[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for commons-configuration2 issue
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu May 14 23:14:04 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
07d46b3d by Salvatore Bonaccorso at 2026-05-14T23:42:14+02:00
Add Debian bug reference for commons-configuration2 issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -301,7 +301,7 @@ CVE-2026-45375 (SiYuan is an open-source personal knowledge management system. P
CVE-2026-45371 (SiYuan is an open-source personal knowledge management system. Prior t ...)
NOT-FOR-US: SiYuan
CVE-2026-45205 (Uncontrolled Recursion vulnerability in Apache Commons. When processi ...)
- - commons-configuration2 <unfixed>
+ - commons-configuration2 <unfixed> (bug #1136705)
- commons-configuration <not-affected> (Vulnerable code not present)
NOTE: https://www.openwall.com/lists/oss-security/2026/05/14/5
NOTE: https://github.com/apache/commons-configuration/pull/634
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/07d46b3df67e1f7057b1a809ff1372197075a5ea
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/07d46b3df67e1f7057b1a809ff1372197075a5ea
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260514/219fab60/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list