[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri May 8 20:14:09 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8ed24e46 by security tracker role at 2026-05-08T19:14:03+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,1041 +1,1224 @@
-CVE-2026-6659
+CVE-2026-8178 (An issue exists in Amazon Redshift JDBC Driver versions prior to 2.2.2 ...)
+ TODO: check
+CVE-2026-8153 (OS command injection in Dashboard Server interface in Universal Robots ...)
+ TODO: check
+CVE-2026-8077 (Lack of proper authorization implementation in the CashDro 3 web admin ...)
+ TODO: check
+CVE-2026-8076 (Weak credentials in the CashDro 3 web administration panel, version 24 ...)
+ TODO: check
+CVE-2026-7864 (SEPPmail Secure Email Gateway before version 15.0.4 exposes server env ...)
+ TODO: check
+CVE-2026-7650 (The E2Pdf \u2013 Export Pdf Tool for WordPress plugin for WordPress is ...)
+ TODO: check
+CVE-2026-7475 (The Sky Addons plugin for WordPress is vulnerable to Stored Cross-Site ...)
+ TODO: check
+CVE-2026-7330 (The Auto Affiliate Links plugin for WordPress is vulnerable to Stored ...)
+ TODO: check
+CVE-2026-6213 (A vulnerability in Remote SparkSparkView beforebuild 1122 allows an at ...)
+ TODO: check
+CVE-2026-5341 (The NMR Strava activities plugin for WordPress is vulnerable to Stored ...)
+ TODO: check
+CVE-2026-5127 (The User Frontend: AI Powered Frontend Posting, User Directory, Profil ...)
+ TODO: check
+CVE-2026-44928 (In uriparser before 1.0.2, the function family EqualsUri can misclassi ...)
+ TODO: check
+CVE-2026-44927 (In uriparser before 1.0.2, there is pointer difference truncation to i ...)
+ TODO: check
+CVE-2026-44500 (ZEBRA is a Zcash node written entirely in Rust. Prior to zebrad versio ...)
+ TODO: check
+CVE-2026-44499 (ZEBRA is a Zcash node written entirely in Rust. Prior to version 4.4.0 ...)
+ TODO: check
+CVE-2026-44498 (ZEBRA is a Zcash node written entirely in Rust. Prior to version 4.4.0 ...)
+ TODO: check
+CVE-2026-44497 (ZEBRA is a Zcash node written entirely in Rust. Prior to zebrad versio ...)
+ TODO: check
+CVE-2026-44340 (PraisonAI is a multi-agent teams system. Prior to version 4.6.37, the ...)
+ TODO: check
+CVE-2026-44339 (PraisonAI is a multi-agent teams system. Prior to praisonai version 4. ...)
+ TODO: check
+CVE-2026-44338 (PraisonAI is a multi-agent teams system. From version 2.5.6 to before ...)
+ TODO: check
+CVE-2026-44337 (PraisonAI is a multi-agent teams system. From version 2.4.1 to before ...)
+ TODO: check
+CVE-2026-44336 (PraisonAI is a multi-agent teams system. Prior to version 4.6.34, Prai ...)
+ TODO: check
+CVE-2026-44335 (PraisonAI is a multi-agent teams system. Prior to version 1.6.32, the ...)
+ TODO: check
+CVE-2026-44334 (PraisonAI is a multi-agent teams system. From version 4.5.139 to befor ...)
+ TODO: check
+CVE-2026-44129 (SEPPmail Secure Email Gateway before version 15.0.4 contains a server- ...)
+ TODO: check
+CVE-2026-44128 (SEPPmail Secure Email Gateway before version 15.0.2.1 allows unauthent ...)
+ TODO: check
+CVE-2026-44127 (SEPPmail Secure Email Gateway before version 15.0.4 contains an unauth ...)
+ TODO: check
+CVE-2026-44126 (SEPPmail Secure Email Gateway before version 15.0.4 insecurely deseria ...)
+ TODO: check
+CVE-2026-44125 (SEPPmail Secure Email Gateway before version 15.0.4 fails to enforce a ...)
+ TODO: check
+CVE-2026-43967 (Inefficient Algorithmic Complexity vulnerability in absinthe-graphql a ...)
+ TODO: check
+CVE-2026-42794 (Improper Neutralization of Input During Web Page Generation (XSS) vuln ...)
+ TODO: check
+CVE-2026-42793 (Allocation of Resources Without Limits or Throttling vulnerability in ...)
+ TODO: check
+CVE-2026-42353 (i18next-http-middleware is a middleware to be used with Node.js web fr ...)
+ TODO: check
+CVE-2026-42072 (Nornicdb is a distributed low-latency, Graph+Vector, Temporal MVCC wit ...)
+ TODO: check
+CVE-2026-42030 (MapServer is a system for developing web-based GIS applications. From ...)
+ TODO: check
+CVE-2026-42028 (novaGallery is a php image gallery. Prior to version 2.1.1, a path tra ...)
+ TODO: check
+CVE-2026-41889 (pgx is a PostgreSQL driver and toolkit for Go. Prior to version 5.9.2, ...)
+ TODO: check
+CVE-2026-41887 (Flarum is open-source forum software. Prior to versions 1.8.16 and 2.0 ...)
+ TODO: check
+CVE-2026-41886 (locize is a localization platform that connects code and i18n setup. P ...)
+ TODO: check
+CVE-2026-41885 (i18next-locize-backend is a simple i18next backend for locize.com whic ...)
+ TODO: check
+CVE-2026-41883 (OmniFaces is a utility library for Faces. Prior to versions 1.14.2, 2. ...)
+ TODO: check
+CVE-2026-41693 (i18next-fs-backend is a backend layer for i18next using in Node.js and ...)
+ TODO: check
+CVE-2026-41690 (18next-http-middleware is a middleware to be used with Node.js web fra ...)
+ TODO: check
+CVE-2026-41683 (i18next-http-middleware is a middleware to be used with Node.js web fr ...)
+ TODO: check
+CVE-2026-41591 (Marko is a declarative, HTML-based language for building web apps. Pri ...)
+ TODO: check
+CVE-2026-41588 (RELATE is a web-based courseware package. Prior to commit 2f68e16, the ...)
+ TODO: check
+CVE-2026-41585 (ZEBRA is a Zcash node written entirely in Rust. From zebrad versions 2 ...)
+ TODO: check
+CVE-2026-41584 (ZEBRA is a Zcash node written entirely in Rust. Prior to zebrad versio ...)
+ TODO: check
+CVE-2026-41583 (ZEBRA is a Zcash node written entirely in Rust. Prior to zebrad versio ...)
+ TODO: check
+CVE-2026-41576 (Brave CMS is an open-source CMS. Prior to commit 6c56603, the contact ...)
+ TODO: check
+CVE-2026-41575 (In th30d4y/IP from version 1.0.1 to before version 2.0.1, a DOM-Based ...)
+ TODO: check
+CVE-2026-41574 (Nhost is an open source Firebase alternative with GraphQL. Prior to ve ...)
+ TODO: check
+CVE-2026-41570 (PHPUnit is a testing framework for PHP. In versions 12.5.21 and 13.1.5 ...)
+ TODO: check
+CVE-2026-41524 (Brave CMS is an open-source CMS. Prior to commit 6c56603, page and art ...)
+ TODO: check
+CVE-2026-41512 (ai-scanner is an AI model safety scanner built on NVIDIA garak. From v ...)
+ TODO: check
+CVE-2026-41511 (OpenMcdf is a fully .NET / C# library to manipulate Compound File Bina ...)
+ TODO: check
+CVE-2026-41509 (CROSS implementation contains reference and optimized implementations ...)
+ TODO: check
+CVE-2026-41507 (math-codegen generates code from mathematical expressions. Prior to ve ...)
+ TODO: check
+CVE-2026-41506 (go-git is an extensible git implementation library written in pure Go. ...)
+ TODO: check
+CVE-2026-41497 (PraisonAI is a multi-agent teams system. Prior to version 4.6.9, the f ...)
+ TODO: check
+CVE-2026-41496 (PraisonAI is a multi-agent teams system. Prior to praisonai version 4. ...)
+ TODO: check
+CVE-2026-41493 (YARD is a Ruby Documentation tool. Prior to version 0.9.42, a path tra ...)
+ TODO: check
+CVE-2026-41491 (Dapr is a portable, event-driven, runtime for building distributed app ...)
+ TODO: check
+CVE-2026-41487 (Langfuse is an open source large language model engineering platform. ...)
+ TODO: check
+CVE-2026-41423 (Angular is a development platform for building mobile and desktop web ...)
+ TODO: check
+CVE-2026-41308 (Password Pusher is an open source application to communicate sensitive ...)
+ TODO: check
+CVE-2026-41161 (Sync-in Server is a secure, open-source platform for file storage, sha ...)
+ TODO: check
+CVE-2026-41070 (openvpn-auth-oauth2 is a plugin/management interface client for OpenVP ...)
+ TODO: check
+CVE-2026-3318 (Open redirection vulnerability in the latest demo version of the Cradl ...)
+ TODO: check
+CVE-2026-39816 (The optional extension component TinkerpopClientService is missing the ...)
+ TODO: check
+CVE-2026-38361 (An issue in fohrloop dash-uploader v.0.1.0 through v.0.7.0a2 allows a ...)
+ TODO: check
+CVE-2026-38360 (Directory Traversal vulnerability in fohrloop dash-uploader v.0.1.0 th ...)
+ TODO: check
+CVE-2026-37431 (Beauty Parlour Management System v1.1 was discovered to contain a SQL ...)
+ TODO: check
+CVE-2026-34354 (Akamai Guardicore Platform Agent (GPA) and Zero Trust Client on Linux ...)
+ TODO: check
+CVE-2026-32803 (Dell PowerScale OneFS versions 9.5.0.0 through 9.5.1.6, 9.6.0.0 throug ...)
+ TODO: check
+CVE-2026-29975 (lwjson 1.8.1 contains an improper input validation vulnerability in th ...)
+ TODO: check
+CVE-2026-29974 (An issue was discovered in kosma minmea 0.3.0. The minmea_scan functio ...)
+ TODO: check
+CVE-2026-29972 (nanoMODBUS through v1.22.0 has a stack-based buffer overflow in recv_r ...)
+ TODO: check
+CVE-2026-29203 (A chmod call in the cPanel Nova plugin's Cpanel::Nova::Connector follo ...)
+ TODO: check
+CVE-2026-29202 (Insufficient input validation of the `plugin` parameter of the `create ...)
+ TODO: check
+CVE-2026-29201 (Insufficient input validation of the feature file name in `feature::LO ...)
+ TODO: check
+CVE-2026-25199 (Instances deployed via the Proxmox extension allow unauthorized access ...)
+ TODO: check
+CVE-2026-25077 (Account users are allowed by default to register templates to be downl ...)
+ TODO: check
+CVE-2025-69233 (Due to multiple time-of-check time-of-use race conditions in the resou ...)
+ TODO: check
+CVE-2025-67486 (Dolibarr is an enterprise resource planning (ERP) and customer relatio ...)
+ TODO: check
+CVE-2025-66467 (Missing MinIO policy cleanup on bucket deletion via Apache CloudStack ...)
+ TODO: check
+CVE-2025-66172 (The CloudStack Backup plugin has an improper access logic in versions ...)
+ TODO: check
+CVE-2025-66171 (The CloudStack Backup plugin has an improper access logic in versions ...)
+ TODO: check
+CVE-2025-66170 (The CloudStack Backup plugin has an improper authorization logic in ve ...)
+ TODO: check
+CVE-2022-50994 (DrayTek Vigor 2960 firmware versions prior to 1.5.1.4 contain an OS co ...)
+ TODO: check
+CVE-2026-6659 (Crypt::PasswdMD5 versions through 1.42 for Perl generates insecure ran ...)
- libcrypt-passwdmd5-perl <unfixed>
NOTE: https://lists.security.metacpan.org/cve-announce/msg/39857355/
-CVE-2026-43470 [nfs: return EISDIR on nfs3_proc_create if d_alias is a dir]
+CVE-2026-43470 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/410666a298c34ebd57256fde6b24c96bd23059a2 (7.0-rc4)
-CVE-2026-43469 [xprtrdma: Decrement re_receiving on the early exit paths]
+CVE-2026-43469 (In the Linux kernel, the following vulnerability has been resolved: x ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/7b6275c80a0c81c5f8943272292dfe67730ce849 (7.0-rc4)
-CVE-2026-43468 [net/mlx5: Fix deadlock between devlink lock and esw->wq]
+CVE-2026-43468 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/aed763abf0e905b4b8d747d1ba9e172961572f57 (7.0-rc4)
-CVE-2026-43467 [net/mlx5: Fix crash when moving to switchdev mode]
+CVE-2026-43467 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/24b2795f9683e092dc22a68f487e7aaaf2ddafea (7.0-rc4)
-CVE-2026-43462 [net: spacemit: Fix error handling in emac_tx_mem_map()]
+CVE-2026-43462 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/86292155bea578ebab0ca3b65d4d87ecd8a0e9ea (7.0-rc4)
-CVE-2026-43461 [spi: amlogic: spifc-a4: Fix DMA mapping error handling]
+CVE-2026-43461 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/b20b437666e1cb26a7c499d1664e8f2a0ac67000 (7.0-rc4)
-CVE-2026-43460 [spi: rockchip-sfc: Fix double-free in remove() callback]
+CVE-2026-43460 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/111e2863372c322e836e0c896f6dd9cf4ee08c71 (7.0-rc4)
-CVE-2026-43457 [mctp: i2c: fix skb memory leak in receive path]
+CVE-2026-43457 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/e3f5e0f22cfc2371e7471c9fd5b4da78f9df7c69 (7.0-rc4)
-CVE-2026-43455 [mctp: route: hold key->lock in mctp_flow_prepare_output()]
+CVE-2026-43455 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/7d86aa41c073c4e7eb75fd2e674f1fd8f289728a (7.0-rc4)
-CVE-2026-43454 [netfilter: nf_tables: Fix for duplicate device in netdev hooks]
+CVE-2026-43454 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/b7cdc5a97d02c943f4bdde4d5767ad0c13cad92b (7.0-rc4)
-CVE-2026-43447 [iavf: fix PTP use-after-free during reset]
+CVE-2026-43447 (In the Linux kernel, the following vulnerability has been resolved: i ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/efc54fb13d79117a825fef17364315a58682c7ec (7.0-rc4)
-CVE-2026-43446 [accel/amdxdna: Fix runtime suspend deadlock when there is pending job]
+CVE-2026-43446 (In the Linux kernel, the following vulnerability has been resolved: a ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/6b13cb8f48a42ddf6dd98865b673a82e37ff238b (7.0-rc4)
-CVE-2026-43444 [drm/amdkfd: Unreserve bo if queue update failed]
+CVE-2026-43444 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/2ce75a0b7e1bfddbcb9bc8aeb2e5e7fa99971acf (7.0-rc4)
-CVE-2026-43442 [io_uring: fix physical SQE bounds check for SQE_MIXED 128-byte ops]
+CVE-2026-43442 (In the Linux kernel, the following vulnerability has been resolved: i ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/6f02c6b196036dbb6defb4647d8707d29b7fe95b (7.0-rc4)
-CVE-2026-43441 [net: bonding: Fix nd_tbl NULL dereference when IPv6 is disabled]
+CVE-2026-43441 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/30021e969d48e5819d5ae56936c2f34c0f7ce997 (7.0-rc4)
-CVE-2026-43440 [net/mana: Null service_wq on setup error to prevent double destroy]
+CVE-2026-43440 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/87c2302813abc55c46485711a678e3c312b00666 (7.0-rc4)
-CVE-2026-43438 [sched_ext: Remove redundant css_put() in scx_cgroup_init()]
+CVE-2026-43438 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/1336b579f6079fb8520be03624fcd9ba443c930b (7.0-rc3)
-CVE-2026-43435 [rust_binder: fix oneway spam detection]
+CVE-2026-43435 (In the Linux kernel, the following vulnerability has been resolved: r ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/4fc87c240b8f30e22b7ebaae29d57105589e1c0b (7.0-rc4)
-CVE-2026-43434 [rust_binder: check ownership before using vma]
+CVE-2026-43434 (In the Linux kernel, the following vulnerability has been resolved: r ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/8ef2c15aeae07647f530d30f6daaf79eb801bcd1 (7.0-rc4)
-CVE-2026-43433 [rust_binder: avoid reading the written value in offsets array]
+CVE-2026-43433 (In the Linux kernel, the following vulnerability has been resolved: r ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/4cb9e13fec0de7c942f5f927469beb8e48ddd20f (7.0-rc4)
-CVE-2026-43431 [xhci: Fix NULL pointer dereference when reading portli debugfs files]
+CVE-2026-43431 (In the Linux kernel, the following vulnerability has been resolved: x ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/ae4ff9dead5efa2025eddfcdb29411432bf40a7c (7.0-rc4)
-CVE-2026-43423 [usb: gadget: f_ncm: Fix atomic context locking issue]
+CVE-2026-43423 (In the Linux kernel, the following vulnerability has been resolved: u ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/0d6c8144ca4d93253de952a5ea0028c19ed7ab68 (7.0-rc4)
-CVE-2026-43422 [usb: legacy: ncm: Fix NPE in gncm_bind]
+CVE-2026-43422 (In the Linux kernel, the following vulnerability has been resolved: u ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/fde0634ad9856b3943a2d1a8cc8de174a63ac840 (7.0-rc4)
-CVE-2026-43418 [sched/mmcid: Prevent CID stalls due to concurrent forks]
+CVE-2026-43418 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/b2e48c429ec54715d16fefa719dd2fbded2e65be (7.0-rc4)
-CVE-2026-43417 [sched/mmcid: Handle vfork()/CLONE_VM correctly]
+CVE-2026-43417 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/28b5a1395036d6c7a6c8034d85ad3d7d365f192c (7.0-rc4)
-CVE-2026-43415 [scsi: ufs: core: Fix SError in ufshcd_rtc_work() during UFS suspend]
+CVE-2026-43415 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/b0bd84c39289ef6a6c3827dd52c875659291970a (7.0-rc4)
-CVE-2026-43412 [ASoC: qcom: qdsp6: Fix q6apm remove ordering during ADSP stop and start]
+CVE-2026-43412 (In the Linux kernel, the following vulnerability has been resolved: A ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/d6db827b430bdcca3976cebca7bd69cca03cde2c (7.0-rc4)
-CVE-2026-43410 [firmware: stratix10-rsu: Fix NULL pointer dereference when RSU is disabled]
+CVE-2026-43410 (In the Linux kernel, the following vulnerability has been resolved: f ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/c45f7263100cece247dd3fa5fe277bd97fdb5687 (7.0-rc4)
-CVE-2026-43408 [ceph: add a bunch of missing ceph_path_info initializers]
+CVE-2026-43408 (In the Linux kernel, the following vulnerability has been resolved: c ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/43323a5934b660afae687e8e4e95ac328615a5c4 (7.0-rc4)
-CVE-2026-43404 [mm: Fix a hmm_range_fault() livelock / starvation problem]
+CVE-2026-43404 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/b570f37a2ce480be26c665345c5514686a8a0274 (7.0-rc3)
-CVE-2026-43403 [nsfs: tighten permission checks for ns iteration ioctls]
+CVE-2026-43403 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/e6b899f08066e744f89df16ceb782e06868bd148 (7.0-rc3)
-CVE-2026-43402 [kthread: consolidate kthread exit paths to prevent use-after-free]
+CVE-2026-43402 (In the Linux kernel, the following vulnerability has been resolved: k ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/28aaa9c39945b7925a1cc1d513c8f21ed38f5e4f (7.0-rc3)
-CVE-2026-43401 [cpufreq: intel_pstate: Fix NULL pointer dereference in update_cpu_qos_request()]
+CVE-2026-43401 (In the Linux kernel, the following vulnerability has been resolved: c ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/ab39cc4cb8ceecdc2b61747433e7237f1ac2b789 (7.0-rc2)
-CVE-2026-43399 [drm/amdgpu/userq: Fix reference leak in amdgpu_userq_wait_ioctl]
+CVE-2026-43399 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/49abfa812617a7f2d0132c70d23ac98b389c6ec1 (7.0-rc2)
-CVE-2026-43397 [drm/bridge: samsung-dsim: Fix memory leak in error path]
+CVE-2026-43397 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/803ec1faf7c1823e6e3b1f2aaa81be18528c9436 (7.0-rc2)
-CVE-2026-43396 [drm/xe/sync: Fix user fence leak on alloc failure]
+CVE-2026-43396 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/0879c3f04f67e2a1677c25dcc24669ce21eb6a6c (7.0-rc2)
-CVE-2026-43395 [drm/xe/sync: Cleanup partially initialized sync on parse failure]
+CVE-2026-43395 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/1bfd7575092420ba5a0b944953c95b74a5646ff8 (7.0-rc2)
-CVE-2026-43394 [nfsd: Fix cred ref leak in nfsd_nl_listener_set_doit().]
+CVE-2026-43394 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/92978c83bb4eef55d02a6c990c01c423131eefa7 (7.0-rc3)
-CVE-2026-43393 [btrfs: fix chunk map leak in btrfs_map_block() after btrfs_chunk_map_num_copies()]
+CVE-2026-43393 (In the Linux kernel, the following vulnerability has been resolved: b ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/f15fb3d41543244d1179f423da4a4832a55bc050 (7.0-rc3)
-CVE-2026-43392 [sched_ext: Fix starvation of scx_enable() under fair-class saturation]
+CVE-2026-43392 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/b06ccbabe2506fd70b9167a644978b049150224a (7.0-rc3)
-CVE-2026-43390 [nstree: tighten permission checks for listing]
+CVE-2026-43390 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/8d76afe84fa2babf604b3c173730d4d2b067e361 (7.0-rc3)
-CVE-2026-43389 [mm: memfd_luo: always dirty all folios]
+CVE-2026-43389 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/7e04bf1f33151a30e06a65b74b5f2c19fc2be128 (7.0-rc4)
-CVE-2026-43388 [mm/damon/core: clear walk_control on inactive context in damos_walk()]
+CVE-2026-43388 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/d210fdcac9c0d1380eab448aebc93f602c1cd4e6 (7.0-rc4)
-CVE-2026-43385 [net: Fix rcu_tasks stall in threaded busypoll]
+CVE-2026-43385 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/1a86a1f7d88996085934139fa4c063b6299a2dd3 (7.0-rc3)
-CVE-2026-43384 [net/tcp-ao: Fix MAC comparison to be constant-time]
+CVE-2026-43384 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/67edfec516d30d3e62925c397be4a1e5185802fc (7.0-rc3)
-CVE-2026-43380 [hwmon: (pmbus/q54sj108a2) fix stack overflow in debugfs read]
+CVE-2026-43380 (In the Linux kernel, the following vulnerability has been resolved: h ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/25dd70a03b1f5f3aa71e1a5091ecd9cd2a13ee43 (7.0-rc3)
-CVE-2026-43379 [ksmbd: fix use-after-free in smb_lazy_parent_lease_break_close()]
+CVE-2026-43379 (In the Linux kernel, the following vulnerability has been resolved: k ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/eac3361e3d5dd8067b3258c69615888eb45e9f25 (7.0-rc4)
-CVE-2026-43377 [ksmbd: Don't log keys in SMB3 signing and encryption key generation]
+CVE-2026-43377 (In the Linux kernel, the following vulnerability has been resolved: k ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/441336115df26b966575de56daf7107ed474faed (7.0-rc4)
-CVE-2026-43376 [ksmbd: fix use-after-free by using call_rcu() for oplock_info]
+CVE-2026-43376 (In the Linux kernel, the following vulnerability has been resolved: k ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/1dfd062caa165ec9d7ee0823087930f3ab8a6294 (7.0-rc4)
-CVE-2026-43375 [net: mctp: fix device leak on probe failure]
+CVE-2026-43375 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/224a0d284c3caf1951302d1744a714784febed71 (7.0-rc4)
-CVE-2026-43374 [net: nexthop: fix percpu use-after-free in remove_nh_grp_entry]
+CVE-2026-43374 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/b2662e7593e94ae09b1cf7ee5f09160a3612bcb2 (7.0-rc4)
-CVE-2026-43372 [net: dsa: microchip: Fix error path in PTP IRQ setup]
+CVE-2026-43372 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/99c8c16a4aad0b37293cae213e15957c573cf79b (7.0-rc4)
-CVE-2026-43371 [net: macb: Shuffle the tx ring before enabling tx]
+CVE-2026-43371 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/881a0263d502e1a93ebc13a78254e9ad19520232 (7.0-rc4)
-CVE-2026-43369 [drm/amd: Fix NULL pointer dereference in device cleanup]
+CVE-2026-43369 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/062ea905fff7756b2e87143ffccaece5cdb44267 (7.0-rc4)
-CVE-2026-43368 [drm/i915: Fix potential overflow of shmem scatterlist length]
+CVE-2026-43368 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/029ae067431ab9d0fca479bdabe780fa436706ea (7.0-rc4)
-CVE-2026-43367 [drm/amd: Fix a few more NULL pointer dereference in device cleanup]
+CVE-2026-43367 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/72ecb1dae72775fa9fea0159d8445d620a0a2295 (7.0-rc4)
-CVE-2026-43366 [io_uring/kbuf: check if target buffer list is still legacy on recycle]
+CVE-2026-43366 (In the Linux kernel, the following vulnerability has been resolved: i ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/c2c185be5c85d37215397c8e8781abf0a69bec1f (7.0-rc4)
-CVE-2026-43365 [xfs: fix undersized l_iclog_roundoff values]
+CVE-2026-43365 (In the Linux kernel, the following vulnerability has been resolved: x ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/52a8a1ba883defbfe3200baa22cf4cd21985d51a (7.0-rc4)
-CVE-2026-43364 [ublk: fix NULL pointer dereference in ublk_ctrl_set_size()]
+CVE-2026-43364 (In the Linux kernel, the following vulnerability has been resolved: u ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/25966fc097691e5c925ad080f64a2f19c5fd940a (7.0-rc4)
-CVE-2026-43360 [btrfs: fix transaction abort on file creation due to name hash collision]
+CVE-2026-43360 (In the Linux kernel, the following vulnerability has been resolved: b ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/2d1ababdedd4ba38867c2500eb7f95af5ddeeef7 (7.0-rc4)
-CVE-2026-43358 [btrfs: add missing RCU unlock in error path in try_release_subpage_extent_buffer()]
+CVE-2026-43358 (In the Linux kernel, the following vulnerability has been resolved: b ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/b2840e33127ce0eea880504b7f133e780f567a9b (7.0-rc4)
-CVE-2026-43356 [iio: imu: adis: Fix NULL pointer dereference in adis_init]
+CVE-2026-43356 (In the Linux kernel, the following vulnerability has been resolved: i ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/9990cd4f8827bd1ae3fb6eb7407630d8d463c430 (7.0-rc4)
-CVE-2026-43354 [iio: proximity: hx9023s: Protect against division by zero in set_samp_freq]
+CVE-2026-43354 (In the Linux kernel, the following vulnerability has been resolved: i ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/a318cfc0853706f1d6ce682dba660bc455d674ef (7.0-rc4)
-CVE-2026-43351 [KVM: arm64: Eagerly init vgic dist/redist on vgic creation]
+CVE-2026-43351 (In the Linux kernel, the following vulnerability has been resolved: K ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/ac6769c8f948dff33265c50e524aebf9aa6f1be0 (7.0-rc4)
-CVE-2026-43475 [scsi: storvsc: Fix scheduling while atomic on PREEMPT_RT]
+CVE-2026-43475 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/57297736c08233987e5d29ce6584c6ca2a831b12 (7.0-rc2)
-CVE-2026-43474 [fs: init flags_valid before calling vfs_fileattr_get]
+CVE-2026-43474 (In the Linux kernel, the following vulnerability has been resolved: f ...)
- linux 6.19.10-1
NOTE: https://git.kernel.org/linus/cb184dd19154fc486fa3d9e02afe70a97e54e055 (7.0-rc2)
-CVE-2026-43473 [scsi: mpi3mr: Add NULL checks when resetting request and reply queues]
+CVE-2026-43473 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/fa96392ebebc8fade2b878acb14cce0f71016503 (7.0-rc2)
-CVE-2026-43472 [unshare: fix unshare_fs() handling]
+CVE-2026-43472 (In the Linux kernel, the following vulnerability has been resolved: u ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/6c4b2243cb6c0755159bd567130d5e12e7b10d9f (7.0-rc2)
-CVE-2026-43471 [scsi: ufs: core: Fix possible NULL pointer dereference in ufshcd_add_command_trace()]
+CVE-2026-43471 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/30df81f2228d65bddf492db3929d9fcaffd38fc5 (7.0-rc2)
-CVE-2026-43466 [net/mlx5e: Fix DMA FIFO desync on error CQE SQ recovery]
+CVE-2026-43466 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/1633111d69053512d099658d4a05fc736fab36b0 (7.0-rc4)
-CVE-2026-43465 [net/mlx5e: RX, Fix XDP multi-buf frag counting for striding RQ]
+CVE-2026-43465 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.10-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/db25c42c2e1f9c0d136420fff5e5700f7e771a6f (7.0-rc4)
-CVE-2026-43464 [net/mlx5e: RX, Fix XDP multi-buf frag counting for legacy RQ]
+CVE-2026-43464 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.10-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/a6413e6f6c9d9bb9833324cb3753582f7bc0f2fa (7.0-rc4)
-CVE-2026-43463 [rxrpc, afs: Fix missing error pointer check after rxrpc_kernel_lookup_peer()]
+CVE-2026-43463 (In the Linux kernel, the following vulnerability has been resolved: r ...)
- linux 6.19.10-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/4245a79003adf30e67f8e9060915bd05cb31d142 (7.0-rc4)
-CVE-2026-43459 [ASoC: soc-core: flush delayed work before removing DAIs and widgets]
+CVE-2026-43459 (In the Linux kernel, the following vulnerability has been resolved: A ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/95bc5c225513fc3c4ce169563fb5e3929fbb938b (7.0-rc4)
-CVE-2026-43458 [serial: caif: hold tty->link reference in ldisc_open and ser_release]
+CVE-2026-43458 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/288598d80a068a0e9281de35bcb4ce495f189e2a (7.0-rc4)
-CVE-2026-43456 [bonding: fix type confusion in bond_setup_by_slave()]
+CVE-2026-43456 (In the Linux kernel, the following vulnerability has been resolved: b ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/950803f7254721c1c15858fbbfae3deaaeeecb11 (7.0-rc4)
-CVE-2026-43453 [netfilter: nft_set_pipapo: fix stack out-of-bounds read in pipapo_drop()]
+CVE-2026-43453 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/d6d8cd2db236a9dd13dbc2d05843b3445cc964b5 (7.0-rc4)
-CVE-2026-43452 [netfilter: x_tables: guard option walkers against 1-byte tail reads]
+CVE-2026-43452 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/cfe770220ac2dbd3e104c6b45094037455da81d4 (7.0-rc4)
-CVE-2026-43451 [netfilter: nfnetlink_queue: fix entry leak in bridge verdict error path]
+CVE-2026-43451 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/f1ba83755d81c6fc66ac7acd723d238f974091e9 (7.0-rc4)
-CVE-2026-43450 [netfilter: nfnetlink_cthelper: fix OOB read in nfnl_cthelper_dump_table()]
+CVE-2026-43450 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/6dcee8496d53165b2d8a5909b3050b62ae71fe89 (7.0-rc4)
-CVE-2026-43449 [nvme-pci: Fix slab-out-of-bounds in nvme_dbbuf_set]
+CVE-2026-43449 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/b4e78f1427c7d6859229ae9616df54e1fc05a516 (7.0-rc4)
-CVE-2026-43448 [nvme-pci: Fix race bug in nvme_poll_irqdisable()]
+CVE-2026-43448 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/fc71f409b22ca831a9f87a2712eaa09ef2bb4a5e (7.0-rc4)
-CVE-2026-43445 [e1000/e1000e: Fix leak in DMA error cleanup]
+CVE-2026-43445 (In the Linux kernel, the following vulnerability has been resolved: e ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/e94eaef11142b01f77bf8ba4d0b59720b7858109 (7.0-rc4)
-CVE-2026-43443 [ASoC: amd: acp-mach-common: Add missing error check for clock acquisition]
+CVE-2026-43443 (In the Linux kernel, the following vulnerability has been resolved: A ...)
- linux 6.19.10-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/30c64fb9839949f085c8eb55b979cbd8a4c51f00 (7.0-rc4)
-CVE-2026-43439 [cgroup: fix race between task migration and iteration]
+CVE-2026-43439 (In the Linux kernel, the following vulnerability has been resolved: c ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/5ee01f1a7343d6a3547b6802ca2d4cdce0edacb1 (7.0-rc3)
-CVE-2026-43437 [ALSA: pcm: fix use-after-free on linked stream runtime in snd_pcm_drain()]
+CVE-2026-43437 (In the Linux kernel, the following vulnerability has been resolved: A ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/9b1dbd69ba6f8f8c69bc7b77c2ce3b9c6ed05ba6 (7.0-rc4)
-CVE-2026-43436 [ALSA: usb-audio: Check endpoint numbers at parsing Scarlett2 mixer interfaces]
+CVE-2026-43436 (In the Linux kernel, the following vulnerability has been resolved: A ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/df1d8abf36ca3681c21a6809eaa9a1e01ef897a6 (7.0-rc4)
-CVE-2026-43432 [usb: xhci: Fix memory leak in xhci_disable_slot()]
+CVE-2026-43432 (In the Linux kernel, the following vulnerability has been resolved: u ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/c1c8550e70401159184130a1afc6261db01fc0ce (7.0-rc4)
-CVE-2026-43430 [usb: yurex: fix race in probe]
+CVE-2026-43430 (In the Linux kernel, the following vulnerability has been resolved: u ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/7a875c09899ba0404844abfd8f0d54cdc481c151 (7.0-rc4)
-CVE-2026-43429 [USB: usbtmc: Use usb_bulk_msg_killable() with user-specified timeouts]
+CVE-2026-43429 (In the Linux kernel, the following vulnerability has been resolved: U ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/7784caa413a89487dd14dd5c41db8753483b2acb (7.0-rc4)
-CVE-2026-43428 [USB: core: Limit the length of unkillable synchronous timeouts]
+CVE-2026-43428 (In the Linux kernel, the following vulnerability has been resolved: U ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/1015c27a5e1a63efae2b18a9901494474b4d1dc3 (7.0-rc4)
-CVE-2026-43427 [usb: class: cdc-wdm: fix reordering issue in read code path]
+CVE-2026-43427 (In the Linux kernel, the following vulnerability has been resolved: u ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/8df672bfe3ec2268c2636584202755898e547173 (7.0-rc4)
-CVE-2026-43426 [usb: renesas_usbhs: fix use-after-free in ISR during device removal]
+CVE-2026-43426 (In the Linux kernel, the following vulnerability has been resolved: u ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/3cbc242b88c607f55da3d0d0d336b49bf1e20412 (7.0-rc4)
-CVE-2026-43425 [usb: image: mdc800: kill download URB on timeout]
+CVE-2026-43425 (In the Linux kernel, the following vulnerability has been resolved: u ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/1be3b77de4eb89af8ae2fd6610546be778e25589 (7.0-rc4)
-CVE-2026-43424 [usb: gadget: f_tcm: Fix NULL pointer dereferences in nexus handling]
+CVE-2026-43424 (In the Linux kernel, the following vulnerability has been resolved: u ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/b9fde507355342a2d64225d582dc8b98ff5ecb19 (7.0-rc4)
-CVE-2026-43421 [usb: gadget: f_ncm: Fix net_device lifecycle with device_move]
+CVE-2026-43421 (In the Linux kernel, the following vulnerability has been resolved: u ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/ec35c1969650e7cb6c8a91020e568ed46e3551b0 (7.0-rc4)
-CVE-2026-43420 [ceph: fix i_nlink underrun during async unlink]
+CVE-2026-43420 (In the Linux kernel, the following vulnerability has been resolved: c ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/ce0123cbb4a40a2f1bbb815f292b26e96088639f (7.0-rc4)
-CVE-2026-43419 [ceph: fix memory leaks in ceph_mdsc_build_path()]
+CVE-2026-43419 (In the Linux kernel, the following vulnerability has been resolved: c ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/040d159a45ded7f33201421a81df0aa2a86e5a0b (7.0-rc4)
-CVE-2026-43416 [powerpc, perf: Check that current->mm is alive before getting user callchain]
+CVE-2026-43416 (In the Linux kernel, the following vulnerability has been resolved: p ...)
- linux 6.19.10-1
NOTE: https://git.kernel.org/linus/e9bbfb4bfa86c6b5515b868d6982ac60505d7e39 (7.0-rc4)
-CVE-2026-43414 [scsi: qla2xxx: Completely fix fcport double free]
+CVE-2026-43414 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 6.19.10-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/c0b7da13a04bd70ef6070bfb9ea85f582294560a (7.0-rc4)
-CVE-2026-43413 [scsi: hisi_sas: Fix NULL pointer exception during user_scan()]
+CVE-2026-43413 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/8ddc0c26916574395447ebf4cff684314f6873a9 (7.0-rc4)
-CVE-2026-43411 [tipc: fix divide-by-zero in tipc_sk_filter_connect()]
+CVE-2026-43411 (In the Linux kernel, the following vulnerability has been resolved: t ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/6c5a9baa15de240e747263aba435a0951da8d8d2 (7.0-rc4)
-CVE-2026-43409 [kprobes: avoid crash when rmmod/insmod after ftrace killed]
+CVE-2026-43409 (In the Linux kernel, the following vulnerability has been resolved: k ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/e113f0b46d19626ec15388bcb91432c9a4fd6261 (7.0-rc4)
-CVE-2026-43407 [libceph: Fix potential out-of-bounds access in ceph_handle_auth_reply()]
+CVE-2026-43407 (In the Linux kernel, the following vulnerability has been resolved: l ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/b282c43ed156ae15ea76748fc15cd5c39dc9ab72 (7.0-rc4)
-CVE-2026-43406 [libceph: prevent potential out-of-bounds reads in process_message_header()]
+CVE-2026-43406 (In the Linux kernel, the following vulnerability has been resolved: l ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/69fb5d91bba44ecf7eb80530b85fa4fb028921d5 (7.0-rc4)
-CVE-2026-43405 [libceph: Use u32 for non-negative values in ceph_monmap_decode()]
+CVE-2026-43405 (In the Linux kernel, the following vulnerability has been resolved: l ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/770444611f047dbfd4517ec0bc1b179d40c2f346 (7.0-rc4)
-CVE-2026-43400 [drm/amdgpu: add upper bound check on user inputs in signal ioctl]
+CVE-2026-43400 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.10-1
NOTE: https://git.kernel.org/linus/ea78f8c68f4f6211c557df49174c54d167821962 (7.0-rc2)
-CVE-2026-43398 [drm/amdgpu: add upper bound check on user inputs in wait ioctl]
+CVE-2026-43398 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.10-1
NOTE: https://git.kernel.org/linus/64ac7c09fc44985ec9bb6a9db740899fa40ca613 (7.0-rc2)
-CVE-2026-43391 [nsfs: tighten permission checks for handle opening]
+CVE-2026-43391 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/d2324a9317f00013facb0ba00b00440e19d2af5e (7.0-rc3)
-CVE-2026-43387 [staging: rtl8723bs: properly validate the data in rtw_get_ie_ex()]
+CVE-2026-43387 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/f0109b9d3e1e455429279d602f6276e34689750a (7.0-rc4)
-CVE-2026-43386 [staging: rtl8723bs: fix potential out-of-bounds read in rtw_restruct_wmm_ie]
+CVE-2026-43386 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/a75281626fc8fa6dc6c9cc314ee423e8bc45203b (7.0-rc4)
-CVE-2026-43383 [net/tcp-md5: Fix MAC comparison to be constant-time]
+CVE-2026-43383 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/46d0d6f50dab706637f4c18a470aac20a21900d3 (7.0-rc3)
-CVE-2026-43382 [batman-adv: Avoid double-rtnl_lock ELP metric worker]
+CVE-2026-43382 (In the Linux kernel, the following vulnerability has been resolved: b ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/cfc83a3c71517b59c1047db57da31e26a9dc2f33 (7.0-rc3)
-CVE-2026-43381 [nouveau/dpcd: return EBUSY for aux xfer if the device is asleep]
+CVE-2026-43381 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/8f3c6f08ababad2e3bdd239728cf66a9949446b4 (7.0-rc3)
-CVE-2026-43378 [smb: server: fix use-after-free in smb2_open()]
+CVE-2026-43378 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/1e689a56173827669a35da7cb2a3c78ed5c53680 (7.0-rc4)
-CVE-2026-43373 [net: ncsi: fix skb leak in error paths]
+CVE-2026-43373 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/5c3398a54266541610c8d0a7082e654e9ff3e259 (7.0-rc4)
-CVE-2026-43370 [drm/amdgpu: Fix use-after-free race in VM acquire]
+CVE-2026-43370 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/2c1030f2e84885cc58bffef6af67d5b9d2e7098f (7.0-rc3)
-CVE-2026-43363 [x86/apic: Disable x2apic on resume if the kernel expects so]
+CVE-2026-43363 (In the Linux kernel, the following vulnerability has been resolved: x ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/8cc7dd77a1466f0ec58c03478b2e735a5b289b96 (7.0-rc4)
-CVE-2026-43362 [smb: client: fix in-place encryption corruption in SMB2_write()]
+CVE-2026-43362 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/d78840a6a38d312dc1a51a65317bb67e46f0b929 (7.0-rc4)
-CVE-2026-43361 [btrfs: fix transaction abort when snapshotting received subvolumes]
+CVE-2026-43361 (In the Linux kernel, the following vulnerability has been resolved: b ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/e1b18b959025e6b5dbad668f391f65d34b39595a (7.0-rc4)
-CVE-2026-43359 [btrfs: fix transaction abort on set received ioctl due to item overflow]
+CVE-2026-43359 (In the Linux kernel, the following vulnerability has been resolved: b ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/87f2c46003fce4d739138aab4af1942b1afdadac (7.0-rc4)
-CVE-2026-43357 [iio: gyro: mpu3050-core: fix pm_runtime error handling]
+CVE-2026-43357 (In the Linux kernel, the following vulnerability has been resolved: i ...)
- linux 6.19.10-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/acc3949aab3e8094641a9c7c2768de1958c88378 (7.0-rc4)
-CVE-2026-43355 [iio: light: bh1780: fix PM runtime leak on error path]
+CVE-2026-43355 (In the Linux kernel, the following vulnerability has been resolved: i ...)
- linux 6.19.10-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/dd72e6c3cdea05cad24e99710939086f7a113fb5 (7.0-rc4)
-CVE-2026-43353 [i3c: mipi-i3c-hci: Fix race in DMA ring dequeue]
+CVE-2026-43353 (In the Linux kernel, the following vulnerability has been resolved: i ...)
- linux 6.19.10-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/1dca8aee80eea76d2aae21265de5dd64f6ba0f09 (7.0-rc4)
-CVE-2026-43352 [i3c: mipi-i3c-hci: Correct RING_CTRL_ABORT handling in DMA dequeue]
+CVE-2026-43352 (In the Linux kernel, the following vulnerability has been resolved: i ...)
- linux 6.19.10-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/b795e68bf3073d67bebbb5a44d93f49efc5b8cc7 (7.0-rc4)
-CVE-2026-43348 [mshv_vtl: Fix vmemmap_shift exceeding MAX_FOLIO_ORDER]
+CVE-2026-43348 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 7.0.3-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/404cd6bffe17e25e0f94ed2775ffdd6cd10ac3fd (7.1-rc1)
-CVE-2026-43349 [f2fs: fix to avoid uninit-value access in f2fs_sanity_check_node_footer]
+CVE-2026-43349 (In the Linux kernel, the following vulnerability has been resolved: f ...)
- linux 7.0.3-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/7b9161a605e91d0987e2596a245dc1f21621b23f (7.1-rc1)
-CVE-2026-43350 [smb: client: require a full NFS mode SID before reading mode bits]
+CVE-2026-43350 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 7.0.3-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/2757ad3e4b6f9e0fed4c7739594e702abc5cab21 (7.1-rc1)
-CVE-2026-43347 [arm64: dts: qcom: monaco: Reserve full Gunyah metadata region]
+CVE-2026-43347 (In the Linux kernel, the following vulnerability has been resolved: a ...)
- linux 6.19.14-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/85d98669fa7f1d3041d962515e45ee6e392db6f8 (7.0)
-CVE-2026-43345 [net: ipa: fix event ring index not programmed for IPA v5.0+]
+CVE-2026-43345 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.14-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/56007972c0b1e783ca714d6f1f4d6e66e531d21f (7.0)
-CVE-2026-43346 [ice: ptp: don't WARN when controlling PF is unavailable]
+CVE-2026-43346 (In the Linux kernel, the following vulnerability has been resolved: i ...)
- linux 6.19.14-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/bb3f21edc7056cdf44a7f7bd7ba65af40741838c (7.0)
-CVE-2026-43344 [perf/x86/intel/uncore: Fix die ID init and look up bugs]
+CVE-2026-43344 (In the Linux kernel, the following vulnerability has been resolved: p ...)
- linux 6.19.14-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/a16d1ec4dd0cdcf689f324adde6067083bce9099 (7.0)
-CVE-2026-43341 [net/ipv6: ioam6: prevent schema length wraparound in trace fill]
+CVE-2026-43341 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.12-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/5e67ba9bb531e1ec6599a82a065dea9040b9ce50 (7.0-rc7)
-CVE-2026-43343 [usb: gadget: f_subset: Fix unbalanced refcnt in geth_free]
+CVE-2026-43343 (In the Linux kernel, the following vulnerability has been resolved: u ...)
- linux 6.19.12-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/caa27923aacd8a5869207842f2ab1657c6c0c7bc (7.0-rc7)
-CVE-2026-43342 [usb: gadget: f_rndis: Protect RNDIS options with mutex]
+CVE-2026-43342 (In the Linux kernel, the following vulnerability has been resolved: u ...)
- linux 6.19.12-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/8d8c68b1fc06ece60cf43e1306ff0f4ac121547e (7.0-rc7)
-CVE-2026-43340 [comedi: Reinit dev->spinlock between attachments to low-level drivers]
+CVE-2026-43340 (In the Linux kernel, the following vulnerability has been resolved: c ...)
- linux 6.19.12-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/4b9a9a6d71e3e252032f959fb3895a33acb5865c (7.0-rc7)
-CVE-2026-43335 [interconnect: qcom: sm8450: Fix NULL pointer dereference in icc_link_nodes()]
+CVE-2026-43335 (In the Linux kernel, the following vulnerability has been resolved: i ...)
- linux 6.19.12-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/dbbd550d7c8d90d3af9fe8a12a9caff077ddb8e3 (7.0-rc7)
-CVE-2026-43333 [bpf: reject direct access to nullable PTR_TO_BUF pointers]
+CVE-2026-43333 (In the Linux kernel, the following vulnerability has been resolved: b ...)
- linux 6.19.12-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/b0db1accbc7395657c2b79db59fa9fae0d6656f3 (7.0-rc7)
-CVE-2026-43332 [thermal: core: Fix thermal zone device registration error path]
+CVE-2026-43332 (In the Linux kernel, the following vulnerability has been resolved: t ...)
- linux 6.19.12-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/9e07e3b81807edd356e1f794cffa00a428eff443 (7.0-rc7)
-CVE-2026-43330 [crypto: caam - fix overflow on long hmac keys]
+CVE-2026-43330 (In the Linux kernel, the following vulnerability has been resolved: c ...)
- linux 6.19.12-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/80688afb9c35b3934ce2d6be9973758915e2e0ef (7.0-rc7)
-CVE-2026-43324 [USB: dummy-hcd: Fix interrupt synchronization error]
+CVE-2026-43324 (In the Linux kernel, the following vulnerability has been resolved: U ...)
- linux 6.19.12-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/2ca9e46f8f1f5a297eb0ac83f79d35d5b3a02541 (7.0-rc7)
-CVE-2026-43323 [sched/fair: Fix zero_vruntime tracking fix]
+CVE-2026-43323 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 6.19.12-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/1319ea57529e131822bab56bf417c8edc2db9ae8 (7.0-rc7)
-CVE-2026-43322 [Bluetooth: hci_sync: Fix UAF in le_read_features_complete]
+CVE-2026-43322 (In the Linux kernel, the following vulnerability has been resolved: B ...)
- linux 6.19.12-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/035c25007c9e698bef3826070ee34bb6d778020c (7.0-rc7)
-CVE-2026-43339 [ipv6: prevent possible UaF in addrconf_permanent_addr()]
+CVE-2026-43339 (In the Linux kernel, the following vulnerability has been resolved: i ...)
- linux 6.19.12-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/fd63f185979b047fb22a0dfc6bd94d0cab6a6a70 (7.0-rc7)
-CVE-2026-43338 [btrfs: reserve enough transaction items for qgroup ioctls]
+CVE-2026-43338 (In the Linux kernel, the following vulnerability has been resolved: b ...)
- linux 6.19.12-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/f9a4e3015db1aeafbef407650eb8555445ca943e (7.0-rc5)
-CVE-2026-43337 [drm/amd/display: Fix NULL pointer dereference in dcn401_init_hw()]
+CVE-2026-43337 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.12-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/e927b36ae18b66b49219eaa9f46edc7b4fdbb25e (7.0-rc7)
-CVE-2026-43336 [lib/crypto: chacha: Zeroize permuted_state before it leaves scope]
+CVE-2026-43336 (In the Linux kernel, the following vulnerability has been resolved: l ...)
- linux 6.19.12-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/e5046823f8fa3677341b541a25af2fcb99a5b1e0 (7.0-rc7)
-CVE-2026-43334 [Bluetooth: SMP: force responder MITM requirements before building the pairing response]
+CVE-2026-43334 (In the Linux kernel, the following vulnerability has been resolved: B ...)
- linux 6.19.12-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/d05111bfe37bfd8bd4d2dfe6675d6bdeef43f7c7 (7.0-rc7)
-CVE-2026-43331 [x86/kexec: Disable KCOV instrumentation after load_segments()]
+CVE-2026-43331 (In the Linux kernel, the following vulnerability has been resolved: x ...)
- linux 6.19.12-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/917e3ad3321e75ca0223d5ccf26ceda116aa51e1 (7.0-rc7)
-CVE-2026-43329 [netfilter: flowtable: strictly check for maximum number of actions]
+CVE-2026-43329 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.12-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/76522fcdbc3a02b568f5d957f7e66fc194abb893 (7.0-rc7)
-CVE-2026-43328 [cpufreq: governor: fix double free in cpufreq_dbs_governor_init() error path]
+CVE-2026-43328 (In the Linux kernel, the following vulnerability has been resolved: c ...)
- linux 6.19.12-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/6dcf9d0064ce2f3e3dfe5755f98b93abe6a98e1e (7.0-rc7)
-CVE-2026-43327 [USB: dummy-hcd: Fix locking/synchronization error]
+CVE-2026-43327 (In the Linux kernel, the following vulnerability has been resolved: U ...)
- linux 6.19.12-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/616a63ff495df12863692ab3f9f7b84e3fa7a66d (7.0-rc7)
-CVE-2026-43326 [sched_ext: Fix SCX_KICK_WAIT deadlock by deferring wait to balance callback]
+CVE-2026-43326 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 6.19.12-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/415cb193bb9736f0e830286c72a6fa8eb2a9cc5c (7.0-rc7)
-CVE-2026-43325 [wifi: iwlwifi: mvm: don't send a 6E related command when not supported]
+CVE-2026-43325 (In the Linux kernel, the following vulnerability has been resolved: w ...)
- linux 6.19.12-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/323156c3541e23da7e582008a7ac30cd51b60acd (7.0-rc7)
-CVE-2026-43315 [KVM: nSVM: Remove a user-triggerable WARN on nested_svm_load_cr3() succeeding]
+CVE-2026-43315 (In the Linux kernel, the following vulnerability has been resolved: K ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/fc3ba56385d03501eb582e4b86691ba378e556f9 (7.0-rc1)
-CVE-2026-43312 [media: i2c: ov5647: Initialize subdev before controls]
+CVE-2026-43312 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/eee13cbccacb6d0a3120c126b8544030905b069d (7.0-rc1)
-CVE-2026-43307 [iio: accel: adxl380: Avoid reading more entries than present in FIFO]
+CVE-2026-43307 (In the Linux kernel, the following vulnerability has been resolved: i ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/c1b14015224cfcccd5356333763f2f4f401bd810 (7.0-rc1)
-CVE-2026-43297 [media: rockchip: rga: Fix possible ERR_PTR dereference in rga_buf_init()]
+CVE-2026-43297 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/81f8e0e6a2e115df9274d0289779f8fca694479c (7.0-rc1)
-CVE-2026-43293 [media: chips-media: wave5: Fix kthread worker destruction in polling mode]
+CVE-2026-43293 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/5a0c122e834b2f7f029526422c71be922960bf03 (7.0-rc1)
-CVE-2026-43291 [net: nfc: nci: Fix parameter validation for packet data]
+CVE-2026-43291 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/571dcbeb8e635182bb825ae758399831805693c2 (7.0-rc1)
-CVE-2026-43290 [media: uvcvideo: Return queued buffers on start_streaming() failure]
+CVE-2026-43290 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/4cf3b6fd54ebb1ebc977bdc47fb6cfcf9a471a22 (7.0-rc1)
-CVE-2026-43286 [mm/hugetlb: restore failed global reservations to subpool]
+CVE-2026-43286 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/1d3f9bb4c8af70304d19c22e30f5d16a2d589bb5 (7.0-rc1)
-CVE-2026-43285 [mm/slab: do not access current->mems_allowed_seq if !allow_spin]
+CVE-2026-43285 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/144080a5823b2dbd635acb6decf7ab23182664f3 (7.0-rc1)
-CVE-2025-71301 [drm/tests: shmem: Hold reservation lock around vmap/vunmap]
+CVE-2025-71301 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/cda83b099f117f2a28a77bf467af934cb39e49cf (7.0-rc1)
-CVE-2025-71300 [Revert "arm64: zynqmp: Add an OP-TEE node to the device tree"]
+CVE-2025-71300 (In the Linux kernel, the following vulnerability has been resolved: R ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/c197179990124f991fca220d97fac56779a02c6d (7.0-rc1)
-CVE-2025-71298 [drm/tests: shmem: Hold reservation lock around madvise]
+CVE-2025-71298 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/607d07d8cc0b835a8701259f08a03dc149b79b4f (7.0-rc1)
-CVE-2025-71296 [drm/tests: shmem: Hold reservation lock around purge]
+CVE-2025-71296 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.6-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/3f41307d589c2f25d556d47b165df808124cd0c4 (7.0-rc1)
-CVE-2026-43321 [bpf: Properly mark live registers for indirect jumps]
+CVE-2026-43321 (In the Linux kernel, the following vulnerability has been resolved: b ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/d1aab1ca576c90192ba961094d51b0be6355a4d6 (7.0-rc1)
-CVE-2026-43320 [drm/amd/display: Fix dsc eDP issue]
+CVE-2026-43320 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/878a4b73c11111ff5f820730f59a7f8c6fd59374 (7.0-rc1)
-CVE-2026-43319 [spi: spidev: fix lock inversion between spi_lock and buf_lock]
+CVE-2026-43319 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/40534d19ed2afb880ecf202dab26a8e7a5808d16 (7.0-rc1)
-CVE-2026-43318 [drm/amdgpu: fix sync handling in amdgpu_dma_buf_move_notify]
+CVE-2026-43318 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/b18fc0ab837381c1a6ef28386602cd888f2d9edf (7.0-rc1)
-CVE-2026-43317 [most: core: fix leak on early registration failure]
+CVE-2026-43317 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/2c198c272f9c9213b0fdf6b4a879f445c574f416 (7.0-rc1)
-CVE-2026-43316 [media: solo6x10: Check for out of bounds chip_id]
+CVE-2026-43316 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/0fdf6323c35a134f206dcad5babb4ff488552076 (7.0-rc1)
-CVE-2026-43314 [dm: remove fake timeout to avoid leak request]
+CVE-2026-43314 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/f3a9c95a15d2f4466acad5c68faeff79ca5e9f47 (7.0-rc1)
-CVE-2026-43313 [ACPI: processor: Fix NULL-pointer dereference in acpi_processor_errata_piix4()]
+CVE-2026-43313 (In the Linux kernel, the following vulnerability has been resolved: A ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/f132e089fe89cadc2098991f0a3cb05c3f824ac6 (7.0-rc1)
-CVE-2026-43311 [soc/tegra: pmc: Fix unsafe generic_handle_irq() call]
+CVE-2026-43311 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/e6d96073af681780820c94079b978474a8a44413 (7.0-rc1)
-CVE-2026-43310 [media: verisilicon: Avoid G2 bus error while decoding H.264 and HEVC]
+CVE-2026-43310 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/e0203ddf9af7c8e170e1e99ce83b4dc07f0cd765 (7.0-rc1)
-CVE-2026-43309 [md raid: fix hang when stopping arrays with metadata through dm-raid]
+CVE-2026-43309 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/cefcb9297fbdb6d94b61787b4f8d84f55b741470 (7.0-rc1)
-CVE-2026-43308 [btrfs: don't BUG() on unexpected delayed ref type in run_one_delayed_ref()]
+CVE-2026-43308 (In the Linux kernel, the following vulnerability has been resolved: b ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/c7d1d4ff56744074e005771aff193b927392d51f (7.0-rc1)
-CVE-2026-43306 [bpf: crypto: Use the correct destructor kfunc type]
+CVE-2026-43306 (In the Linux kernel, the following vulnerability has been resolved: b ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/b40a5d724f29fc2eed23ff353808a9aae616b48a (7.0-rc1)
-CVE-2026-43305 [drm/amd/display: Fix mismatched unlock for DMUB HW lock in HWSS fast path]
+CVE-2026-43305 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/af3303970da5ce5bfe6dffdd07f38f42aad603e0 (7.0-rc1)
-CVE-2026-43304 [libceph: define and enforce CEPH_MAX_KEY_LEN]
+CVE-2026-43304 (In the Linux kernel, the following vulnerability has been resolved: l ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/ac431d597a9bdfc2ba6b314813f29a6ef2b4a3bf (7.0-rc1)
-CVE-2026-43303 [mm/page_alloc: clear page->private in free_pages_prepare()]
+CVE-2026-43303 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/ac1ea219590c09572ed5992dc233bbf7bb70fef9 (7.0-rc1)
-CVE-2026-43302 [drm/v3d: Set DMA segment size to avoid debug warnings]
+CVE-2026-43302 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/9eb018828b1b30dfba689c060735c50fc5b9f704 (7.0-rc1)
-CVE-2026-43301 [media: chips-media: wave5: Fix PM runtime usage count underflow]
+CVE-2026-43301 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/9cf4452e824c1e2d41c9c0b13cc8a32a0a7dec38 (7.0-rc1)
-CVE-2026-43300 [drm/panel: Fix a possible null-pointer dereference in jdi_panel_dsi_remove()]
+CVE-2026-43300 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/95eed73b871111123a8b1d31cb1fce7e902e49ea (7.0-rc1)
-CVE-2026-43299 [btrfs: do not ASSERT() when the fs flips RO inside btrfs_repair_io_failure()]
+CVE-2026-43299 (In the Linux kernel, the following vulnerability has been resolved: b ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/8ceaad6cd6e7fa5f73b0b2796a2e85d75d37e9f3 (7.0-rc1)
-CVE-2026-43298 [drm/amdgpu: Skip vcn poison irq release on VF]
+CVE-2026-43298 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/8980be03b3f9a4b58197ef95d3b37efa41a25331 (7.0-rc1)
-CVE-2026-43296 [octeontx2-af: Workaround SQM/PSE stalls by disabling sticky]
+CVE-2026-43296 (In the Linux kernel, the following vulnerability has been resolved: o ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/70e9a5760abfb6338d63994d4de6b0778ec795d6 (7.0-rc1)
-CVE-2026-43295 [rapidio: replace rio_free_net() with kfree() in rio_scan_alloc_net()]
+CVE-2026-43295 (In the Linux kernel, the following vulnerability has been resolved: r ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/666183dcdd9ad3b8156a1df7f204f728f720380f (7.0-rc1)
-CVE-2026-43294 [drm: renesas: rz-du: mipi_dsi: fix kernel panic when rebooting for some panels]
+CVE-2026-43294 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/64aa8b3a60a825134f7d866adf05c024bbe0c24c (7.0-rc1)
-CVE-2026-43292 [mm/vmalloc: prevent RCU stalls in kasan_release_vmalloc_node]
+CVE-2026-43292 (In the Linux kernel, the following vulnerability has been resolved: m ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/5747435e0fd474c24530ef1a6822f47e7d264b27 (7.0-rc1)
-CVE-2026-43289 [kexec: derive purgatory entry from symbol]
+CVE-2026-43289 (In the Linux kernel, the following vulnerability has been resolved: k ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/480e1d5c64bb14441f79f2eb9421d5e26f91ea3d (7.0-rc1)
-CVE-2026-43288 [ext4: move ext4_percpu_param_init() before ext4_mb_init()]
+CVE-2026-43288 (In the Linux kernel, the following vulnerability has been resolved: e ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/270564513489d98b721a1e4a10017978d5213bff (7.0-rc1)
-CVE-2026-43287 [drm: Account property blob allocations to memcg]
+CVE-2026-43287 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/26b4309a3ab82a0697751cde52eb336c29c19035 (7.0-rc1)
-CVE-2025-71302 [drm/panthor: fix for dma-fence safe access rules]
+CVE-2025-71302 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/efe24898485c5c831e629d9c6fb9350c35cb576f (7.0-rc1)
-CVE-2025-71299 [spi: cadence-quadspi: Parse DT for flashes with the rest of the DT parsing]
+CVE-2025-71299 (In the Linux kernel, the following vulnerability has been resolved: s ...)
- linux 6.19.6-1
NOTE: https://git.kernel.org/linus/9f0736a4e136a6eb61e0cf530ddc18ab6d816ba3 (7.0-rc1)
-CVE-2025-71297 [wifi: rtw88: 8822b: Avoid WARNING in rtw8822b_config_trx_mode()]
+CVE-2025-71297 (In the Linux kernel, the following vulnerability has been resolved: w ...)
- linux 6.19.6-1
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/44d1f624bbdd2d60319374ba85f7195a28d00c90 (7.0-rc1)
-CVE-2013-10075
+CVE-2013-10075 (Apache::Session versions through 1.94 for Perl re-creates deleted sess ...)
- libapache-session-perl <unfixed>
NOTE: https://lists.security.metacpan.org/cve-announce/msg/39844719/
CVE-2026-43500 [rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present]
+ {DSA-6253-1 DLA-4572-1}
- linux 7.0.4-1
-CVE-2026-43284 [xfrm: esp: avoid in-place decrypt on shared skb frags]
+CVE-2026-43284 (In the Linux kernel, the following vulnerability has been resolved: x ...)
+ {DSA-6253-1 DLA-4572-1}
- linux 7.0.4-1
CVE-2026-7258
+ {DSA-6256-1 DSA-6255-1}
- php8.4 <unfixed>
- php8.2 <removed>
- php7.4 <removed>
@@ -1045,54 +1228,63 @@ CVE-2026-7258
NOTE: https://github.com/php/php-src/commit/398b7dabfbd2e8f4f4ed2065dbcf3e3794e8ca47
NOTE: https://github.com/php/php-src/commit/a38418777f65780d9d622197677e90567690fc07
CVE-2026-7568
+ {DSA-6256-1 DSA-6255-1}
- php8.4 <unfixed>
- php8.2 <removed>
- php7.4 <removed>
NOTE: https://github.com/php/php-src/security/advisories/GHSA-96wq-48vp-hh57
NOTE: https://github.com/php/php-src/commit/47def8ce1db1fdbffcfc1f5bb11877a0e22d4b32
CVE-2026-7262
+ {DSA-6256-1 DSA-6255-1}
- php8.4 <unfixed>
- php8.2 <removed>
- php7.4 <removed>
NOTE: https://github.com/php/php-src/security/advisories/GHSA-hmxp-6pc4-f3vv
NOTE: https://github.com/php/php-src/commit/79551ab8b1a97760c739e372f9bc359619f3554d
CVE-2026-7261
+ {DSA-6256-1 DSA-6255-1}
- php8.4 <unfixed>
- php8.2 <removed>
- php7.4 <removed>
NOTE: https://github.com/php/php-src/commit/db2a7f9348fd5dda5fd162061786a664c417bf5b
NOTE: https://github.com/php/php-src/security/advisories/GHSA-m33r-qmcv-p97q
CVE-2026-6722
+ {DSA-6256-1 DSA-6255-1}
- php8.4 <unfixed>
- php8.2 <removed>
- php7.4 <removed>
NOTE: https://github.com/php/php-src/security/advisories/GHSA-85c2-q967-79q5
NOTE: https://github.com/php/php-src/commit/aee3b3ac9b816b0def1c462695b483b49a83148e
CVE-2025-14179
+ {DSA-6256-1 DSA-6255-1}
- php8.4 <unfixed>
- php8.2 <removed>
- php7.4 <removed>
NOTE: https://github.com/php/php-src/security/advisories/GHSA-w476-322c-wpvm
NOTE: https://github.com/php/php-src/commit/3f40b65323dd1b85e9bab6878237d3867e449d5c
CVE-2026-6104
+ {DSA-6256-1}
- php8.4 <unfixed>
- php8.2 <not-affected> (Only affects 8.4 and later)
- php7.4 <not-affected> (Only affects 8.4 and later)
NOTE: https://github.com/php/php-src/security/advisories/GHSA-74r9-qxhc-fx53
NOTE: https://github.com/php/php-src/commit/56ee76f82045ab728f3e63e20bf9530621e829cb
CVE-2026-7259
+ {DSA-6256-1 DSA-6255-1}
- php8.4 <unfixed>
- php8.2 <removed>
- php7.4 <removed>
NOTE: https://github.com/php/php-src/security/advisories/GHSA-wm6j-2649-pv75
NOTE: https://github.com/php/php-src/commit/79a054eae016c56409432e69aebc8ca908a88838
CVE-2026-6735
+ {DSA-6256-1 DSA-6255-1}
- php8.4 <unfixed>
- php8.2 <removed>
- php7.4 <removed>
NOTE: https://github.com/php/php-src/security/advisories/GHSA-7qg2-v9fj-4mwv
NOTE: https://github.com/php/php-src/commit/99a5ad7441de9914246c7863adb6997396008b9d
CVE-2026-7263
+ {DSA-6256-1}
- php8.4 <unfixed>
- php8.2 <not-affected> (Only affects 8.4 and later)
- php7.4 <not-affected> (Only affects 8.4 and later)
@@ -1449,18 +1641,20 @@ CVE-2023-42344 (Alkacon OpenCms before 10.5.1 allows remote unauthenticated atta
CVE-2023-42343 (A Cross Site Scripting vulnerability in Alkacon OpenCms before 10.5.1 ...)
NOT-FOR-US: Alkacon OpenCms
CVE-2026-8094 (Other issue in the WebRTC component. This vulnerability was fixed in F ...)
+ {DSA-6254-1}
- firefox-esr 140.10.2esr-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-41/#CVE-2026-8094
-CVE-2026-8093 (Memory safety bugs present in Firefox 150.0.1. Some of these bugs show ...)
+CVE-2026-8093 (Memory safety bugs present in Thunderbird 150.0.1. Some of these bugs ...)
- firefox 150.0.2-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-40/#CVE-2026-8093
-CVE-2026-8092 (Memory safety bugs present in Firefox ESR 115.35.1, Firefox ESR 140.10 ...)
+CVE-2026-8092 (Memory safety bugs present in Thunderbird ESR 140.10.1 and Thunderbird ...)
+ {DSA-6254-1}
- firefox 150.0.2-1
- firefox-esr 140.10.2esr-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-40/#CVE-2026-8092
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-41/#CVE-2026-8092
CVE-2026-8091 (Incorrect boundary conditions in the Audio/Video: Playback component. ...)
- {DSA-6242-1 DSA-6236-1}
+ {DSA-6242-1 DSA-6236-1 DLA-4562-1 DLA-4555-1}
- firefox 150.0-1
- firefox-esr 140.10.1esr-1
- thunderbird 1:140.10.1esr-1
@@ -1468,6 +1662,7 @@ CVE-2026-8091 (Incorrect boundary conditions in the Audio/Video: Playback compon
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-36/#CVE-2026-8091
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-39/#CVE-2026-8091
CVE-2026-8090 (Use-after-free in the DOM: Networking component. This vulnerability wa ...)
+ {DSA-6254-1}
- firefox 150.0.2-1
- firefox-esr 140.10.2esr-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-40/#CVE-2026-8090
@@ -1516,6 +1711,7 @@ CVE-2026-5786 (An Improper Access Control vulnerability in Ivanti EPMM before ve
CVE-2026-5784 (Improper neutralization of input during web page generation ('cross-si ...)
NOT-FOR-US: DivvyDrive
CVE-2026-44742 (Postorius through 1.3.13 does not escape HTML in the message subject w ...)
+ {DSA-6257-1}
- postorius <unfixed> (bug #1136003)
NOTE: https://gitlab.com/mailman/postorius/-/commit/c4706abd05ba6bcf472fc674b160d3a9d6a4868b
NOTE: https://gitlab.com/mailman/postorius/-/merge_requests/972
@@ -2426,7 +2622,8 @@ CVE-2026-7841 (A remote code execution vulnerability exists in Notification Sett
NOT-FOR-US: GeoVision GV-ASWeb
CVE-2026-7457 (The LatePoint plugin for WordPress is vulnerable to Stored Cross-Site ...)
NOT-FOR-US: WordPress plugin
-CVE-2026-7448 (The LatePoint \u2013 Calendar Booking Plugin for Appointments and Even ...)
+CVE-2026-7448
+ REJECTED
NOT-FOR-US: WordPress plugin
CVE-2026-7332 (The LatePoint \u2013 Calendar Booking Plugin for Appointments and Even ...)
NOT-FOR-US: WordPress plugin
@@ -4464,37 +4661,37 @@ CVE-2026-35228 (Vulnerability in the Oracle MCP Server Helper Tool product of Or
CVE-2026-34882
REJECTED
CVE-2026-34059 (Buffer Over-read vulnerability in Apache HTTP Server. This issue affe ...)
- {DSA-6248-1}
+ {DSA-6248-1 DLA-4571-1}
- apache2 2.4.67-1 (bug #1135737)
NOTE: https://www.openwall.com/lists/oss-security/2026/05/04/17
NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2026-34059
NOTE: https://github.com/apache/httpd/commit/a3d32288317a87b1398825f2167e0ae083ed43da (2.4.67-rc1-candidate)
CVE-2026-34032 (Improper Null Termination, Out-of-bounds Read vulnerability in Apache ...)
- {DSA-6248-1}
+ {DSA-6248-1 DLA-4571-1}
- apache2 2.4.67-1 (bug #1135737)
NOTE: https://www.openwall.com/lists/oss-security/2026/05/04/16
NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2026-34032
NOTE: https://github.com/apache/httpd/commit/b8def8fe323f7f67d0e03bb83c67d66bd8d7fcb2 (2.4.67-rc1-candidate)
CVE-2026-33857 (Out-of-bounds Read vulnerability in mod_proxy_ajp of Apache HTTP Ser ...)
- {DSA-6248-1}
+ {DSA-6248-1 DLA-4571-1}
- apache2 2.4.67-1 (bug #1135737)
NOTE: https://www.openwall.com/lists/oss-security/2026/05/04/15
NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2026-33857
NOTE: https://github.com/apache/httpd/commit/493eb23e5cc18c3a7be53977c182ff5d1360c64c (2.4.67-rc1-candidate)
CVE-2026-33523 (HTTP response splitting vulnerability in multiple Apache HTTP Server m ...)
- {DSA-6248-1}
+ {DSA-6248-1 DLA-4571-1}
- apache2 2.4.67-1 (bug #1135737)
NOTE: https://www.openwall.com/lists/oss-security/2026/05/04/23
NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2026-33523
NOTE: https://github.com/apache/httpd/commit/0218d4b9c1c0706df4bd7a3e3b15f71d4b66126a (2.4.67-rc1-candidate)
CVE-2026-33007 (A NULL pointer dereference in the mod_authn_socache in Apache HTTP Ser ...)
- {DSA-6248-1}
+ {DSA-6248-1 DLA-4571-1}
- apache2 2.4.67-1 (bug #1135737)
NOTE: https://www.openwall.com/lists/oss-security/2026/05/04/22
NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2026-33007
NOTE: https://github.com/apache/httpd/commit/d80685a9e0241d99e94aa2fc0aa491d90c4ae9e8 (2.4.67-rc1-candidate)
CVE-2026-33006 (A timing attack against mod_auth_digest in Apache HTTP Server 2.4.66 a ...)
- {DSA-6248-1}
+ {DSA-6248-1 DLA-4571-1}
- apache2 2.4.67-1 (bug #1135737)
NOTE: https://www.openwall.com/lists/oss-security/2026/05/04/21
NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2026-33006
@@ -4514,7 +4711,7 @@ CVE-2026-2729 (The Forminator plugin for WordPress is vulnerable to authorizatio
CVE-2026-29514 (NetBox versions 4.3.5 through 4.5.4 contain a remote code execution vu ...)
- netbox <itp> (bug #1017079)
CVE-2026-29169 (A NULL pointer dereference in mod_dav_lock in Apache HTTP Server 2.4.6 ...)
- {DSA-6248-1}
+ {DSA-6248-1 DLA-4571-1}
- apache2 2.4.67-1 (bug #1135737)
NOTE: http://www.openwall.com/lists/oss-security/2026/05/04/20
NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2026-29169
@@ -4542,7 +4739,7 @@ CVE-2026-24118 (vm2 is an open source vm/sandbox for Node.js. Prior to version 3
CVE-2026-24082 (Memory Corruption when copying data from a freed source while executin ...)
NOT-FOR-US: Qualcomm
CVE-2026-24072 (An escalation of privilege bug in various modules in Apache HTTP 2.4.6 ...)
- {DSA-6248-1}
+ {DSA-6248-1 DLA-4571-1}
- apache2 2.4.67-1 (bug #1135737)
NOTE: https://www.openwall.com/lists/oss-security/2026/05/04/18
NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2026-24072
@@ -5971,6 +6168,7 @@ CVE-2026-31716 (In the Linux kernel, the following vulnerability has been resolv
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/0ca0485e4b2e837ebb6cbd4f2451aba665a03e4b (7.1-rc1)
CVE-2026-31715 (In the Linux kernel, the following vulnerability has been resolved: f ...)
+ {DSA-6253-1}
- linux 7.0.3-1
NOTE: https://git.kernel.org/linus/2d9c4a4ed4eef1f82c5b16b037aee8bad819fd53 (7.1-rc1)
CVE-2026-31714 (In the Linux kernel, the following vulnerability has been resolved: f ...)
@@ -5996,6 +6194,7 @@ CVE-2026-31711 (In the Linux kernel, the following vulnerability has been resolv
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/6551300dc452ac16a855a83dbd1e74899542d3b3 (7.1-rc1)
CVE-2026-31709 (In the Linux kernel, the following vulnerability has been resolved: s ...)
+ {DSA-6253-1}
- linux 7.0.3-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/0a8cf165566ba55a39fd0f4de172119dd646d39a (7.1-rc1)
@@ -15629,6 +15828,7 @@ CVE-2026-31420 (In the Linux kernel, the following vulnerability has been resolv
- linux 6.19.12-1
NOTE: https://git.kernel.org/linus/fa6e24963342de4370e3a3c9af41e38277b74cf3 (7.0-rc7)
CVE-2026-31419 (In the Linux kernel, the following vulnerability has been resolved: n ...)
+ {DSA-6253-1}
- linux 6.19.12-1
NOTE: https://git.kernel.org/linus/2884bf72fb8f03409e423397319205de48adca16 (7.0-rc7)
CVE-2026-31418 (In the Linux kernel, the following vulnerability has been resolved: n ...)
@@ -16041,7 +16241,7 @@ CVE-2026-40198 (Net::CIDR::Lite versions before 0.23 for Perl does not validate
NOTE: https://lists.security.metacpan.org/cve-announce/msg/38785616/
NOTE: Fixed by: https://github.com/stigtsp/Net-CIDR-Lite/commit/25d65f85dbe4885959a10471725ec9d250a589c3 (0.23)
NOTE: Tests: https://github.com/stigtsp/Net-CIDR-Lite/commit/380562e04f66026ba3859f76b3c8ae0489cbc750 (0.23)
-CVE-2026-40194 (phpseclib is a PHP secure communications library. Prior to 3.0.51, 2.0 ...)
+CVE-2026-40194 (phpseclib is a PHP secure communications library. Starting in 0.1.1 an ...)
- php-phpseclib3 3.0.51-1
[trixie] - php-phpseclib3 <no-dsa> (Minor issue)
[bookworm] - php-phpseclib3 <no-dsa> (Minor issue)
@@ -20914,6 +21114,7 @@ CVE-2026-23469 (In the Linux kernel, the following vulnerability has been resolv
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/2d7f05cddf4c268cc36256a2476946041dbdd36d (7.0-rc5)
CVE-2026-23468 (In the Linux kernel, the following vulnerability has been resolved: d ...)
+ {DSA-6253-1}
- linux 6.19.10-1
NOTE: https://git.kernel.org/linus/6270b1a5dab94665d7adce3dc78bc9066ed28bdd (7.0-rc5)
CVE-2026-23466 (In the Linux kernel, the following vulnerability has been resolved: d ...)
@@ -113347,6 +113548,7 @@ CVE-2025-38585 (In the Linux kernel, the following vulnerability has been resolv
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/ee4cf798202d285dcbe85e4467a094c44f5ed8e6 (6.17-rc1)
CVE-2025-38584 (In the Linux kernel, the following vulnerability has been resolved: p ...)
+ {DSA-6253-1}
- linux 6.16.3-1
NOTE: https://git.kernel.org/linus/71203f68c7749609d7fc8ae6ad054bdedeb24f91 (6.17-rc1)
CVE-2025-38583 (In the Linux kernel, the following vulnerability has been resolved: c ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8ed24e464c4e548d75e7aa3a256c59b8d2373fae
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8ed24e464c4e548d75e7aa3a256c59b8d2373fae
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260508/f2842c62/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list