[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon May 11 20:13:35 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9487e527 by security tracker role at 2026-05-11T19:13:29+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,26 +1,336 @@
+CVE-2026-8318 (A security flaw has been discovered in VectifyAI PageIndex up to f50e5 ...)
+ TODO: check
+CVE-2026-8305 (A vulnerability was detected in OpenClaw up to 2026.1.24. The impacted ...)
+ TODO: check
+CVE-2026-8292 (A security vulnerability has been detected in Open5GS up to 2.7.7. The ...)
+ TODO: check
+CVE-2026-8291 (A weakness has been identified in Open5GS up to 2.7.7. Impacted is the ...)
+ TODO: check
+CVE-2026-8290 (A security flaw has been discovered in Open5GS up to 2.7.7. This issue ...)
+ TODO: check
+CVE-2026-8289 (A vulnerability was identified in Open5GS up to 2.7.7. This vulnerabil ...)
+ TODO: check
+CVE-2026-8288 (A vulnerability was determined in Open5GS up to 2.7.7. This affects th ...)
+ TODO: check
+CVE-2026-7820 (Improper restriction of excessive authentication attempts (CWE-307) in ...)
+ TODO: check
+CVE-2026-7819 (Symbolic-link path traversal (CWE-61, CWE-22) in pgAdmin 4 File Manage ...)
+ TODO: check
+CVE-2026-7818 (Deserialization of untrusted data (CWE-502) in pgAdmin 4 FileBackedSes ...)
+ TODO: check
+CVE-2026-7817 (Local file inclusion (LFI) and server-side request forgery (SSRF) vuln ...)
+ TODO: check
+CVE-2026-7816 (OS command injection (CWE-78) vulnerability in pgAdmin 4 Import/Export ...)
+ TODO: check
+CVE-2026-7815 (SQL injection vulnerability in pgAdmin 4 Maintenance Tool. Four user- ...)
+ TODO: check
+CVE-2026-7814 (Stored cross-site scripting (XSS) vulnerability in pgAdmin 4 Browser T ...)
+ TODO: check
+CVE-2026-7813 (Authorization vulnerability in pgAdmin 4 server mode affecting Server ...)
+ TODO: check
+CVE-2026-7790 (Uncontrolled Resource Consumption vulnerability in ninenines cowlib (c ...)
+ TODO: check
+CVE-2026-7308 (An authenticated user with upload permission to a hosted repository ca ...)
+ TODO: check
+CVE-2026-7210 (`xml.parsers.expat` and `xml.etree.ElementTree` use insufficient entro ...)
+ TODO: check
+CVE-2026-6956 (ATutor is vulnerable to Reflected XSS in/install/install.php endpoint. ...)
+ TODO: check
+CVE-2026-6909 (ATutor is vulnerable to Reflected XSS in/install/upgrade.php endpoint. ...)
+ TODO: check
+CVE-2026-6815 (An arbitrary file write vulnerability exists in Casdoor's Local File S ...)
+ TODO: check
+CVE-2026-6093 (Corteza contains a SQL injection vulnerability in its Microsoft SQL Se ...)
+ TODO: check
+CVE-2026-4802 (A flaw was found in Cockpit. This vulnerability allows a remote attack ...)
+ TODO: check
+CVE-2026-45224 (Crabbox before 0.9.0 contains a path traversal vulnerability in the Is ...)
+ TODO: check
+CVE-2026-45223 (Crabbox before 0.9.0 contains an authentication bypass vulnerability i ...)
+ TODO: check
+CVE-2026-45222 (Summarize versions through 0.14.1, fixed in commit 0cfb0fb, creates th ...)
+ TODO: check
+CVE-2026-45006 (OpenClaw before 2026.4.23 contains an improper access control vulnerab ...)
+ TODO: check
+CVE-2026-45005 (OpenClaw before 2026.4.23 caches resolved webhook route secrets backed ...)
+ TODO: check
+CVE-2026-45004 (OpenClaw before 2026.4.23 contains an arbitrary code execution vulnera ...)
+ TODO: check
+CVE-2026-45003 (OpenClaw before 2026.4.22 allows workspace dotenv files to override co ...)
+ TODO: check
+CVE-2026-45002 (OpenClaw before 2026.4.20 contains a hook session-key bypass vulnerabi ...)
+ TODO: check
+CVE-2026-45001 (OpenClaw before 2026.4.20 contains a guard bypass vulnerability in the ...)
+ TODO: check
+CVE-2026-45000 (OpenClaw before 2026.4.20 contains a server-side request forgery vulne ...)
+ TODO: check
+CVE-2026-44999 (OpenClaw before 2026.4.20 fails to properly preserve untrusted labels ...)
+ TODO: check
+CVE-2026-44998 (OpenClaw before 2026.4.20 contains a tool policy bypass vulnerability ...)
+ TODO: check
+CVE-2026-44997 (OpenClaw before 2026.4.22 contains a security envelope constraint bypa ...)
+ TODO: check
+CVE-2026-44996 (OpenClaw before 2026.4.15 contains an arbitrary local file read vulner ...)
+ TODO: check
+CVE-2026-44995 (OpenClaw before 2026.4.20 contains an improper environment variable va ...)
+ TODO: check
+CVE-2026-44994 (OpenClaw before 2026.4.22 contains an authentication bypass vulnerabil ...)
+ TODO: check
+CVE-2026-44993 (OpenClaw before 2026.4.20 contains a message classification vulnerabil ...)
+ TODO: check
+CVE-2026-44992 (OpenClaw versions 2026.4.5 before 2026.4.20 contain an environment var ...)
+ TODO: check
+CVE-2026-44991 (OpenClaw before 2026.4.21 contains an authorization bypass vulnerabili ...)
+ TODO: check
+CVE-2026-44777 (jq is a command-line JSON processor. In 1.8.2rc1 and earlier, the ordi ...)
+ TODO: check
+CVE-2026-44738 (Grav is a file-based Web platform. Prior to 2.0.0-rc.2, the Twig sandb ...)
+ TODO: check
+CVE-2026-44737 (grav-plugin-admin is the admin plugin for Grav is an HTML user interfa ...)
+ TODO: check
+CVE-2026-44659 (Zen is a firefox-based browser. Prior to 1.19.12b, the ZEN Browser inc ...)
+ TODO: check
+CVE-2026-44658 (Zen is a firefox-based browser. Prior to 1.19.12b, RSS feed URLs enter ...)
+ TODO: check
+CVE-2026-44643 (Angular Expressions provides expressions for the Angular.JS web framew ...)
+ TODO: check
+CVE-2026-44413 (In JetBrains TeamCity before 2026.1 2025.11.5 authenticated users coul ...)
+ TODO: check
+CVE-2026-44226 (pyLoad is a free and open-source download manager written in Python. P ...)
+ TODO: check
+CVE-2026-44201 (Wagtail is an open source content management system built on Django. P ...)
+ TODO: check
+CVE-2026-44200 (Wagtail is an open source content management system built on Django. P ...)
+ TODO: check
+CVE-2026-44199 (Wagtail is an open source content management system built on Django. P ...)
+ TODO: check
+CVE-2026-44198 (Wagtail is an open source content management system built on Django. P ...)
+ TODO: check
+CVE-2026-44197 (Wagtail is an open source content management system built on Django. P ...)
+ TODO: check
+CVE-2026-43995 (Flowise is a drag & drop user interface to build a customized large la ...)
+ TODO: check
+CVE-2026-43969 (Improper Neutralization of CRLF Sequences ('CRLF Injection') vulnerabi ...)
+ TODO: check
+CVE-2026-43968 (Improper Neutralization of CRLF Sequences ('CRLF Injection') vulnerabi ...)
+ TODO: check
+CVE-2026-43896 (jq is a command-line JSON processor. In 1.8.1 and earlier, unbounded r ...)
+ TODO: check
+CVE-2026-43895 (jq is a command-line JSON processor. In 1.8.1 and earlier, jq accepts ...)
+ TODO: check
+CVE-2026-43894 (jq is a command-line JSON processor. In 1.8.1 and earlier, when decNum ...)
+ TODO: check
+CVE-2026-43826 (The OpenSearch logging provider, when configured with a `host` URL tha ...)
+ TODO: check
+CVE-2026-43640 (Bitwarden Server prior to v2026.4.1 does not require master-password r ...)
+ TODO: check
+CVE-2026-43639 (Bitwarden Server prior to v2026.4.0 contains a missing authorization v ...)
+ TODO: check
+CVE-2026-43638 (Bitwarden Server prior to v2026.4.1 contains a missing authorization v ...)
+ TODO: check
+CVE-2026-42871 (WeGIA is a web manager for charitable institutions. In versions prior ...)
+ TODO: check
+CVE-2026-42866 (Tookie is a advanced OSINT information gathering tool. Prior to 4.1fix ...)
+ TODO: check
+CVE-2026-42865 (Inbox Zero is an AI personal assistant for email. Prior to 2.29.3, the ...)
+ TODO: check
+CVE-2026-42864 (FireFighter is an incident management application. Prior to 0.0.54, th ...)
+ TODO: check
+CVE-2026-42860 (The Open edx Enterprise Service app provides enterprise features to th ...)
+ TODO: check
+CVE-2026-42859 (Neat VNC is a VNC server library. Prior to 0.9.6, a pre-authentication ...)
+ TODO: check
+CVE-2026-42858 (Open edX Platform enables the authoring and delivery of online learnin ...)
+ TODO: check
+CVE-2026-42857 (Open edX Platform enables the authoring and delivery of online learnin ...)
+ TODO: check
+CVE-2026-42856 (Network-AI is a TypeScript/Node.js multi-agent orchestrator. Prior to ...)
+ TODO: check
+CVE-2026-42845 (The form plugin for Grav adds the ability to create and use forms. Pri ...)
+ TODO: check
+CVE-2026-42843 (Grav API Plugin is a RESTful API for Grav CMS that provides full headl ...)
+ TODO: check
+CVE-2026-42842 (The form plugin for Grav adds the ability to create and use forms. Pri ...)
+ TODO: check
+CVE-2026-42841 (Grav is a file-based Web platform. Prior to 2.0.0-beta.2, an authentic ...)
+ TODO: check
+CVE-2026-42613 (Grav is a file-based Web platform. Prior to 2.0.0-beta.2, the Login::r ...)
+ TODO: check
+CVE-2026-42612 (Grav is a file-based Web platform. Prior to 2.0.0-beta.2, a stored Cro ...)
+ TODO: check
+CVE-2026-42611 (Grav is a file-based Web platform. Prior to 2.0.0-beta.2, a low-privil ...)
+ TODO: check
+CVE-2026-42610 (Grav is a file-based Web platform. Prior to 2.0.0-beta.2, a low-privil ...)
+ TODO: check
+CVE-2026-42609 (Grav is a file-based Web platform. Prior to 2.0.0-beta.2, a business l ...)
+ TODO: check
+CVE-2026-42608 (Grav is a file-based Web platform. Prior to 2.0.0-beta.2, there is a P ...)
+ TODO: check
+CVE-2026-42607 (Grav is a file-based Web platform. Prior to 2.0.0-beta.2, an authentic ...)
+ TODO: check
+CVE-2026-42603 (OWASP BLT is a QA testing and vulnerability disclosure platform that e ...)
+ TODO: check
+CVE-2026-42349 (Clerk JavaScript is the official JavaScript repository for Clerk authe ...)
+ TODO: check
+CVE-2026-42316 (kafka-sink-azure-kusto Kafka Connect plugin is the official Microsoft ...)
+ TODO: check
+CVE-2026-42315 (pyLoad is a free and open-source download manager written in Python. P ...)
+ TODO: check
+CVE-2026-42314 (pyLoad is a free and open-source download manager written in Python. P ...)
+ TODO: check
+CVE-2026-42313 (pyLoad is a free and open-source download manager written in Python. P ...)
+ TODO: check
+CVE-2026-42312 (pyLoad is a free and open-source download manager written in Python. P ...)
+ TODO: check
+CVE-2026-41951 (Path traversal vulnerability exists in GROWI v7.5.0 and earlier, which ...)
+ TODO: check
+CVE-2026-41431 (Zen is a firefox-based browser. Prior to 1.19.9b, Zen Browser ships a ...)
+ TODO: check
+CVE-2026-41257 (jq is a command-line JSON processor. In 1.8.1 and earlier, the jq byte ...)
+ TODO: check
+CVE-2026-41256 (jq is a command-line JSON processor. In 1.8.1 and earlier, Top-level j ...)
+ TODO: check
+CVE-2026-41250 (Taiga is a project management platform for startups and agile develope ...)
+ TODO: check
+CVE-2026-41018 (The Elasticsearch logging provider, when configured with a `host` URL ...)
+ TODO: check
+CVE-2026-40636 (Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale version ...)
+ TODO: check
+CVE-2026-40612 (jq is a command-line JSON processor. In 1.8.1 and earlier, jv_contains ...)
+ TODO: check
+CVE-2026-3609 (Wellbia's XIGNCODE3 xhunter1.sys kernel driver Privilege Escalation Vu ...)
+ TODO: check
+CVE-2026-3320 (Reflected Cross-Site Scripting (XSS) in the latest demo version of the ...)
+ TODO: check
+CVE-2026-3319 (Reflected Cross-Site Scripting (XSS) in the latest demo version of the ...)
+ TODO: check
+CVE-2026-3048 (An authenticated administrator who configures or tests LDAP connectivi ...)
+ TODO: check
+CVE-2026-38569 (HireFlow v1.2 is vulnerable to Cross Site Scripting (XSS) in candidate ...)
+ TODO: check
+CVE-2026-38568 (HireFlow v1.2 is vulnerable to Incorrect Access Control. The applicati ...)
+ TODO: check
+CVE-2026-38567 (HireFlow v1.2 is vulnerable to SQL injection in the /login and /search ...)
+ TODO: check
+CVE-2026-38566 (HireFlow v1.2 does not implement CSRF token validation on any state-ch ...)
+ TODO: check
+CVE-2026-36983 (D-Link DCS-932L v2.18.01 is vulnerable to Command Injection in the fun ...)
+ TODO: check
+CVE-2026-36962 (SQL Injection in MuuCMF T6 v1.9.4.20260115 allows an unauthenticated a ...)
+ TODO: check
+CVE-2026-36906 (Cross Site Scripting vulnerability in iotgateway v.3.0.1 allows a remo ...)
+ TODO: check
+CVE-2026-35157 (Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale version ...)
+ TODO: check
+CVE-2026-33362 (In Meari IoT SDK builds embedded in CloudEdge 5.5.0 (build 220), Arent ...)
+ TODO: check
+CVE-2026-33361 (In Meari IoT SDK image handling (libmrplayer.so) as observed in CloudE ...)
+ TODO: check
+CVE-2026-33359 (In Meari IoT Cloud alert image storage on Alibaba OSS (latest observed ...)
+ TODO: check
+CVE-2026-33357 (In Meari client applications embedding "com.meari.sdk" (including Clou ...)
+ TODO: check
+CVE-2026-33356 (In Meari IoT Cloud MQTT Broker deployments running EMQX 4.x, any authe ...)
+ TODO: check
+CVE-2026-32658 (Dell Automation Platform versions prior to 2.0.0.0, contains a missing ...)
+ TODO: check
+CVE-2026-31254 (The flash-attention project thru commit e724e2588cbe754beb97cf7c011b5e ...)
+ TODO: check
+CVE-2026-31253 (The flash-attention training framework thru commit e724e2588cbe754beb9 ...)
+ TODO: check
+CVE-2026-31252 (CosyVoice thru commit 6e01309e01bc93bbeb83bdd996b1182a81aaf11e (2025-3 ...)
+ TODO: check
+CVE-2026-31251 (CosyVoice thru commit 6e01309e01bc93bbeb83bdd996b1182a81aaf11e (2025-3 ...)
+ TODO: check
+CVE-2026-31250 (CosyVoice thru commit 6e01309e01bc93bbeb83bdd996b1182a81aaf11e (2025-3 ...)
+ TODO: check
+CVE-2026-31249 (CosyVoice thru commit 6e01309e01bc93bbeb83bdd996b1182a81aaf11e (2025-3 ...)
+ TODO: check
+CVE-2026-31248 (Docling's METS GBS backend is vulnerable to XML Entity Expansion (XXE) ...)
+ TODO: check
+CVE-2026-31247 (Docling's JATS XML backend is vulnerable to XML Entity Expansion (XXE) ...)
+ TODO: check
+CVE-2026-31246 (GPT-Pilot thru commit 0819827ce20346ef5f25b3fe29293cb448840565 (2025-0 ...)
+ TODO: check
+CVE-2026-30635 (Command injection vulnerability in automagik-genie 2.5.27 MCP Server a ...)
+ TODO: check
+CVE-2026-2393 (A Server-Side Request Forgery (SSRF) vulnerability exists in MLflow ve ...)
+ TODO: check
+CVE-2026-26946 (Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale version ...)
+ TODO: check
+CVE-2025-9973 (Due to not validating the organization context when executing adaptive ...)
+ TODO: check
+CVE-2025-8325 (The software fails to enforce role-based access controls for certain G ...)
+ TODO: check
+CVE-2025-8154 (In Webhook API invocations, the component accepts user-supplied input ...)
+ TODO: check
+CVE-2025-65418 (docuFORM Managed Print Service Client 11.11c is vulnerable to a direct ...)
+ TODO: check
+CVE-2025-65417 (docuFORM Managed Print Service Client 11.11c is vulnerable to a reflec ...)
+ TODO: check
+CVE-2025-65416 (docuFORM Managed Print Service Client 11.11c is vulnerable to arbitrar ...)
+ TODO: check
+CVE-2025-65415 (docuFORM Managed Print Service Client 11.11c is vulnerable to a sessio ...)
+ TODO: check
+CVE-2025-63750
+ REJECTED
+CVE-2025-61314 (A reflected cross-site scripted (XSS) vulnerability in the dfm-menu_or ...)
+ TODO: check
+CVE-2025-61313 (A reflected cross-site scripted (XSS) vulnerability in the dfm-menu_ma ...)
+ TODO: check
+CVE-2025-61312 (A reflected cross-site scripted (XSS) vulnerability in the acc-menu_pr ...)
+ TODO: check
+CVE-2025-61311 (A reflected cross-site scripted (XSS) vulnerability in the dfm-menu_al ...)
+ TODO: check
+CVE-2025-61310 (A reflected cross-site scripted (XSS) vulnerability in the acc-menu_bi ...)
+ TODO: check
+CVE-2025-61309 (A reflected cross-site scripted (XSS) vulnerability in the dfm-menu_de ...)
+ TODO: check
+CVE-2025-61308 (A reflected cross-site scripted (XSS) vulnerability in the dfm-menu_ma ...)
+ TODO: check
+CVE-2025-61307 (A reflected cross-site scripted (XSS) vulnerability in the acc-menu_pa ...)
+ TODO: check
+CVE-2025-61306 (A reflected cross-site scripted (XSS) vulnerability in the dfm-menu_co ...)
+ TODO: check
+CVE-2025-61305 (A reflected cross-site scripted (XSS) vulnerability in the dfm-menu_fi ...)
+ TODO: check
+CVE-2025-43992 (Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale version ...)
+ TODO: check
+CVE-2025-10908 (Due to a lack of user account state validation during authentication, ...)
+ TODO: check
+CVE-2025-10470 (The Magic Link authentication flow accepts multiple invalid authentica ...)
+ TODO: check
+CVE-2024-0391 (The check user account lock states feature within the email OTP flow f ...)
+ TODO: check
CVE-2026-42304
- twisted 26.4.0-1
-CVE-2026-2291
+CVE-2026-2291 (dnsmasqs extract_name() function can be abused to cause a heap buffer ...)
+ {DSA-6264-1}
- dnsmasq <unfixed>
NOTE: https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2026q2/018471.html
NOTE: Fixed by: https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=014e909f787e808bb35daa546d3f8f3663918de2 (v2.93rc1)
-CVE-2026-4890
+CVE-2026-4890 (A Denial of Service (DoS) vulnerability in the DNSSEC validation of dn ...)
+ {DSA-6264-1}
- dnsmasq <unfixed>
NOTE: https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2026q2/018471.html
NOTE: Fixed by: https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=7b151eb60609a0139474918222806f9bcfb4fe71 (v2.93rc1)
-CVE-2026-4891
+CVE-2026-4891 (A heap-based out-of-bounds read vulnerability in the DNSSEC validation ...)
+ {DSA-6264-1}
- dnsmasq <unfixed>
NOTE: https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2026q2/018471.html
NOTE: Fixed by: https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=788b4e0f6c05217981b512bed4e5fea6f8855d01 (v2.93rc1)
-CVE-2026-4892
+CVE-2026-4892 (A heap-based out-of-bounds write vulnerability in the DHCPv6 implement ...)
+ {DSA-6264-1}
- dnsmasq <unfixed>
NOTE: https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2026q2/018471.html
NOTE: Fixed by: https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=10e6b5b83e80749cba7b090d7780b29f908f0571 (v2.93rc1)
-CVE-2026-4893
+CVE-2026-4893 (An information disclosure vulnerability in dnsmasq allows remote attac ...)
+ {DSA-6264-1}
- dnsmasq <unfixed>
NOTE: https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2026q2/018471.html
NOTE: Fixed by: https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=e3a26d092e47bf1d18aeadb758e4ca35c83b5f2d (v2.93rc1)
-CVE-2026-5172
+CVE-2026-5172 (A buffer overflow in dnsmasq\u2019s extract_addresses() function allow ...)
+ {DSA-6264-1}
- dnsmasq <unfixed>
NOTE: https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2026q2/018471.html
NOTE: Fixed by: https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=073082ddc0aba7b8efa15a688d6183463b65effa (v2.93rc1)
@@ -36,7 +346,7 @@ CVE-2026-XXXX [openpgp: Don't imply missing key flags from key type]
CVE-2026-XXXX [openpgp: Reject nested embedded signatures]
- rust-sequoia-openpgp <unfixed>
NOTE: Fixed by: https://gitlab.com/sequoia-pgp/sequoia/-/commit/23403ff850352b420f19a8fb4724ce35bf963e08 (openpgp/v2.3.0)
-CVE-2026-5084
+CVE-2026-5084 (WebDyne::Session versions through 2.075 for Perl generates the session ...)
NOT-FOR-US: WebDyne::Session Perl module
CVE-2026-8276 (A flaw has been found in bettercap up to 2.41.5. Affected by this issu ...)
- bettercap <unfixed>
@@ -1835,7 +2145,7 @@ CVE-2025-71297 (In the Linux kernel, the following vulnerability has been resolv
CVE-2013-10075 (Apache::Session versions through 1.94 for Perl re-creates deleted sess ...)
- libapache-session-perl <unfixed> (bug #1136206)
NOTE: https://lists.security.metacpan.org/cve-announce/msg/39844719/
-CVE-2026-43500 [rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present]
+CVE-2026-43500 (In the Linux kernel, the following vulnerability has been resolved: r ...)
{DSA-6258-1 DSA-6253-1 DLA-4574-1 DLA-4572-1}
- linux 7.0.4-1
NOTE: https://git.kernel.org/linus/aa54b1d27fe0c2b78e664a34fd0fdf7cd1960d71 (7.1-rc3)
@@ -22077,7 +22387,7 @@ CVE-2023-7343 (HiSecOS web server versions 05.0.00 to 08.3.01 prior to 08.3.02 c
NOT-FOR-US: HiSecOS web server
CVE-2022-4986 (Hirschmann EagleSDV version 05.4.01 prior to 05.4.02 contains a denial ...)
NOT-FOR-US: Hirschmann
-CVE-2026-5266
+CVE-2026-5266 (Exposure of Sensitive Information to an Unauthorized Actor vulnerabili ...)
- mediawiki 1:1.43.8+dfsg-1
[trixie] - mediawiki 1:1.43.8+dfsg-1~deb13u1
[bookworm] - mediawiki <not-affected> (Vulnerable code not present, Echo not yet bundled)
@@ -22086,19 +22396,19 @@ CVE-2026-5266
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/extensions/Echo/+/1265622 (REL1_43)
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/extensions/Echo/+/1265608 (master)
NOTE: https://lists.wikimedia.org/hyperkitty/list/wikitech-l@lists.wikimedia.org/thread/DIBLSBHISKX6NFRUFNOGZRVW42E7R2QP/
-CVE-2026-34095
+CVE-2026-34095 (Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability ...)
{DSA-6208-1}
- mediawiki 1:1.43.8+dfsg-2
NOTE: http://phabricator.wikimedia.org/T419192
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/core/+/1265669 (REL1_43)
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/core/+/1265642 (master)
NOTE: https://lists.wikimedia.org/hyperkitty/list/wikitech-l@lists.wikimedia.org/thread/DIBLSBHISKX6NFRUFNOGZRVW42E7R2QP/
-CVE-2026-34089
+CVE-2026-34089 (Vulnerability in Wikimedia Foundation Scribunto. This issue affects S ...)
- mediawiki <not-affected> (Vulnerable code not present, introduced past 1.43)
NOTE: https://phabricator.wikimedia.org/T419168
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/extensions/Scribunto/+/1265609 (master)
NOTE: https://lists.wikimedia.org/hyperkitty/list/wikitech-l@lists.wikimedia.org/thread/DIBLSBHISKX6NFRUFNOGZRVW42E7R2QP/
-CVE-2026-34094
+CVE-2026-34094 (Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability ...)
- mediawiki 1:1.43.8+dfsg-1
[trixie] - mediawiki 1:1.43.8+dfsg-1~deb13u1
[bookworm] - mediawiki <not-affected> (Vulnerable code not present)
@@ -22107,7 +22417,7 @@ CVE-2026-34094
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/core/+/1265668 (REL1_43)
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/core/+/1265641 (master)
NOTE: https://lists.wikimedia.org/hyperkitty/list/wikitech-l@lists.wikimedia.org/thread/DIBLSBHISKX6NFRUFNOGZRVW42E7R2QP/
-CVE-2026-34086
+CVE-2026-34086 (Vulnerability in Wikimedia Foundation AbuseFilter. This issue affects ...)
- mediawiki 1:1.43.8+dfsg-1
[trixie] - mediawiki 1:1.43.8+dfsg-1~deb13u1
[bookworm] - mediawiki <ignored> (Minor issue, too intrusive to backport)
@@ -22116,26 +22426,26 @@ CVE-2026-34086
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/extensions/AbuseFilter/+/1265634 (REL1_43)
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/extensions/AbuseFilter/+/1265611 (master)
NOTE: https://lists.wikimedia.org/hyperkitty/list/wikitech-l@lists.wikimedia.org/thread/DIBLSBHISKX6NFRUFNOGZRVW42E7R2QP/
-CVE-2026-34093
+CVE-2026-34093 (Exposure of Sensitive Information to an Unauthorized Actor vulnerabili ...)
{DSA-6208-1}
- mediawiki 1:1.43.8+dfsg-1
NOTE: https://phabricator.wikimedia.org/T414547
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/core/+/1265667 (REL1_43)
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/core/+/1265639 (master)
NOTE: https://lists.wikimedia.org/hyperkitty/list/wikitech-l@lists.wikimedia.org/thread/DIBLSBHISKX6NFRUFNOGZRVW42E7R2QP/
-CVE-2026-34087
+CVE-2026-34087 (Exposure of Sensitive Information to an Unauthorized Actor vulnerabili ...)
{DSA-6208-1}
- mediawiki 1:1.43.8+dfsg-1
NOTE: https://phabricator.wikimedia.org/T412061
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/extensions/OATHAuth/+/1265614 (REL1_43)
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/extensions/OATHAuth/+/1265610 (master)
NOTE: https://lists.wikimedia.org/hyperkitty/list/wikitech-l@lists.wikimedia.org/thread/DIBLSBHISKX6NFRUFNOGZRVW42E7R2QP/
-CVE-2026-34090
+CVE-2026-34090 (Exposure of Sensitive Information to an Unauthorized Actor vulnerabili ...)
- mediawiki <not-affected> (Vulnerable code not present, introduced past 1.43)
NOTE: https://phabricator.wikimedia.org/T411366
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/extensions/CheckUser/+/1240641 (master)
NOTE: https://lists.wikimedia.org/hyperkitty/list/wikitech-l@lists.wikimedia.org/thread/DIBLSBHISKX6NFRUFNOGZRVW42E7R2QP/
-CVE-2026-34091
+CVE-2026-34091 (Exposure of Sensitive Information to an Unauthorized Actor vulnerabili ...)
- mediawiki 1:1.43.8+dfsg-1
[trixie] - mediawiki 1:1.43.8+dfsg-1~deb13u1
[bookworm] - mediawiki <not-affected> (Introduced in 1.42)
@@ -22144,7 +22454,7 @@ CVE-2026-34091
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/core/+/1265651 (REL1_43)
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/core/+/1265637 (master)
NOTE: https://lists.wikimedia.org/hyperkitty/list/wikitech-l@lists.wikimedia.org/thread/DIBLSBHISKX6NFRUFNOGZRVW42E7R2QP/
-CVE-2026-34092
+CVE-2026-34092 (Exposure of Sensitive Information to an Unauthorized Actor vulnerabili ...)
{DSA-6208-1}
- mediawiki 1:1.43.8+dfsg-1
[bullseye] - mediawiki <not-affected> (Introduced in 1.39)
@@ -22152,7 +22462,7 @@ CVE-2026-34092
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/core/+/1265652 (REL1_43)
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/core/+/1265638 (master)
NOTE: https://lists.wikimedia.org/hyperkitty/list/wikitech-l@lists.wikimedia.org/thread/DIBLSBHISKX6NFRUFNOGZRVW42E7R2QP/
-CVE-2026-34088
+CVE-2026-34088 (Exposure of Sensitive Information to an Unauthorized Actor vulnerabili ...)
{DSA-6208-1}
- mediawiki 1:1.43.8+dfsg-1
NOTE: https://phabricator.wikimedia.org/T410429
@@ -32431,16 +32741,19 @@ CVE-2026-29513 (Hereta ETH-IMC408M firmware version 1.0.15 and prior contain a s
CVE-2026-29510 (Hereta ETH-IMC408M firmware version 1.0.15 and prior contain a stored ...)
NOT-FOR-US: Hereta
CVE-2026-28498 (Authlib is a Python library which builds OAuth and OpenID Connect serv ...)
+ {DLA-4579-1}
- python-authlib 1.6.9-1
NOTE: https://github.com/authlib/authlib/security/advisories/GHSA-m344-f55w-2m6j
NOTE: Fixed by: https://github.com/authlib/authlib/commit/b9bb2b25bf8b7e01512d847a95c1749646eaa72b (v1.6.9)
CVE-2026-28490 (Authlib is a Python library which builds OAuth and OpenID Connect serv ...)
+ {DLA-4579-1}
- python-authlib 1.6.9-1
NOTE: https://github.com/authlib/authlib/security/advisories/GHSA-7432-952r-cw78
NOTE: Fixed by: https://github.com/authlib/authlib/commit/48b345f29f6c459f11c6a40162b6c0b742ef2e22 (v1.6.9)
CVE-2026-28430 (Chamilo LMS is a learning management system. Prior to version 1.11.34, ...)
NOT-FOR-US: Chamilo LMS
CVE-2026-27962 (Authlib is a Python library which builds OAuth and OpenID Connect serv ...)
+ {DLA-4579-1}
- python-authlib 1.6.9-1
NOTE: https://github.com/authlib/authlib/security/advisories/GHSA-wvwj-cvrp-7pv5
NOTE: Fixed by: https://github.com/authlib/authlib/commit/a5d4b2d4c9e46bfa11c82f85fdc2bcc0b50ae681 (v1.6.9)
@@ -47350,7 +47663,7 @@ CVE-2026-0967 (A flaw was found in libssh. A remote attacker, by controlling cli
[bullseye] - libssh <postponed> (Minor issue)
NOTE: https://www.libssh.org/security/advisories/CVE-2026-0967.txt
NOTE: Fixed by: https://git.libssh.org/projects/libssh.git/commit/?id=6d74aa6138895b3662bade9bd578338b0c4f8a15 (libssh-0.11.4)
-CVE-2026-0966 (The API function `ssh_get_hexa()` is vulnerable, when 0-lenght input i ...)
+CVE-2026-0966 (A flaw was found in libssh. The API function `ssh_get_hexa()` is vulne ...)
- libssh 0.12.0-1 (bug #1127693)
[trixie] - libssh <no-dsa> (Minor issue)
[bookworm] - libssh <no-dsa> (Minor issue)
@@ -94003,6 +94316,7 @@ CVE-2025-11189 (The Kiwire Captive Portal contains a reflected cross-site script
CVE-2025-11188 (The Kiwire Captive Portal contains a blind SQL injection in the nas-id ...)
NOT-FOR-US: Kiwire Captive Portal
CVE-2025-11002 (7-Zip ZIP File Parsing Directory Traversal Remote Code Execution Vulne ...)
+ {DLA-4576-1}
- 7zip 25.00+dfsg-1
[trixie] - 7zip 25.01+dfsg-1~deb13u1
[bookworm] - 7zip <no-dsa> (Minor issue)
@@ -94013,6 +94327,7 @@ CVE-2025-11002 (7-Zip ZIP File Parsing Directory Traversal Remote Code Execution
NOTE: https://github.com/ip7z/7zip/releases/tag/25.00
NOTE: https://www.zerodayinitiative.com/advisories/ZDI-25-950/
CVE-2025-11001 (7-Zip ZIP File Parsing Directory Traversal Remote Code Execution Vulne ...)
+ {DLA-4576-1}
- 7zip 25.00+dfsg-1
[trixie] - 7zip 25.01+dfsg-1~deb13u1
[bookworm] - 7zip <no-dsa> (Minor issue)
@@ -117464,6 +117779,7 @@ CVE-2025-7020 (An incorrect encryption implementation vulnerability exists in th
CVE-2025-6573 (Kernel software installed and running inside an untrusted/rich executi ...)
NOT-FOR-US: Imagination Technologies
CVE-2025-55188 (7-Zip before 25.01 does not always properly handle symbolic links duri ...)
+ {DLA-4576-1}
- 7zip 25.01+dfsg-1 (bug #1111068)
[trixie] - 7zip 25.01+dfsg-1~deb13u1
[bookworm] - 7zip <no-dsa> (Minor issue)
@@ -123326,6 +123642,7 @@ CVE-2025-53909 (mailcow: dockerized is an open source groupware/email suite base
CVE-2025-53867 (Island Lake WebBatch before 2025C allows Remote Code Execution via a c ...)
NOT-FOR-US: Island Lake WebBatch
CVE-2025-53817 (7-Zip is a file archiver with a high compression ratio. 7-Zip supports ...)
+ {DLA-4576-1}
- 7zip 25.00+dfsg-1 (unimportant)
- p7zip 16.02+transitional.1 (unimportant)
NOTE: Crash in CLI tool, no security impact
@@ -123334,6 +123651,7 @@ CVE-2025-53817 (7-Zip is a file archiver with a high compression ratio. 7-Zip su
NOTE: Since p7zip/16.02+transitional.1 src:p7zip is only a empty source package
NOTE: depending on 7zip. Mark this version as fixed version.
CVE-2025-53816 (7-Zip is a file archiver with a high compression ratio. Zeroes written ...)
+ {DLA-4577-1}
- 7zip-rar 25.00+ds-1 (bug #1109494)
- p7zip-rar 16.02+transitional.1
[bookworm] - p7zip-rar <no-dsa> (Non-free not supported)
@@ -198528,6 +198846,7 @@ CVE-2024-11630 (A vulnerability has been found in E-Lins H685, H685f, H700, H720
CVE-2024-11619 (A vulnerability, which was classified as problematic, has been found i ...)
NOT-FOR-US: macrozheng mall
CVE-2024-11612 (7-Zip CopyCoder Infinite Loop Denial-of-Service Vulnerability. This vu ...)
+ {DLA-4576-1}
- 7zip 24.08+dfsg-1 (unimportant)
- p7zip 16.02+transitional.1 (unimportant)
NOTE: Crash in CLI tool, no security impact
@@ -236336,6 +236655,7 @@ CVE-2024-29506 (Artifex Ghostscript before 10.03.0 has a stack-based buffer over
NOTE: Introduced with: https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=316c3a08269212f1005709da64efcb383f8f5ce0 (ghostpdl-9.55.0rc1)
NOTE: Fixed by: https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=77dc7f699beba606937b7ea23b50cf5974fa64b1 (ghostpdl-10.03.0)
CVE-2023-52169 (The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 (for 7zz) conta ...)
+ {DLA-4576-1}
- 7zip 24.05+dfsg-1 (unimportant)
[bookworm] - 7zip 22.01+dfsg-8+deb12u1
NOTE: Crash in CLI tool, no security impact
@@ -236346,6 +236666,7 @@ CVE-2023-52169 (The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 (for 7zz)
NOTE: Since p7zip/16.02+transitional.1 src:p7zip is only a empty source package
NOTE: depending on 7zip. Mark this version as fixed version.
CVE-2023-52168 (The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 (for 7zz) conta ...)
+ {DLA-4576-1}
- 7zip 24.05+dfsg-1
[bookworm] - 7zip 22.01+dfsg-8+deb12u1
- p7zip 16.02+transitional.1
@@ -326105,6 +326426,7 @@ CVE-2022-48476 (In JetBrains Ktor before 2.3.0 path traversal in the `resolveRes
CVE-2023-31103 (Exposure of Resource to Wrong Sphere Vulnerability in Apache Software ...)
NOT-FOR-US: Apache InLong
CVE-2023-40481 (7-Zip SquashFS File Parsing Out-Of-Bounds Write Remote Code Execution ...)
+ {DLA-4576-1}
- 7zip 23.01+dfsg-1
[bookworm] - 7zip <no-dsa> (Minor issue; will be fixed via point release)
- p7zip 16.02+transitional.1
@@ -326113,6 +326435,7 @@ CVE-2023-40481 (7-Zip SquashFS File Parsing Out-Of-Bounds Write Remote Code Exec
NOTE: Since p7zip/16.02+transitional.1 src:p7zip is only a empty source package
NOTE: depending on 7zip. Mark this version as fixed version.
CVE-2023-31102 (Ppmd7.c in 7-Zip before 23.00 allows an integer underflow and invalid ...)
+ {DLA-4576-1}
- 7zip 23.01+dfsg-1
[bookworm] - 7zip <no-dsa> (Minor issue; will be fixed via point release)
- p7zip 16.02+transitional.1
@@ -358617,6 +358940,7 @@ CVE-2022-47071 (In NVS365 V01, the background network test function can trigger
CVE-2022-47070 (NVS365 V01 is vulnerable to Incorrect Access Control. After entering a ...)
NOT-FOR-US: NVS365 V01
CVE-2022-47069 (p7zip 16.02 was discovered to contain a heap-buffer-overflow vulnerabi ...)
+ {DLA-4576-1}
- p7zip 16.02+transitional.1 (unimportant)
NOTE: https://sourceforge.net/p/p7zip/bugs/241/
NOTE: Crash in CLI tool, no security impact
@@ -403002,6 +403326,7 @@ CVE-2022-32226 (An improper access control vulnerability exists in Rocket.Chat <
CVE-2022-32225 (A reflected DOM-Based XSS vulnerability has been discovered in the Hel ...)
NOT-FOR-US: Veeam
CVE-2022-32224 (A possible escalation to RCE vulnerability exists when using YAML seri ...)
+ {DLA-4578-1}
- rails 2:6.1.6.1+dfsg-1 (bug #1016140)
NOTE: https://github.com/advisories/GHSA-3hhc-qp5v-9p2j
NOTE: https://discuss.rubyonrails.org/t/cve-2022-32224-possible-rce-escalation-bug-with-serialized-columns-in-active-record/81017
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9487e527b7e2fe989f338b2e2cf1ee60e9b5e640
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9487e527b7e2fe989f338b2e2cf1ee60e9b5e640
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260511/76dd407a/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list