookworm] - rust-coreutils <no-dsa> (Minor issue)
NOTE: https://github.com/uutils/coreutils/pull/11143
@@ -8362,11 +8362,11 @@ CVE-2026-35339 (The recursive mode (-R) of the chmod utility in uutils coreutils
NOTE: https://github.com/uutils/coreutils/pull/9793
NOTE: Fixed by: https://github.com/uutils/coreutils/commit/abd581f62e97d0b147306ac40eac13af71c6fbba (0.6.0)
CVE-2026-35338 (A vulnerability in the chmod utility of uutils coreutils allows users ...)
- - rust-coreutils 0.8.0-1 (bug #1134876)
+ - rust-coreutils 0.6.0-1 (bug #1134876)
[trixie] - rust-coreutils <no-dsa> (Minor issue)
[bookworm] - rust-coreutils <no-dsa> (Minor issue)
NOTE: https://github.com/uutils/coreutils/pull/10033
- NOTE: Fixed by: https://github.com/uutils/coreutils/commit/413055b378fa6fe2299c5e5f538c8e6e841ab810
+ NOTE: Fixed by: https://github.com/uutils/coreutils/commit/413055b378fa6fe2299c5e5f538c8e6e841ab810 (0.6.0)
CVE-2026-34415 (Xerte Online Toolkits versions 3.15 and earlier contain an incomplete ...)
NOT-FOR-US: Xerte Online Toolkits
CVE-2026-34414 (Xerte Online Toolkits versions 3.15 and earlier contain a relative pat ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9fda58990a32a5c19705e5b4565684df689ff5d1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9fda58990a32a5c19705e5b4565684df689ff5d1
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260507/19b04f52/attachment.htm>
More information about the debian-security-tracker-commits
mailing list