[Git][security-tracker-team/security-tracker][master] Add tracking bug for php8.4 as update was in DSA but not yet in unstable

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri May 8 20:48:08 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3d2abb4b by Salvatore Bonaccorso at 2026-05-08T21:47:32+02:00
Add tracking bug for php8.4 as update was in DSA but not yet in unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1225,7 +1225,7 @@ CVE-2026-43284 (In the Linux kernel, the following vulnerability has been resolv
 	- linux 7.0.4-1
 CVE-2026-7258
 	{DSA-6256-1 DSA-6255-1}
-	- php8.4 <unfixed>
+	- php8.4 <unfixed> (bug #1136054)
 	- php8.2 <removed>
 	- php7.4 <removed>
 	NOTE: https://github.com/php/php-src/security/advisories/GHSA-m8rr-4c36-8gq4
@@ -1235,63 +1235,63 @@ CVE-2026-7258
 	NOTE: https://github.com/php/php-src/commit/a38418777f65780d9d622197677e90567690fc07
 CVE-2026-7568
 	{DSA-6256-1 DSA-6255-1}
-	- php8.4 <unfixed>
+	- php8.4 <unfixed> (bug #1136054)
 	- php8.2 <removed>
 	- php7.4 <removed>
 	NOTE: https://github.com/php/php-src/security/advisories/GHSA-96wq-48vp-hh57
 	NOTE: https://github.com/php/php-src/commit/47def8ce1db1fdbffcfc1f5bb11877a0e22d4b32
 CVE-2026-7262
 	{DSA-6256-1 DSA-6255-1}
-	- php8.4 <unfixed>
+	- php8.4 <unfixed> (bug #1136054)
 	- php8.2 <removed>
 	- php7.4 <removed>
 	NOTE: https://github.com/php/php-src/security/advisories/GHSA-hmxp-6pc4-f3vv
 	NOTE: https://github.com/php/php-src/commit/79551ab8b1a97760c739e372f9bc359619f3554d
 CVE-2026-7261
 	{DSA-6256-1 DSA-6255-1}
-	- php8.4 <unfixed>
+	- php8.4 <unfixed> (bug #1136054)
 	- php8.2 <removed>
 	- php7.4 <removed>
 	NOTE: https://github.com/php/php-src/commit/db2a7f9348fd5dda5fd162061786a664c417bf5b
 	NOTE: https://github.com/php/php-src/security/advisories/GHSA-m33r-qmcv-p97q
 CVE-2026-6722
 	{DSA-6256-1 DSA-6255-1}
-	- php8.4 <unfixed>
+	- php8.4 <unfixed> (bug #1136054)
 	- php8.2 <removed>
 	- php7.4 <removed>
 	NOTE: https://github.com/php/php-src/security/advisories/GHSA-85c2-q967-79q5
 	NOTE: https://github.com/php/php-src/commit/aee3b3ac9b816b0def1c462695b483b49a83148e
 CVE-2025-14179
 	{DSA-6256-1 DSA-6255-1}
-	- php8.4 <unfixed>
+	- php8.4 <unfixed> (bug #1136054)
 	- php8.2 <removed>
 	- php7.4 <removed>
 	NOTE: https://github.com/php/php-src/security/advisories/GHSA-w476-322c-wpvm
 	NOTE: https://github.com/php/php-src/commit/3f40b65323dd1b85e9bab6878237d3867e449d5c
 CVE-2026-6104
 	{DSA-6256-1}
-	- php8.4 <unfixed>
+	- php8.4 <unfixed> (bug #1136054)
 	- php8.2 <not-affected> (Only affects 8.4 and later)
 	- php7.4 <not-affected> (Only affects 8.4 and later)
 	NOTE: https://github.com/php/php-src/security/advisories/GHSA-74r9-qxhc-fx53
 	NOTE: https://github.com/php/php-src/commit/56ee76f82045ab728f3e63e20bf9530621e829cb
 CVE-2026-7259
 	{DSA-6256-1 DSA-6255-1}
-	- php8.4 <unfixed>
+	- php8.4 <unfixed> (bug #1136054)
 	- php8.2 <removed>
 	- php7.4 <removed>
 	NOTE: https://github.com/php/php-src/security/advisories/GHSA-wm6j-2649-pv75
 	NOTE: https://github.com/php/php-src/commit/79a054eae016c56409432e69aebc8ca908a88838
 CVE-2026-6735
 	{DSA-6256-1 DSA-6255-1}
-	- php8.4 <unfixed>
+	- php8.4 <unfixed> (bug #1136054)
 	- php8.2 <removed>
 	- php7.4 <removed>
 	NOTE: https://github.com/php/php-src/security/advisories/GHSA-7qg2-v9fj-4mwv
 	NOTE: https://github.com/php/php-src/commit/99a5ad7441de9914246c7863adb6997396008b9d
 CVE-2026-7263
 	{DSA-6256-1}
-	- php8.4 <unfixed>
+	- php8.4 <unfixed> (bug #1136054)
 	- php8.2 <not-affected> (Only affects 8.4 and later)
 	- php7.4 <not-affected> (Only affects 8.4 and later)
 	NOTE: https://github.com/php/php-src/security/advisories/GHSA-4jhr-8w89-j733



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3d2abb4b31dff1e81b34cd41a877dd600186a9ae

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3d2abb4b31dff1e81b34cd41a877dd600186a9ae
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260508/6abfad93/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list