[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri May 15 20:13:30 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0ed286ca by security tracker role at 2026-05-15T19:13:24+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,17 +1,208 @@
-CVE-2026-8454
+CVE-2026-8695 (radare2 6.1.5 contains a use-after-free vulnerability in the gdbr_thre ...)
+ TODO: check
+CVE-2026-8686 (Missing bounds validation in the MQTT v5.0 property parser in coreMQTT ...)
+ TODO: check
+CVE-2026-8425 (The Notify Odoo plugin for WordPress is vulnerable to Cross-Site Reque ...)
+ TODO: check
+CVE-2026-8398 (A supply chain attack compromised the official installation packages o ...)
+ TODO: check
+CVE-2026-7563 (The Classified Listing \u2013 AI-Powered Classified ads & Business Dir ...)
+ TODO: check
+CVE-2026-7182 (Diagram's export module is vulnerable to Path Traversal in src attribu ...)
+ TODO: check
+CVE-2026-7046 (The NEX-Forms \u2013 Ultimate Forms Plugin for WordPress plugin for Wo ...)
+ TODO: check
+CVE-2026-6415 (The Advanced Custom Fields: Font Awesome plugin for WordPress is vulne ...)
+ TODO: check
+CVE-2026-6403 (The Quick Playground plugin for WordPress is vulnerable to Path Traver ...)
+ TODO: check
+CVE-2026-6228 (The Frontend Admin by DynamiApps plugin for WordPress is vulnerable to ...)
+ TODO: check
+CVE-2026-5229 (The Form Notify plugin for WordPress is vulnerable to Authentication B ...)
+ TODO: check
+CVE-2026-4683 (The Smartcat Translator for WPML plugin for WordPress is vulnerable to ...)
+ TODO: check
+CVE-2026-4054 (Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13, 11.4.x <= 1 ...)
+ TODO: check
+CVE-2026-4053 (Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13 fail to enfo ...)
+ TODO: check
+CVE-2026-46508 (Turborepo is a high-performance build system for JavaScript and TypeSc ...)
+ TODO: check
+CVE-2026-46483 (Vim is an open source, command line text editor. Prior to 9.2.0479, a ...)
+ TODO: check
+CVE-2026-46474 (Trog::TOTP versions before 1.006 for Perl generate secrets using rand. ...)
+ TODO: check
+CVE-2026-46408 (Vvveb is a powerful and easy to use CMS with page builder to build web ...)
+ TODO: check
+CVE-2026-46407 (Vvveb is a powerful and easy to use CMS with page builder to build web ...)
+ TODO: check
+CVE-2026-46383 (Microsoft APM is an open-source, community-driven dependency manager f ...)
+ TODO: check
+CVE-2026-46367 (phpMyFAQ before 4.1.2 contains a stored cross-site scripting vulnerabi ...)
+ TODO: check
+CVE-2026-46366 (phpMyFAQ before 4.1.2 contains an information disclosure vulnerability ...)
+ TODO: check
+CVE-2026-46365 (phpMyFAQ before 4.1.2 contains a missing authorization vulnerability i ...)
+ TODO: check
+CVE-2026-46364 (phpMyFAQ before 4.1.2 contains an unauthenticated SQL injection vulner ...)
+ TODO: check
+CVE-2026-46363 (phpMyFAQ before 4.1.2 contains a stored cross-site scripting vulnerabi ...)
+ TODO: check
+CVE-2026-46362 (phpMyFAQ before 4.1.2 contains an authorization bypass vulnerability i ...)
+ TODO: check
+CVE-2026-46361 (phpMyFAQ before 4.1.2 contains a stored cross-site scripting vulnerabi ...)
+ TODO: check
+CVE-2026-46360 (phpMyFAQ before 4.1.2 contains a stored cross-site scripting vulnerabi ...)
+ TODO: check
+CVE-2026-46359 (phpMyFAQ before 4.1.2 contains a sql injection vulnerability in Curren ...)
+ TODO: check
+CVE-2026-45803 (`gh` is GitHub\u2019s official command line tool. From 1.6.0 to before ...)
+ TODO: check
+CVE-2026-45800 (Vvveb is a powerful and easy to use CMS with page builder to build web ...)
+ TODO: check
+CVE-2026-45773 (Turborepo is a high-performance build system for JavaScript and TypeSc ...)
+ TODO: check
+CVE-2026-45772 (Turborepo is a high-performance build system for JavaScript and TypeSc ...)
+ TODO: check
+CVE-2026-45736 (ws is an open source WebSocket client and server for Node.js. Prior to ...)
+ TODO: check
+CVE-2026-45622 (Vvveb is a powerful and easy to use CMS with page builder to build web ...)
+ TODO: check
+CVE-2026-45616 (Vvveb is a powerful and easy to use CMS with page builder to build web ...)
+ TODO: check
+CVE-2026-45539 (Microsoft APM is an open-source, community-driven dependency manager f ...)
+ TODO: check
+CVE-2026-45038 (Tabby (formerly Terminus) is a highly configurable terminal emulator. ...)
+ TODO: check
+CVE-2026-45037 (Tabby (formerly Terminus) is a highly configurable terminal emulator. ...)
+ TODO: check
+CVE-2026-45036 (Tabby (formerly Terminus) is a highly configurable terminal emulator. ...)
+ TODO: check
+CVE-2026-45035 (Tabby (formerly Terminus) is a highly configurable terminal emulator. ...)
+ TODO: check
+CVE-2026-45010 (phpMyFAQ before 4.1.2 contains an improper restriction of excessive au ...)
+ TODO: check
+CVE-2026-45009 (phpMyFAQ before 4.1.2 contains an insufficient authorization vulnerabi ...)
+ TODO: check
+CVE-2026-45008 (phpMyFAQ before 4.1.2 contains a path traversal vulnerability in Clien ...)
+ TODO: check
+CVE-2026-45007 (phpMyFAQ before 4.1.2 contains missing permission checks in Configurat ...)
+ TODO: check
+CVE-2026-44826 (Vvveb is a powerful and easy to use CMS with page builder to build web ...)
+ TODO: check
+CVE-2026-44774 (Traefik is an HTTP reverse proxy and load balancer. Prior to 2.11.46, ...)
+ TODO: check
+CVE-2026-44719 (Mathesar is a web application that makes working with PostgreSQL datab ...)
+ TODO: check
+CVE-2026-44718 (Mathesar is a web application that makes working with PostgreSQL datab ...)
+ TODO: check
+CVE-2026-44717 (MCP Calculate Server is a mathematical calculation service based on MC ...)
+ TODO: check
+CVE-2026-44714 (The bitcoinj library is a Java implementation of the Bitcoin protocol. ...)
+ TODO: check
+CVE-2026-44699 (LibJWT is a C JSON Web Token Library. From 3.0.0 to 3.3.2, libjwt acce ...)
+ TODO: check
+CVE-2026-44641 (Microsoft APM is an open-source, community-driven dependency manager f ...)
+ TODO: check
+CVE-2026-44366 (Vvveb is a powerful and easy to use CMS with page builder to build web ...)
+ TODO: check
+CVE-2026-44310 (Gitsign is a keyless Sigstore to signing tool for Git commits with you ...)
+ TODO: check
+CVE-2026-44309 (Gitsign is a keyless Sigstore to signing tool for Git commits with you ...)
+ TODO: check
+CVE-2026-44088 (SzafirHost verifies the signature of the downloaded JAR file using cla ...)
+ TODO: check
+CVE-2026-42458 (Magento Long Term Support (LTS) is an unofficial, community-driven pro ...)
+ TODO: check
+CVE-2026-42207 (Magento Long Term Support (LTS) is an unofficial, community-driven pro ...)
+ TODO: check
+CVE-2026-42155 (Magento Long Term Support (LTS) is an unofficial, community-driven pro ...)
+ TODO: check
+CVE-2026-41971 (Permission control vulnerability in the security control module.Impact ...)
+ TODO: check
+CVE-2026-41970 (Out-of-bounds write vulnerability in the distributed file system modul ...)
+ TODO: check
+CVE-2026-41969 (Permission control vulnerability in the projection module.Impact: Succ ...)
+ TODO: check
+CVE-2026-41968 (Permission control vulnerability in the manufacturability design modul ...)
+ TODO: check
+CVE-2026-41967 (Permission control vulnerability in the manufacturability design modul ...)
+ TODO: check
+CVE-2026-41966 (Permission control vulnerability in the smart sensing service.Impact: ...)
+ TODO: check
+CVE-2026-41965 (Use-After-Free (UAF) vulnerability in the web.Impact: Successful explo ...)
+ TODO: check
+CVE-2026-41964 (Permission control vulnerability in the web.Impact: Successful exploit ...)
+ TODO: check
+CVE-2026-41963 (Stack overflow vulnerability in the media platform.Impact: Successful ...)
+ TODO: check
+CVE-2026-41962 (Permission control vulnerability in the app management and control mod ...)
+ TODO: check
+CVE-2026-41961 (Permission control vulnerability in contacts.Impact: Successful exploi ...)
+ TODO: check
+CVE-2026-41960 (Permission control vulnerability in calls.Impact: Successful exploitat ...)
+ TODO: check
+CVE-2026-41553 (PDF Export Module used inDHTMLX'sproducts Gantt and Scheduler is vulne ...)
+ TODO: check
+CVE-2026-41552 (PDF Export Module used in DHTMLX's products Gantt and Scheduler is vul ...)
+ TODO: check
+CVE-2026-41258 (OpenMRS is an open source electronic medical record system platform. F ...)
+ TODO: check
+CVE-2026-41181 (Traefik is an HTTP reverse proxy and load balancer. Prior to 2.11.44, ...)
+ TODO: check
+CVE-2026-39054 (Oinone Pamirs 7.0.0 contains a command injection vulnerability in Comm ...)
+ TODO: check
+CVE-2026-39053 (Oinone Pamirs 7.0.0 contains an XML External Entity (XXE) issue in its ...)
+ TODO: check
+CVE-2026-39052 (Oinone Pamirs 7.0.0 contains a code execution vulnerability via Script ...)
+ TODO: check
+CVE-2026-38728 (An issue in Nodemailer smtp_server before v.3.18.3 allows a remote att ...)
+ TODO: check
+CVE-2026-35194 (Code injection in SQL code generation in Apache Flink 1.15.0 through 1 ...)
+ TODO: check
+CVE-2026-34253 (A buffer underflow vulnerability has been identified in the ogg123 uti ...)
+ TODO: check
+CVE-2026-2031 (An Improper Access Controlvulnerability inseveral internal API endpoin ...)
+ TODO: check
+CVE-2026-23695 (Cockpit CMS through version 2.14.0, patched in commit 72a83fc, contain ...)
+ TODO: check
+CVE-2025-67437 (Medical Management System a81df1ce700a9662cb136b27af47f4cbde64156b is ...)
+ TODO: check
+CVE-2025-14972 (* Countermeasures for DPA within SYMCRYPTO engine on SixG301xxx devic ...)
+ TODO: check
+CVE-2021-47968 (Podcast Generator 3.1 contains a persistent cross-site scripting vulne ...)
+ TODO: check
+CVE-2021-47967 (PHP Timeclock 1.04 contains multiple cross-site scripting vulnerabilit ...)
+ TODO: check
+CVE-2021-47966 (PHP Timeclock 1.04 contains time-based and boolean-based blind SQL inj ...)
+ TODO: check
+CVE-2021-47965 (WordPress Plugin WP Super Edit 2.5.4 and earlier contains an unrestric ...)
+ TODO: check
+CVE-2021-47964 (Schlix CMS 2.2.6-6 contains a remote code execution vulnerability that ...)
+ TODO: check
+CVE-2021-47963 (Anote 1.0 contains a persistent cross-site scripting vulnerability tha ...)
+ TODO: check
+CVE-2021-47962 (Savsoft Quiz 5.0 contains a persistent cross-site scripting vulnerabil ...)
+ TODO: check
+CVE-2021-47959 (WordPress Plugin WPGraphQL 1.3.5 contains a denial of service vulnerab ...)
+ TODO: check
+CVE-2021-47958 (CouchCMS 2.2.1 contains a server-side request forgery vulnerability th ...)
+ TODO: check
+CVE-2026-8454 (Imager::File::GIF versions through 1.002 for Perl allow a heap out of ...)
NOT-FOR-US: Imager::File::GIF Perl module
NOTE: Imager::File::GIF used in libimager-perl and has separate CVE-2026-8669
NOTE: https://lists.security.metacpan.org/cve-announce/msg/40079077/
-CVE-2026-8503
+CVE-2026-8503 (Apache::Session::Generate::SHA256 versions before 1.3.19 for Perl crea ...)
- libapache-session-browseable-perl 1.3.19-1
NOTE: https://lists.security.metacpan.org/cve-announce/msg/40079348/
NOTE: https://github.com/LemonLDAPNG/Apache-Session-Browseable/commit/cc915cbbd266776eec3dd8bf4748b15fa827dbd0 (v1.3.19)
-CVE-2026-8669
+CVE-2026-8669 (Imager versions through 1.030 for Perl allow a heap out of bounds (OOB ...)
- libimager-perl <unfixed>
NOTE: https://lists.security.metacpan.org/cve-announce/msg/40083214/
NOTE: Imager embbeds the Imager::File::GIF code and syncs the fix:
NOTE: Fixed by: https://github.com/tonycoz/imager/commit/782e9c06cc75a0f7eed383f39522f51f44598b04 (v1.031)
-CVE-2026-46333 [ptrace: slightly saner 'get_dumpable()' logic]
+CVE-2026-46333 (In the Linux kernel, the following vulnerability has been resolved: p ...)
+ {DSA-6275-1 DSA-6274-1}
- linux 7.0.7-1
NOTE: https://github.com/torvalds/linux/commit/31e62c2ebbfdc3fe3dbdf5e02c92a9dc67087a3a
NOTE: https://www.openwall.com/lists/oss-security/2026/05/15/2
@@ -114,6 +305,7 @@ CVE-2026-43903 (OpenImageIO is a toolset for reading, writing, and manipulating
- openimageio <unfixed>
NOTE: https://github.com/AcademySoftwareFoundation/OpenImageIO/security/advisories/GHSA-jg3q-vm3q-2j35
CVE-2026-43490 (In the Linux kernel, the following vulnerability has been resolved: k ...)
+ {DSA-6274-1}
- linux 7.0.7-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/996454bc0da84d5a1dedb1a7861823087e01a7ae (7.1-rc3)
@@ -345,242 +537,321 @@ CVE-2026-45698
- netatalk <unfixed>
NOTE: https://netatalk.io/security/CVE-2026-45698
CVE-2026-8509 (Heap buffer overflow in WebML in Google Chrome prior to 148.0.7778.168 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8510 (Integer overflow in Skia in Google Chrome on Windows prior to 148.0.77 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
- libskia <unfixed>
CVE-2026-8511 (Use after free in UI in Google Chrome prior to 148.0.7778.168 allowed ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8512 (Use after free in FileSystem in Google Chrome prior to 148.0.7778.168 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8513 (Use after free in Input in Google Chrome on Android prior to 148.0.777 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8514 (Use after free in Aura in Google Chrome prior to 148.0.7778.168 allowe ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8515 (Use after free in HID in Google Chrome prior to 148.0.7778.168 allowed ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8516 (Insufficient validation of untrusted input in DataTransfer in Google C ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8517 (Object lifecycle issue in WebShare in Google Chrome on Mac prior to 14 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8518 (Use after free in Blink in Google Chrome prior to 148.0.7778.168 allow ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8519 (Integer overflow in ANGLE in Google Chrome on Windows prior to 148.0.7 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8520 (Race in Payments in Google Chrome prior to 148.0.7778.168 allowed a re ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8521 (Use after free in Tab Groups in Google Chrome prior to 148.0.7778.168 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8522 (Use after free in Downloads in Google Chrome on Mac prior to 148.0.777 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8523 (Use after free in Mojo in Google Chrome prior to 148.0.7778.168 allowe ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8558 (Out of bounds write in Fonts in Google Chrome prior to 148.0.7778.168 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8524 (Out of bounds write in WebAudio in Google Chrome prior to 148.0.7778.1 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8525 (Heap buffer overflow in ANGLE in Google Chrome on Mac prior to 148.0.7 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8526 (Out of bounds write in WebRTC in Google Chrome prior to 148.0.7778.168 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8527 (Insufficient validation of untrusted input in Downloads in Google Chro ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8528 (Insufficient validation of untrusted input in SiteIsolation in Google ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8529 (Heap buffer overflow in Codecs in Google Chrome prior to 148.0.7778.16 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8530 (Use after free in Network in Google Chrome on Windows prior to 148.0.7 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8531 (Heap buffer overflow in WebML in Google Chrome on Windows prior to 148 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8532 (Integer overflow in XML in Google Chrome prior to 148.0.7778.168 allow ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8533 (Use after free in Accessibility in Google Chrome prior to 148.0.7778.1 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8534 (Integer overflow in GPU in Google Chrome on Linux and ChromeOS prior t ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8535 (Out of bounds read in Media in Google Chrome on Linux and ChromeOS pri ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8536 (Insufficient validation of untrusted input in ReadingMode in Google Ch ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8537 (Insufficient policy enforcement in ViewTransitions in Google Chrome pr ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8538 (Insufficient validation of untrusted input in GPU in Google Chrome pri ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8539 (Script injection in SanitizerAPI in Google Chrome on Android prior to ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8540 (Type Confusion in V8 in Google Chrome prior to 148.0.7778.168 allowed ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8541 (Out of bounds read in UI in Google Chrome prior to 148.0.7778.168 allo ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8542 (Use after free in Core in Google Chrome on Windows prior to 148.0.7778 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8543 (Out of bounds read in FileSystem in Google Chrome on Mac prior to 148. ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8544 (Use after free in Media in Google Chrome prior to 148.0.7778.168 allow ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8545 (Object corruption in Compositing in Google Chrome prior to 148.0.7778. ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8546 (Out of bounds read in GPU in Google Chrome on Mac and Windows prior to ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8547 (Insufficient policy enforcement in Passwords in Google Chrome on Windo ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8548 (Out of bounds write in Media in Google Chrome prior to 148.0.7778.168 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8549 (Use after free in Media in Google Chrome prior to 148.0.7778.168 allow ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8550 (Use after free in Google Lens in Google Chrome prior to 148.0.7778.168 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8551 (Use after free in Downloads in Google Chrome prior to 148.0.7778.168 a ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8552 (Heap buffer overflow in GPU in Google Chrome on Android prior to 148.0 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8553 (Use after free in GPU in Google Chrome prior to 148.0.7778.168 allowed ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8554 (Type Confusion in ANGLE in Google Chrome on Windows prior to 148.0.777 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8555 (Use after free in GTK in Google Chrome on Windows prior to 148.0.7778. ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8556 (Inappropriate implementation in ANGLE in Google Chrome on Windows prio ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8557 (Use after free in Accessibility in Google Chrome prior to 148.0.7778.1 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8559 (Integer overflow in Internationalization in Google Chrome on Windows p ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8560 (Heap buffer overflow in SwiftShader in Google Chrome on Mac and iOS pr ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8561 (Incorrect security UI in Fullscreen in Google Chrome prior to 148.0.77 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8562 (Side-channel information leakage in Navigation in Google Chrome prior ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8563 (Insufficient policy enforcement in IFrame Sandbox in Google Chrome on ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8564 (Incorrect security UI in Downloads in Google Chrome on Android and Mac ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8565 (Inappropriate implementation in Downloads in Google Chrome on Mac prio ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8566 (Insufficient policy enforcement in Payments in Google Chrome on Androi ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8567 (Integer overflow in ANGLE in Google Chrome on Windows prior to 148.0.7 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8568 (Insufficient policy enforcement in AI in Google Chrome prior to 148.0. ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8569 (Out of bounds write in Codecs in Google Chrome on Mac prior to 148.0.7 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8570 (Type Confusion in V8 in Google Chrome prior to 148.0.7778.168 allowed ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8571 (Insufficient policy enforcement in GPU in Google Chrome on Android pri ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8572 (Insufficient policy enforcement in Network in Google Chrome on Android ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8573 (Integer overflow in Codecs in Google Chrome on Windows prior to 148.0. ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8574 (Use after free in Core in Google Chrome on Windows prior to 148.0.7778 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8575 (Use after free in UI in Google Chrome prior to 148.0.7778.168 allowed ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8576 (Inappropriate implementation in CORS in Google Chrome on Linux and Chr ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8577 (Integer overflow in Fonts in Google Chrome prior to 148.0.7778.168 all ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8578 (Out of bounds read in GPU in Google Chrome on Linux prior to 148.0.777 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8579 (Insufficient validation of untrusted input in Skia in Google Chrome pr ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
- libskia <unfixed>
CVE-2026-8580 (Use after free in Mojo in Google Chrome prior to 148.0.7778.168 allowe ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8581 (Use after free in GPU in Google Chrome prior to 148.0.7778.168 allowed ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8582 (Object lifecycle issue in Dawn in Google Chrome prior to 148.0.7778.16 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8583 (Insufficient policy enforcement in WebXR in Google Chrome on Android p ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8584 (Inappropriate implementation in Views in Google Chrome on iOS prior to ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8585 (Inappropriate implementation in Media in Google Chrome on iOS prior to ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8586 (Inappropriate implementation in Chromoting in Google Chrome prior to 1 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8587 (Use after free in Extensions in Google Chrome on Mac prior to 148.0.77 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-43961
@@ -3215,7 +3486,7 @@ CVE-2026-34961 (barebox prior to version 2026.04.0 contains out-of-bounds read v
TODO: check
CVE-2026-34960 (barebox prior to version 2026.04.0 contains an out-of-bounds read vuln ...)
TODO: check
-CVE-2026-34263 (Due to improper Spring Security configuration, SAP Commerce cloud allo ...)
+CVE-2026-34263 (Due to improper Spring Security configuration, SAP Commerce Cloud allo ...)
NOT-FOR-US: SAP
CVE-2026-34260 (SAP S/4HANA (SAP Enterprise Search for ABAP) contains a SQL injection ...)
NOT-FOR-US: SAP
@@ -7799,6 +8070,7 @@ CVE-2026-43223 (In the Linux kernel, the following vulnerability has been resolv
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/a8333c8262aed2aedf608c18edd39cf5342680a7 (7.0-rc1)
CVE-2026-43220 (In the Linux kernel, the following vulnerability has been resolved: i ...)
+ {DSA-6274-1}
- linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/
CVE-2026-43219 (In the Linux kernel, the following vulnerability has been resolved: n ...)
@@ -8247,6 +8519,7 @@ CVE-2026-43110 (In the Linux kernel, the following vulnerability has been resolv
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/304950a467d83678bd0b0f46331882e2ac23b12d (7.0)
CVE-2026-43109 (In the Linux kernel, the following vulnerability has been resolved: x ...)
+ {DSA-6274-1}
- linux 6.19.14-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
@@ -8305,6 +8578,7 @@ CVE-2026-43089 (In the Linux kernel, the following vulnerability has been resolv
[trixie] - linux 6.12.85-1
NOTE: https://git.kernel.org/linus/1beb76b2053b68c491b78370794b8ff63c8f8c02 (7.0)
CVE-2026-43088 (In the Linux kernel, the following vulnerability has been resolved: n ...)
+ {DSA-6274-1}
- linux 6.19.14-1
NOTE: https://git.kernel.org/linus/426c355742f02cf743b347d9d7dbdc1bfbfa31ef (7.0)
CVE-2026-43085 (In the Linux kernel, the following vulnerability has been resolved: n ...)
@@ -15415,6 +15689,7 @@ CVE-2026-31500 (In the Linux kernel, the following vulnerability has been resolv
- linux 6.19.11-1
NOTE: https://git.kernel.org/linus/94d8e6fe5d0818e9300e514e095a200bd5ff93ae (7.0-rc6)
CVE-2026-31499 (In the Linux kernel, the following vulnerability has been resolved: B ...)
+ {DSA-6274-1}
- linux 6.19.11-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
@@ -18277,6 +18552,7 @@ CVE-2026-41015 (radare2 before 9236f44, when configured on UNIX without SSL, all
NOTE: Introduced with: https://github.com/radareorg/radare2/commit/01ca2f61fa43bd3f4b732447de31b16039d820c0 (6.1.4)
NOTE: Fixed by: https://github.com/radareorg/radare2/commit/9236f44a28812fe911814e1b3a7bcf1e4de5d3c2 (6.1.4)
CVE-2026-40962 (FFmpeg before 8.1 has an integer overflow and resultant out-of-bounds ...)
+ {DSA-6268-1}
- ffmpeg 7:8.1-1
[bookworm] - ffmpeg <postponed> (Minor issue, wait until it's fixed in the 5.1 branch)
[bullseye] - ffmpeg <postponed> (minor issue)
@@ -26054,26 +26330,31 @@ CVE-2026-3872 (A flaw was found in Keycloak. This issue allows an attacker, who
CVE-2026-3692 (In Progress Flowmon versions prior to 12.5.8, a vulnerability exists w ...)
NOT-FOR-US: Progress Software
CVE-2026-35414 (OpenSSH before 10.3 mishandles the authorized_keys principals option i ...)
+ {DLA-4584-1}
- openssh 1:10.3p1-1 (bug #1132576)
[trixie] - openssh <no-dsa> (Minor issue)
[bookworm] - openssh <no-dsa> (Minor issue)
NOTE: https://www.openssh.org/releasenotes.html#10.3p1
CVE-2026-35388 (OpenSSH before 10.3 omits connection multiplexing confirmation for pro ...)
+ {DLA-4584-1}
- openssh 1:10.3p1-1 (bug #1132575)
[trixie] - openssh <no-dsa> (Minor issue)
[bookworm] - openssh <no-dsa> (Minor issue)
NOTE: https://www.openssh.org/releasenotes.html#10.3p1
CVE-2026-35387 (OpenSSH before 10.3 can use unintended ECDSA algorithms. Listing of an ...)
+ {DLA-4584-1}
- openssh 1:10.3p1-1 (bug #1132574)
[trixie] - openssh <no-dsa> (Minor issue)
[bookworm] - openssh <no-dsa> (Minor issue)
NOTE: https://www.openssh.org/releasenotes.html#10.3p1
CVE-2026-35386 (In OpenSSH before 10.3, command execution can occur via shell metachar ...)
+ {DLA-4584-1}
- openssh 1:10.3p1-1 (bug #1132573)
[trixie] - openssh <no-dsa> (Minor issue)
[bookworm] - openssh <no-dsa> (Minor issue)
NOTE: https://www.openssh.org/releasenotes.html#10.3p1
CVE-2026-35385 (In OpenSSH before 10.3, a file downloaded by scp may be installed setu ...)
+ {DLA-4584-1}
- openssh 1:10.3p1-1 (bug #1132572)
[trixie] - openssh <no-dsa> (Minor issue)
[bookworm] - openssh <no-dsa> (Minor issue)
@@ -29222,6 +29503,7 @@ CVE-2026-27893 (vLLM is an inference and serving engine for large language model
CVE-2026-21724 (A vulnerability has been discovered in Grafana OSS where an authorizat ...)
- grafana <removed>
CVE-2026-4948 (A flaw was found in firewalld. A local unprivileged user can exploit t ...)
+ {DLA-4585-1}
- firewalld 2.4.0-2
[trixie] - firewalld <no-dsa> (Minor issue)
[bookworm] - firewalld <no-dsa> (Minor issue)
@@ -99490,12 +99772,14 @@ CVE-2025-10162 (The Admin and Customer Messages After Order for WooCommerce: Ord
CVE-2025-6985 (The HTMLSectionSplitter class in langchain-text-splitters version 0.3. ...)
NOT-FOR-US: langchain-text-splitters
CVE-2025-61985 (ssh in OpenSSH before 10.1 allows the '\0' character in an ssh:// URI, ...)
+ {DLA-4584-1}
- openssh 1:10.1p1-1 (bug #1117530)
[trixie] - openssh 1:10.0p1-7+deb13u1
[bookworm] - openssh 1:9.2p1-2+deb12u8
NOTE: https://www.openwall.com/lists/oss-security/2025/10/06/1
NOTE: https://github.com/openssh/openssh-portable/commit/43b3bff47bb029f2299bacb6a36057981b39fdb0 (V_10_1_P1)
CVE-2025-61984 (ssh in OpenSSH before 10.1 allows control characters in usernames that ...)
+ {DLA-4584-1}
- openssh 1:10.1p1-1 (bug #1117529)
[trixie] - openssh 1:10.0p1-7+deb13u1
[bookworm] - openssh 1:9.2p1-2+deb12u8
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0ed286cab7014c2da8d216e37ae9d33a0464847a
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0ed286cab7014c2da8d216e37ae9d33a0464847a
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260515/2fd39671/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list