[Git][security-tracker-team/security-tracker][master] bugnums

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8a4157b4 by Moritz Muehlenhoff at 2026-05-10T20:59:36+02:00
bugnums

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -14951,31 +14951,31 @@ CVE-2026-33193 (Docmost is open-source collaborative wiki and documentation soft
 CVE-2026-33146 (Docmost is open-source collaborative wiki and documentation software.  ...)
 	NOT-FOR-US: Docmost
 CVE-2026-33023 (libsixel is a SIXEL encoder/decoder implementation derived from kmiya' ...)
-	- libsixel <unfixed>
+	- libsixel <unfixed> (bug #1136211)
 	[trixie] - libsixel <no-dsa> (Minor issue)
 	[bookworm] - libsixel <no-dsa> (Minor issue)
 	[bullseye] - libsixel <postponed> (Minor issue)
 	NOTE: https://github.com/saitoha/libsixel/security/advisories/GHSA-hr25-g2j6-qjw6
 CVE-2026-33021 (libsixel is a SIXEL encoder/decoder implementation derived from kmiya' ...)
-	- libsixel <unfixed>
+	- libsixel <unfixed> (bug #1136211)
 	[trixie] - libsixel <no-dsa> (Minor issue)
 	[bookworm] - libsixel <no-dsa> (Minor issue)
 	[bullseye] - libsixel <postponed> (Minor issue)
 	NOTE: https://github.com/saitoha/libsixel/security/advisories/GHSA-j6m5-2cc7-3whc
 CVE-2026-33020 (libsixel is a SIXEL encoder/decoder implementation derived from kmiya' ...)
-	- libsixel <unfixed>
+	- libsixel <unfixed> (bug #1136211)
 	[trixie] - libsixel <no-dsa> (Minor issue)
 	[bookworm] - libsixel <no-dsa> (Minor issue)
 	[bullseye] - libsixel <postponed> (Minor issue)
 	NOTE: https://github.com/saitoha/libsixel/security/advisories/GHSA-2xgm-4x47-2x2p
 CVE-2026-33019 (libsixel is a SIXEL encoder/decoder implementation derived from kmiya' ...)
-	- libsixel <unfixed>
+	- libsixel <unfixed> (bug #1136211)
 	[trixie] - libsixel <no-dsa> (Minor issue)
 	[bookworm] - libsixel <no-dsa> (Minor issue)
 	[bullseye] - libsixel <postponed> (Minor issue)
 	NOTE: https://github.com/saitoha/libsixel/security/advisories/GHSA-c854-ffg9-g72c
 CVE-2026-33018 (libsixel is a SIXEL encoder/decoder implementation derived from kmiya' ...)
-	- libsixel <unfixed>
+	- libsixel <unfixed> (bug #1136211)
 	[trixie] - libsixel <no-dsa> (Minor issue)
 	[bookworm] - libsixel <no-dsa> (Minor issue)
 	[bullseye] - libsixel <postponed> (Minor issue)
@@ -15589,7 +15589,7 @@ CVE-2025-7389 (A vulnerability in the AdminServer component of OpenEdge on all s
 CVE-2025-70023 (An issue pertaining to CWE-843: Access of Resource Using Incompatible  ...)
 	NOT-FOR-US: transloadit uppy
 CVE-2025-69993 (Leaflet versions up to and including 1.9.4 are vulnerable to Cross-Sit ...)
-	- leaflet <unfixed>
+	- leaflet <unfixed> (bug #1136210)
 	[trixie] - leaflet <no-dsa> (Minor issue)
 	[bookworm] - leaflet <no-dsa> (Minor issue)
 	[bullseye] - leaflet <postponed> (Minor issue)
@@ -55598,7 +55598,7 @@ CVE-2025-15367 (The poplib module, when passed a user-controlled command, can ha
 	[bullseye] - pypy3 <postponed> (Minor issue)
 	- python2.7 <removed>
 	[bullseye] - python2.7 <end-of-life> (EOL in bullseye LTS)
-	- jython <unfixed>
+	- jython <unfixed> (bug #1136209)
 	[trixie] - jython <no-dsa> (Minor issue)
 	[bookworm] - jython <no-dsa> (Minor issue)
 	[bullseye] - jython <end-of-life> (EOL in bullseye LTS)
@@ -55621,7 +55621,7 @@ CVE-2025-15366 (The imaplib module, when passed a user-controlled command, can h
 	[bullseye] - pypy3 <postponed> (Minor issue)
 	- python2.7 <removed>
 	[bullseye] - python2.7 <end-of-life> (EOL in bullseye LTS)
-	- jython <unfixed>
+	- jython <unfixed> (bug #1136208)
 	[trixie] - jython <no-dsa> (Minor issue)
 	[bookworm] - jython <no-dsa> (Minor issue)
 	[bullseye] - jython <end-of-life> (EOL in bullseye LTS)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8a4157b4568870c6374fbaadf6e0f80663524c18

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8a4157b4568870c6374fbaadf6e0f80663524c18
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260510/c3f66ab3/attachment-0001.htm>