[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri May 15 08:13:02 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
6ba31170 by security tracker role at 2026-05-15T07:12:56+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,179 @@
+CVE-2026-8654 (Improper input validation in Delphix Continuous Data connectors allows ...)
+ TODO: check
+CVE-2026-8634 (Crabbox prior to v0.12.0 contains an environment variable exposure vul ...)
+ TODO: check
+CVE-2026-8629 (Crabbox prior to v0.12.0 contains a privilege escalation vulnerability ...)
+ TODO: check
+CVE-2026-8612 (WWW::Mechanize::Cached versions before 2.00 for Perl deserialize cache ...)
+ TODO: check
+CVE-2026-8597 (Missing integrity verification in the Triton inference handler in Amaz ...)
+ TODO: check
+CVE-2026-8596 (Cleartext storage of sensitive information in the ModelBuilder/Serve c ...)
+ TODO: check
+CVE-2026-7373 (Rapid7 Metasploit Pro is vulnerable to a local privilege escalation at ...)
+ TODO: check
+CVE-2026-6811 (Stack exhaustion vulnerability in the MongoDB PHP driver can cause app ...)
+ TODO: check
+CVE-2026-6646 (The The7 theme for WordPress is vulnerable to Stored Cross-Site Script ...)
+ TODO: check
+CVE-2026-4094 (The FOX \u2013 Currency Switcher Professional for WooCommerce plugin f ...)
+ TODO: check
+CVE-2026-46356 (Fleet is open source device management software. Prior to version 4.80 ...)
+ TODO: check
+CVE-2026-45781 (The MCP Registry provides MCP clients with a list of MCP servers, like ...)
+ TODO: check
+CVE-2026-45370 (python-utcp is the python implementation of UTCP. Prior to 1.1.3, _pre ...)
+ TODO: check
+CVE-2026-45369 (python-utcp is the python implementation of UTCP. Prior to 1.1.3, the ...)
+ TODO: check
+CVE-2026-45248 (Hedera Guardian through 3.5.1 contains an authentication bypass vulner ...)
+ TODO: check
+CVE-2026-44700 (Elixir WebRTC is an Elixir implementation of the W3C WebRTC API. Prior ...)
+ TODO: check
+CVE-2026-44679 (Tuist is a virtual platform team for Swift app devs. Prior to 1.180.10 ...)
+ TODO: check
+CVE-2026-44678 (Tuist is a virtual platform team for Swift app devs. In 1.180.8 and ea ...)
+ TODO: check
+CVE-2026-44673 (libyang is a YANG data modeling language library. Prior to SO 5.2.15, ...)
+ TODO: check
+CVE-2026-44671 (ZITADEL is an open source identity management platform. From 2.71.11 t ...)
+ TODO: check
+CVE-2026-44666 (HRConvert2 is a self-hosted, drag-and-drop & nosql file conversion ser ...)
+ TODO: check
+CVE-2026-44662 (rust-openssl provides OpenSSL bindings for the Rust programming langua ...)
+ TODO: check
+CVE-2026-44661 (python-utcp is the python implementation of UTCP. Prior to 1.1.3, the ...)
+ TODO: check
+CVE-2026-44647 (OneDev is a Git server with CI/CD, kanban, and packages. Prior to 15.0 ...)
+ TODO: check
+CVE-2026-44638 (libsixel is a SIXEL encoder/decoder implementation derived from kmiya' ...)
+ TODO: check
+CVE-2026-44637 (libsixel is a SIXEL encoder/decoder implementation derived from kmiya' ...)
+ TODO: check
+CVE-2026-44636 (libsixel is a SIXEL encoder/decoder implementation derived from kmiya' ...)
+ TODO: check
+CVE-2026-44430 (The MCP Registry provides MCP clients with a list of MCP servers, like ...)
+ TODO: check
+CVE-2026-44429 (The MCP Registry provides MCP clients with a list of MCP servers, like ...)
+ TODO: check
+CVE-2026-44428 (The MCP Registry provides MCP clients with a list of MCP servers, like ...)
+ TODO: check
+CVE-2026-44427 (The MCP Registry provides MCP clients with a list of MCP servers, like ...)
+ TODO: check
+CVE-2026-44212 (PrestaShop is an open source e-commerce web application. Prior to 8.2. ...)
+ TODO: check
+CVE-2026-43996 (OpenImageIO is a toolset for reading, writing, and manipulating image ...)
+ TODO: check
+CVE-2026-43909 (OpenImageIO is a toolset for reading, writing, and manipulating image ...)
+ TODO: check
+CVE-2026-43908 (OpenImageIO is a toolset for reading, writing, and manipulating image ...)
+ TODO: check
+CVE-2026-43907 (OpenImageIO is a toolset for reading, writing, and manipulating image ...)
+ TODO: check
+CVE-2026-43906 (OpenImageIO is a toolset for reading, writing, and manipulating image ...)
+ TODO: check
+CVE-2026-43905 (OpenImageIO is a toolset for reading, writing, and manipulating image ...)
+ TODO: check
+CVE-2026-43904 (OpenImageIO is a toolset for reading, writing, and manipulating image ...)
+ TODO: check
+CVE-2026-43903 (OpenImageIO is a toolset for reading, writing, and manipulating image ...)
+ TODO: check
+CVE-2026-43490 (In the Linux kernel, the following vulnerability has been resolved: k ...)
+ TODO: check
+CVE-2026-42847 (ClipBucket v5 is an open source video sharing platform. Prior to 5.5.3 ...)
+ TODO: check
+CVE-2026-42327 (rust-openssl provides OpenSSL bindings for the Rust programming langua ...)
+ TODO: check
+CVE-2026-41702 (VMware Fusion contains a TOCTOU (Time-of-check Time-of-use) vulnerabil ...)
+ TODO: check
+CVE-2026-3290 (Timing limitations of the HRNG in RS9116 when power save mode is enabl ...)
+ TODO: check
+CVE-2026-2652 (A vulnerability in mlflow/mlflow versions 3.9.0 and earlier allows una ...)
+ TODO: check
+CVE-2026-28761 (Cross-site request forgery vulnerability exists in Musetheque V4 Infor ...)
+ TODO: check
+CVE-2026-26191 (Fleet is open source device management software. Prior to version 4.81 ...)
+ TODO: check
+CVE-2026-26062 (Fleet is open source device management software. Prior to version 4.81 ...)
+ TODO: check
+CVE-2026-24899 (Fleet is open source device management software. Prior to version 4.82 ...)
+ TODO: check
+CVE-2026-24662 (Cross-site scripting vulnerability exists in Musetheque V4 Information ...)
+ TODO: check
+CVE-2026-24000 (Fleet is open source device management software. Prior to version 4.80 ...)
+ TODO: check
+CVE-2026-0481 (Unrestricted IP address binding in the AMD Device Metrics Exporter (RO ...)
+ TODO: check
+CVE-2026-0438 (A System Management Mode (SMM) handler could perform a callout to code ...)
+ TODO: check
+CVE-2026-0432 (Incorrect default permissions in the installation directory for the AM ...)
+ TODO: check
+CVE-2026-0428 (Insufficient parameter sanitization in TEE SOC Driver could allow an a ...)
+ TODO: check
+CVE-2026-0427 (Improper cleanup of shared register resources in GPU firmware could al ...)
+ TODO: check
+CVE-2025-66664 (Insufficient parameter sanitization in AMD Secure Processor (ASP) TEE ...)
+ TODO: check
+CVE-2025-66660 (Insufficient parameter sanitization in TEE SOC Driver could allow an a ...)
+ TODO: check
+CVE-2025-54517 (Out of bounds write in AMD AMDGV_CMD_GET_DIAG_DATA ioctl handler could ...)
+ TODO: check
+CVE-2025-54511 (Improper handling of insufficient privileges in the AMD Secure Process ...)
+ TODO: check
+CVE-2025-52540 (An improper input validation vulnerability within the AMD Platform Man ...)
+ TODO: check
+CVE-2025-52532 (A race condition in the MxGPU-Virtualization driver\u2019s ioctl path ...)
+ TODO: check
+CVE-2025-48521 (Improper input validation in the AMD Secure Processor (ASP) PCI driver ...)
+ TODO: check
+CVE-2025-48520 (An improper input validation vulnerability within the AMD Platform Man ...)
+ TODO: check
+CVE-2025-48519 (An improper input validation vulnerability within the AMD Platform Man ...)
+ TODO: check
+CVE-2025-48516 (Insecure default configuration state of DDR5 memory module by AGESA Bo ...)
+ TODO: check
+CVE-2025-48513 (Use of uninitialized resource within the AMD Platform Management Frame ...)
+ TODO: check
+CVE-2025-48512 (Incorrect default permissions in the installation directory for the AM ...)
+ TODO: check
+CVE-2025-29944 (A buffer overflow vulnerability within AMD Sensor Fusion Hub Driver ca ...)
+ TODO: check
+CVE-2025-29938 (An unchecked return value within the AMD Platform Management Framework ...)
+ TODO: check
+CVE-2025-29937 (An out of bounds read within the AMD Platform Management Framework (PM ...)
+ TODO: check
+CVE-2025-29936 (Improper input validation within the AMD Platform Management Framework ...)
+ TODO: check
+CVE-2025-29935 (An out of bounds write within the AMD Platform Management Framework (P ...)
+ TODO: check
+CVE-2025-0045 (Improper Input validation in the AMD Secure Processor (ASP) PCI driver ...)
+ TODO: check
+CVE-2025-0044 (An out-of-bounds read in power management firmware by a malicious loca ...)
+ TODO: check
+CVE-2025-0040 (Improper access control between the Joint Test Action Group (JTAG) and ...)
+ TODO: check
+CVE-2025-0028 (An unchecked return value within the AMD Platform Management Framework ...)
+ TODO: check
+CVE-2024-36345 (Improper input validation in the AMD OverDrive (AOD) System Management ...)
+ TODO: check
+CVE-2024-36334 (Improper verification of cryptographic signature in the Radeon RGB too ...)
+ TODO: check
+CVE-2024-36333 (A DLL hijacking vulnerability in the AMD Cleanup Utility could allow a ...)
+ TODO: check
+CVE-2024-36332 (Improper isolation of GPU HW register space could allow a privileged a ...)
+ TODO: check
+CVE-2024-36323 (Improper isolation of VCN-JPEG HW register space could allow a malicio ...)
+ TODO: check
+CVE-2024-21962 (Improper Input Validation in the AMD RAID driver could allow an attack ...)
+ TODO: check
+CVE-2024-21950 (An out of bounds read in the remote management firmware could allow a ...)
+ TODO: check
+CVE-2023-31317 (Improper restriction of operations within the bounds of a memory buffe ...)
+ TODO: check
+CVE-2023-31316 (Improperly preserved integrity of hardware configuration state during ...)
+ TODO: check
+CVE-2023-31309 (Improper validation in Power Management Firmware (PMFW) may allow an a ...)
+ TODO: check
CVE-2026-44068
- netatalk <unfixed>
NOTE: https://netatalk.io/security/CVE-2026-44068
@@ -130,243 +306,243 @@ CVE-2026-45699
CVE-2026-45698
- netatalk <unfixed>
NOTE: https://netatalk.io/security/CVE-2026-45698
-CVE-2026-8509
+CVE-2026-8509 (Heap buffer overflow in WebML in Google Chrome prior to 148.0.7778.168 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8510
+CVE-2026-8510 (Integer overflow in Skia in Google Chrome on Windows prior to 148.0.77 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
- libskia <unfixed>
-CVE-2026-8511
+CVE-2026-8511 (Use after free in UI in Google Chrome prior to 148.0.7778.168 allowed ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8512
+CVE-2026-8512 (Use after free in FileSystem in Google Chrome prior to 148.0.7778.168 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8513
+CVE-2026-8513 (Use after free in Input in Google Chrome on Android prior to 148.0.777 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8514
+CVE-2026-8514 (Use after free in Aura in Google Chrome prior to 148.0.7778.168 allowe ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8515
+CVE-2026-8515 (Use after free in HID in Google Chrome prior to 148.0.7778.168 allowed ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8516
+CVE-2026-8516 (Insufficient validation of untrusted input in DataTransfer in Google C ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8517
+CVE-2026-8517 (Object lifecycle issue in WebShare in Google Chrome on Mac prior to 14 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8518
+CVE-2026-8518 (Use after free in Blink in Google Chrome prior to 148.0.7778.168 allow ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8519
+CVE-2026-8519 (Integer overflow in ANGLE in Google Chrome on Windows prior to 148.0.7 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8520
+CVE-2026-8520 (Race in Payments in Google Chrome prior to 148.0.7778.168 allowed a re ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8521
+CVE-2026-8521 (Use after free in Tab Groups in Google Chrome prior to 148.0.7778.168 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8522
+CVE-2026-8522 (Use after free in Downloads in Google Chrome on Mac prior to 148.0.777 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8523
+CVE-2026-8523 (Use after free in Mojo in Google Chrome prior to 148.0.7778.168 allowe ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8558
+CVE-2026-8558 (Out of bounds write in Fonts in Google Chrome prior to 148.0.7778.168 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8524
+CVE-2026-8524 (Out of bounds write in WebAudio in Google Chrome prior to 148.0.7778.1 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8525
+CVE-2026-8525 (Heap buffer overflow in ANGLE in Google Chrome on Mac prior to 148.0.7 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8526
+CVE-2026-8526 (Out of bounds write in WebRTC in Google Chrome prior to 148.0.7778.168 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8527
+CVE-2026-8527 (Insufficient validation of untrusted input in Downloads in Google Chro ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8528
+CVE-2026-8528 (Insufficient validation of untrusted input in SiteIsolation in Google ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8529
+CVE-2026-8529 (Heap buffer overflow in Codecs in Google Chrome prior to 148.0.7778.16 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8530
+CVE-2026-8530 (Use after free in Network in Google Chrome on Windows prior to 148.0.7 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8531
+CVE-2026-8531 (Heap buffer overflow in WebML in Google Chrome on Windows prior to 148 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8532
+CVE-2026-8532 (Integer overflow in XML in Google Chrome prior to 148.0.7778.168 allow ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8533
+CVE-2026-8533 (Use after free in Accessibility in Google Chrome prior to 148.0.7778.1 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8534
+CVE-2026-8534 (Integer overflow in GPU in Google Chrome on Linux and ChromeOS prior t ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8535
+CVE-2026-8535 (Out of bounds read in Media in Google Chrome on Linux and ChromeOS pri ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8536
+CVE-2026-8536 (Insufficient validation of untrusted input in ReadingMode in Google Ch ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8537
+CVE-2026-8537 (Insufficient policy enforcement in ViewTransitions in Google Chrome pr ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8538
+CVE-2026-8538 (Insufficient validation of untrusted input in GPU in Google Chrome pri ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8539
+CVE-2026-8539 (Script injection in SanitizerAPI in Google Chrome on Android prior to ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8540
+CVE-2026-8540 (Type Confusion in V8 in Google Chrome prior to 148.0.7778.168 allowed ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8541
+CVE-2026-8541 (Out of bounds read in UI in Google Chrome prior to 148.0.7778.168 allo ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8542
+CVE-2026-8542 (Use after free in Core in Google Chrome on Windows prior to 148.0.7778 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8543
+CVE-2026-8543 (Out of bounds read in FileSystem in Google Chrome on Mac prior to 148. ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8544
+CVE-2026-8544 (Use after free in Media in Google Chrome prior to 148.0.7778.168 allow ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8545
+CVE-2026-8545 (Object corruption in Compositing in Google Chrome prior to 148.0.7778. ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8546
+CVE-2026-8546 (Out of bounds read in GPU in Google Chrome on Mac and Windows prior to ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8547
+CVE-2026-8547 (Insufficient policy enforcement in Passwords in Google Chrome on Windo ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8548
+CVE-2026-8548 (Out of bounds write in Media in Google Chrome prior to 148.0.7778.168 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8549
+CVE-2026-8549 (Use after free in Media in Google Chrome prior to 148.0.7778.168 allow ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8550
+CVE-2026-8550 (Use after free in Google Lens in Google Chrome prior to 148.0.7778.168 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8551
+CVE-2026-8551 (Use after free in Downloads in Google Chrome prior to 148.0.7778.168 a ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8552
+CVE-2026-8552 (Heap buffer overflow in GPU in Google Chrome on Android prior to 148.0 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8553
+CVE-2026-8553 (Use after free in GPU in Google Chrome prior to 148.0.7778.168 allowed ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8554
+CVE-2026-8554 (Type Confusion in ANGLE in Google Chrome on Windows prior to 148.0.777 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8555
+CVE-2026-8555 (Use after free in GTK in Google Chrome on Windows prior to 148.0.7778. ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8556
+CVE-2026-8556 (Inappropriate implementation in ANGLE in Google Chrome on Windows prio ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8557
+CVE-2026-8557 (Use after free in Accessibility in Google Chrome prior to 148.0.7778.1 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8559
+CVE-2026-8559 (Integer overflow in Internationalization in Google Chrome on Windows p ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8560
+CVE-2026-8560 (Heap buffer overflow in SwiftShader in Google Chrome on Mac and iOS pr ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8561
+CVE-2026-8561 (Incorrect security UI in Fullscreen in Google Chrome prior to 148.0.77 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8562
+CVE-2026-8562 (Side-channel information leakage in Navigation in Google Chrome prior ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8563
+CVE-2026-8563 (Insufficient policy enforcement in IFrame Sandbox in Google Chrome on ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8564
+CVE-2026-8564 (Incorrect security UI in Downloads in Google Chrome on Android and Mac ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8565
+CVE-2026-8565 (Inappropriate implementation in Downloads in Google Chrome on Mac prio ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8566
+CVE-2026-8566 (Insufficient policy enforcement in Payments in Google Chrome on Androi ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8567
+CVE-2026-8567 (Integer overflow in ANGLE in Google Chrome on Windows prior to 148.0.7 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8568
+CVE-2026-8568 (Insufficient policy enforcement in AI in Google Chrome prior to 148.0. ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8569
+CVE-2026-8569 (Out of bounds write in Codecs in Google Chrome on Mac prior to 148.0.7 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8570
+CVE-2026-8570 (Type Confusion in V8 in Google Chrome prior to 148.0.7778.168 allowed ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8571
+CVE-2026-8571 (Insufficient policy enforcement in GPU in Google Chrome on Android pri ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8572
+CVE-2026-8572 (Insufficient policy enforcement in Network in Google Chrome on Android ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8573
+CVE-2026-8573 (Integer overflow in Codecs in Google Chrome on Windows prior to 148.0. ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8574
+CVE-2026-8574 (Use after free in Core in Google Chrome on Windows prior to 148.0.7778 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8575
+CVE-2026-8575 (Use after free in UI in Google Chrome prior to 148.0.7778.168 allowed ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8576
+CVE-2026-8576 (Inappropriate implementation in CORS in Google Chrome on Linux and Chr ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8577
+CVE-2026-8577 (Integer overflow in Fonts in Google Chrome prior to 148.0.7778.168 all ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8578
+CVE-2026-8578 (Out of bounds read in GPU in Google Chrome on Linux prior to 148.0.777 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8579
+CVE-2026-8579 (Insufficient validation of untrusted input in Skia in Google Chrome pr ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
- libskia <unfixed>
-CVE-2026-8580
+CVE-2026-8580 (Use after free in Mojo in Google Chrome prior to 148.0.7778.168 allowe ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8581
+CVE-2026-8581 (Use after free in GPU in Google Chrome prior to 148.0.7778.168 allowed ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8582
+CVE-2026-8582 (Object lifecycle issue in Dawn in Google Chrome prior to 148.0.7778.16 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8583
+CVE-2026-8583 (Insufficient policy enforcement in WebXR in Google Chrome on Android p ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8584
+CVE-2026-8584 (Inappropriate implementation in Views in Google Chrome on iOS prior to ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8585
+CVE-2026-8585 (Inappropriate implementation in Media in Google Chrome on iOS prior to ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8586
+CVE-2026-8586 (Inappropriate implementation in Chromoting in Google Chrome prior to 1 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8587
+CVE-2026-8587 (Use after free in Extensions in Google Chrome on Mac prior to 148.0.77 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-43961
@@ -2780,7 +2956,7 @@ CVE-2025-12659 (The affected applications contains a memory corruption vulnerabi
TODO: check
CVE-2024-54017 (A vulnerability has been identified in SIPROTEC 5 6MD84 (CP300) (All v ...)
NOT-FOR-US: Siemens
-CVE-2025-54518
+CVE-2025-54518 (Improper isolation of shared resources within the CPU operation cache ...)
- xen <unfixed>
[bullseye] - xen <end-of-life> (EOLed in Bullseye)
NOTE: https://xenbits.xen.org/xsa/advisory-490.html
@@ -31543,12 +31719,12 @@ CVE-2026-21715 (A flaw in Node.js Permission Model filesystem enforcement leaves
NOTE: Feature introduced in 20 see https://nodejs.org/en/blog/announcements/v20-release-announce
NOTE: Documentation of the flag: https://nodejs.org/api/cli.html#--experimental-permission (Added in v20.0.0)
CVE-2026-21714 (A memory leak occurs in Node.js HTTP/2 servers when a client sends WIN ...)
- {DSA-6183-1}
+ {DSA-6272-1 DSA-6183-1}
- nodejs 22.22.2+dfsg+~cs22.19.15-1
NOTE: https://nodejs.org/en/blog/vulnerability/march-2026-security-releases#memory-leak-in-nodejs-http2-server-via-window_update-on-stream-0-leads-to-resource-exhaustion-cve-2026-21714---medium
NOTE: Fixed by: https://github.com/nodejs/node/commit/a0c73425da4c95fbcf6c13b7fe8921301290b8e6 (v20.20.2)
CVE-2026-21713 (A flaw in Node.js HMAC verification uses a non-constant-time compariso ...)
- {DSA-6183-1}
+ {DSA-6272-1 DSA-6183-1}
- nodejs 22.22.2+dfsg+~cs22.19.15-1
NOTE: https://nodejs.org/en/blog/vulnerability/march-2026-security-releases#timing-side-channel-in-hmac-verification-via-memcmp-in-crypto_hmaccc-leads-to-potential-mac-forgery-cve-2026-21713---medium
NOTE: Fixed by: https://github.com/nodejs/node/commit/cfb51fa9ce1da2a8c810ec35bcc7c000f8c94faf (v20.20.2)
@@ -31559,7 +31735,7 @@ CVE-2026-21711 (A flaw in Node.js Permission Model network enforcement leaves Un
- nodejs <not-affected> (Vulnerable code not present)
NOTE: https://nodejs.org/en/blog/vulnerability/march-2026-security-releases#nodejs-permission-model-bypass-uds-server-bindlisten-works-without---allow-net-cve-2026-21711---medium
CVE-2026-21710 (A flaw in Node.js HTTP request handling causes an uncaught `TypeError` ...)
- {DSA-6183-1}
+ {DSA-6272-1 DSA-6183-1}
- nodejs 22.22.2+dfsg+~cs22.19.15-1
NOTE: https://nodejs.org/en/blog/vulnerability/march-2026-security-releases#denial-of-service-via-__proto__-header-name-in-reqheadersdistinct-uncaught-typeerror-crashes-nodejs-process-cve-2026-21710---high
NOTE: Fixed by: https://github.com/nodejs/node/commit/00ad47a28eb2e3dc0ff5610d58c53341acf3cf8d (v20.20.2)
@@ -33627,6 +33803,7 @@ CVE-2025-13910 (The WP-WebAuthn plugin for WordPress is vulnerable to Unauthenti
CVE-2024-13785 (The The Contact Form, Survey, Quiz & Popup Form Builder \u2013 ARForms ...)
NOT-FOR-US: WordPress plugin
CVE-2026-4519 (The webbrowser.open() API would accept leading dashes in the URL which ...)
+ {DLA-4583-1}
- python3.14 3.14.4-1
- python3.13 <unfixed>
[trixie] - python3.13 <no-dsa> (Minor issue)
@@ -35908,6 +36085,7 @@ CVE-2026-4228 (A vulnerability was detected in LB-LINK BL-WR9000 2.4.9. This aff
CVE-2026-4227 (A security vulnerability has been detected in LB-LINK BL-WR9000 2.4.9. ...)
NOT-FOR-US: LB-LINK BL-WR9000
CVE-2026-4224 (When an Expat parser with a registered ElementDeclHandler parses an in ...)
+ {DLA-4583-1}
- python3.14 3.14.3-4
- python3.13 <unfixed>
[trixie] - python3.13 <no-dsa> (Minor issue)
@@ -35928,6 +36106,7 @@ CVE-2026-4224 (When an Expat parser with a registered ElementDeclHandler parses
NOTE: Fixed by: https://github.com/python/cpython/commit/196edfb06a7458377d4d0f4b3cd41724c1f3bd4a (v3.13.13)
NOTE: Fixed by: https://github.com/python/cpython/commit/642865ddf4b232da1f3b1f7abcfa3254c4bfe785 (3.11 branch)
CVE-2026-3644 (The fix for CVE-2026-0672, which rejected control characters in http.c ...)
+ {DLA-4583-1}
- python3.14 3.14.3-4
- python3.13 <unfixed>
[trixie] - python3.13 <no-dsa> (Minor issue)
@@ -37425,6 +37604,7 @@ CVE-2025-61154 (Heap buffer overflow vulnerability in LibreDWG versions v0.13.3.
CVE-2025-13913 (A privileged Ignition user, intentionally or otherwise, imports an ext ...)
NOT-FOR-US: Inductive Automation Ignition Software
CVE-2025-13462 (The "tarfile" module would still apply normalization of AREGTYPE (\x00 ...)
+ {DLA-4583-1}
- python3.14 3.14.3-4
- python3.13 <unfixed>
[trixie] - python3.13 <no-dsa> (Minor issue)
@@ -41054,6 +41234,7 @@ CVE-2026-2418 (The Login with Salesforce WordPress plugin through 1.0.2 does not
CVE-2026-2365 (The Fluent Forms Pro plugin for WordPress is vulnerable to Stored Cros ...)
NOT-FOR-US: WordPress plugin
CVE-2026-2297 (The import hook in CPython that handles legacy *.pyc files (Sourceless ...)
+ {DLA-4583-1}
- python3.14 3.14.3-4
- python3.13 <unfixed>
[trixie] - python3.13 <no-dsa> (Minor issue)
@@ -59455,7 +59636,7 @@ CVE-2026-0865 (User-controlled header names and values containing newlines can a
NOTE: https://github.com/python/cpython/commit/c592227ffb48679af9845a45dbb0875d975bb219 (v3.10.20)
NOTE: wsgiref limited security support: https://github.com/python/cpython/issues/144484
CVE-2026-0672 (When using http.cookies.Morsel, user-controlled cookie values and para ...)
- {DLA-4455-1}
+ {DLA-4583-1 DLA-4455-1}
- python3.14 3.14.3-1 (bug #1126761)
- python3.13 3.13.12-1 (bug #1126762)
[trixie] - python3.13 <no-dsa> (Minor issue)
@@ -62082,12 +62263,12 @@ CVE-2025-59464 (A memory leak in Node.js\u2019s OpenSSL integration occurs when
- nodejs <not-affected> (Only affects Node.js v24 releases and fixed in v24.12.0)
NOTE: https://nodejs.org/en/blog/vulnerability/december-2025-security-releases#memory-leak-that-enables-remote-denial-of-service-against-applications-processing-tls-client-certificates-cve-2025-59464---medium
CVE-2025-59466 (We have identified a bug in Node.js error handling where "Maximum call ...)
- {DSA-6166-1}
+ {DSA-6272-1 DSA-6166-1}
- nodejs 22.22.0+dfsg+~cs22.19.6-1
NOTE: https://nodejs.org/en/blog/vulnerability/december-2025-security-releases#uncatchable-maximum-call-stack-size-exceeded-error-on-nodejs-via-async_hooks-leads-to-process-crashes-bypassing-error-handlers-cve-2025-59466---medium
NOTE: Fixed by: https://github.com/nodejs/node/commit/d7a5c587c02ebe18f9fe4de986bac55d80c2868f (v20.20.0)
CVE-2025-59465 (A malformed `HTTP/2 HEADERS` frame with oversized, invalid `HPACK` dat ...)
- {DSA-6166-1}
+ {DSA-6272-1 DSA-6166-1}
- nodejs 22.22.0+dfsg+~cs22.19.6-1
NOTE: https://nodejs.org/en/blog/vulnerability/december-2025-security-releases#nodejs-http2-server-crashes-with-unhandled-error-when-receiving-malformed-headers-frame-cve-2025-59465---high
NOTE: Fixed by: https://github.com/nodejs/node/commit/1febc48d5b0bcf9070085589d9cc586d74053f9c (v20.20.0)
@@ -62100,7 +62281,7 @@ CVE-2025-55130 (A flaw in Node.js\u2019s Permissions model allows attackers to b
NOTE: Fixed by: https://github.com/nodejs/node/commit/494f62dc230b407461f4a2de893a7c6a44273d08 (v20.20.0)
NOTE: Permission model added by nodejs v20.0.0 (https://nodejs.org/en/blog/announcements/v20-release-announce)
CVE-2025-55131 (A flaw in Node.js's buffer allocation logic can expose uninitialized m ...)
- {DSA-6166-1}
+ {DSA-6272-1 DSA-6166-1}
- nodejs 22.22.0+dfsg+~cs22.19.6-1
NOTE: https://nodejs.org/en/blog/vulnerability/december-2025-security-releases#timeout-based-race-conditions-make-uint8arraybufferalloc-non-zerofilled-cve-2025-55131---high
NOTE: Fixed by: https://github.com/nodejs/node/commit/51f4de4b4a52b5b0eb2c63ecbb4126577e05f636 (v20.20.0)
@@ -146830,6 +147011,7 @@ CVE-2025-23167 (A flaw in Node.js 20's HTTP parser allows improper termination o
NOTE: https://github.com/nodejs/llhttp/pull/239
NOTE: Fixed by: https://github.com/nodejs/llhttp/commit/72f53095152740e176438cf7fe68742fe1cb7be8 (v9.0.1)
CVE-2025-23166 (The C++ method SignTraits::DeriveBits() may incorrectly call ThrowExce ...)
+ {DSA-6272-1}
- nodejs 20.19.2+dfsg-1 (bug #1105832)
[bullseye] - nodejs <not-affected> (The vulnerable code was introduced later)
NOTE: https://nodejs.org/en/blog/vulnerability/may-2025-security-releases#improper-error-handling-in-async-cryptographic-operations-crashes-process-cve-2025-23166---high
@@ -185288,7 +185470,7 @@ CVE-2025-0411 (7-Zip Mark-of-the-Web Bypass Vulnerability. This vulnerability al
NOTE: https://www.zerodayinitiative.com/advisories/ZDI-25-045/
NOTE: https://www.openwall.com/lists/oss-security/2025/01/24/6
CVE-2025-23085 (A memory leak could occur when a remote peer abruptly closes the socke ...)
- {DSA-6166-1 DLA-4067-1}
+ {DSA-6272-1 DSA-6166-1 DLA-4067-1}
- nodejs 20.18.2+dfsg-1 (bug #1094134)
NOTE: https://nodejs.org/en/blog/vulnerability/january-2025-security-releases#goaway-http2-frames-cause-memory-leak-outside-heap-cve-2025-23085---medium
NOTE: Fixed by: https://github.com/nodejs/node/commit/3c7686163ed4c6ae3e5901b758b7a7d4fd5bb0c0 (v23.6.1)
@@ -432765,8 +432947,8 @@ CVE-2022-23828
RESERVED
CVE-2022-23827
REJECTED
-CVE-2022-23826
- RESERVED
+CVE-2022-23826 (A TOCTOU (Time-Of-Check to Time-Of-Use) in the graphics interface may ...)
+ TODO: check
CVE-2022-23825 (Aliases in the branch predictor may cause some AMD processors to predi ...)
{DSA-5184-1}
- xen 4.16.2-1
@@ -432799,7 +432981,7 @@ CVE-2022-23819
RESERVED
CVE-2022-23818 (Insufficient input validation on the model specific register: VM_HSAVE ...)
NOT-FOR-US: AMD
-CVE-2022-23817 (Insufficient checking of memory buffer in ASP Secure OS may allow an a ...)
+CVE-2022-23817 (Insufficient checking of memory buffer in AMD Secure Processor (ASP) S ...)
NOT-FOR-US: AMD
CVE-2022-23816
REJECTED
@@ -494740,8 +494922,8 @@ CVE-2021-26382 (An attacker with root account privileges can load any legitimate
NOT-FOR-US: AMD
CVE-2021-26381 (Improper system call parameter validation in the Trusted OS may allow ...)
TODO: check
-CVE-2021-26380
- RESERVED
+CVE-2021-26380 (A compromised Trusted OS (TOS) driver could issue a malformed call tha ...)
+ TODO: check
CVE-2021-26379 (Insufficient input validation of mailbox data in the SMU may allow an ...)
NOT-FOR-US: AMD
CVE-2021-26378 (Insufficient bound checks in the System Management Unit (SMU) may resu ...)
@@ -862471,9 +862653,9 @@ CVE-2012-4552 (Stack-based buffer overflow in the error function in ssg/ssgParse
[squeeze] - plib <no-dsa> (Minor issue)
CVE-2012-4551 (Use-after-free vulnerability in libunity-webapps before 2.4.1 allows r ...)
NOT-FOR-US: libunity-webapps
-CVE-2012-4550 (JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) before ...)
+CVE-2012-4550 (A flaw was found in JBoss Enterprise Application Platform. When role-b ...)
- jbossas4 <not-affected> (Only builds a few libraries, not the full application server)
-CVE-2012-4549 (The processInvocation function in org.jboss.as.ejb3.security.Authoriza ...)
+CVE-2012-4549 (A flaw was found in JBoss Enterprise Application Platform. The `proces ...)
- jbossas4 <not-affected> (Only builds a few libraries, not the full application server)
CVE-2012-4548 (Argument injection vulnerability in syntax-highlighting.sh in cgit 9.0 ...)
- cgit <not-affected> (Fixed before the initial upload into the archive)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6ba3117082cab1d3368a832808c9526209a9bd01
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6ba3117082cab1d3368a832808c9526209a9bd01
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260515/0d6a8639/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list