[Git][security-tracker-team/security-tracker][master] Add CVE-2026-44919/ironic
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu May 14 10:38:16 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
99f92ae3 by Salvatore Bonaccorso at 2026-05-14T11:37:56+02:00
Add CVE-2026-44919/ironic
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -124,7 +124,9 @@ CVE-2026-45033 (GitHub Copilot CLI brings AI-powered coding assistance directly
CVE-2026-45028 (Astro is a web framework. Astro versions prior to 6.1.10 used AES-GCM ...)
NOT-FOR-US: Astro
CVE-2026-44919 (In OpenStack Ironic through 35.x before a3f6d73, during image handling ...)
- TODO: check
+ - ironic <unfixed>
+ NOTE: https://bugs.launchpad.net/ironic/+bug/2150332
+ NOTE: https://opendev.org/openstack/ironic/commit/a3f6d735ac3642ab95b49142c7305f072ae748d0
CVE-2026-44665 (fast-xml-builder builds XML from JSON. Prior to 1.1.7, when an input d ...)
NOT-FOR-US: fast-xml-builder
CVE-2026-44664 (fast-xml-builder builds XML from JSON. In 1.1.5, the fix for CVE-2026- ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/99f92ae3ecf49f0439d1cb13243875683aa2f4dd
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/99f92ae3ecf49f0439d1cb13243875683aa2f4dd
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260514/7fe6955b/attachment.htm>
More information about the debian-security-tracker-commits
mailing list