[Git][security-tracker-team/security-tracker][master] new gitlab issues

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b9e052cf by Moritz Muehlenhoff at 2026-05-17T15:10:03+02:00
new gitlab issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1933,17 +1933,17 @@ CVE-2026-3718 (The ManageWP Worker plugin for WordPress is vulnerable to Stored
 CVE-2026-3694 (The Bold Page Builder plugin for WordPress is vulnerable to Stored Cro ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2026-3607 (GitLab has remediated an issue in GitLab CE/EE affecting all versions  ...)
-	TODO: check
+	- gitlab <unfixed>
 CVE-2026-3426 (The RTMKit Addons for Elementor plugin for WordPress is vulnerable to  ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2026-3425 (The RTMKit Addons for Elementor plugin for WordPress is vulnerable to  ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2026-3160 (GitLab has remediated an issue in GitLab CE/EE affecting all versions  ...)
-	TODO: check
+	- gitlab <unfixed>
 CVE-2026-3074 (GitLab has remediated an issue in GitLab CE/EE affecting all versions  ...)
-	TODO: check
+	- gitlab <unfixed>
 CVE-2026-3073 (GitLab has remediated an issue in GitLab CE/EE affecting all versions  ...)
-	TODO: check
+	- gitlab <unfixed>
 CVE-2026-3004 (The Snow Monkey Blocks plugin for WordPress is vulnerable to Stored Cr ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2026-39806 (Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability i ...)
@@ -2049,13 +2049,13 @@ CVE-2026-21821 (The HCL BigFix SCM Reporting site contains an outdated and unsup
 CVE-2026-20916 (An authenticated iControl REST user with low privileges can create or  ...)
 	NOT-FOR-US: F5
 CVE-2026-1659 (GitLab has remediated an issue in GitLab CE/EE affecting all versions  ...)
-	TODO: check
+	- gitlab <unfixed>
 CVE-2026-1338 (GitLab has remediated an issue in GitLab CE/EE affecting all versions  ...)
-	TODO: check
+	- gitlab <unfixed>
 CVE-2026-1322 (GitLab has remediated an issue in GitLab CE/EE affecting all versions  ...)
-	TODO: check
+	- gitlab <unfixed>
 CVE-2026-1184 (GitLab has remediated an issue in GitLab EE affecting all versions fro ...)
-	TODO: check
+	- gitlab <not-affected> (Specific to EE)
 CVE-2026-0265 (An authentication bypass vulnerability in Palo Alto Networks PAN-OS\xa ...)
 	NOT-FOR-US: Palo Alto Networks
 CVE-2026-0264 (A buffer overflow vulnerability in the DNS proxy and DNS Server featur ...)
@@ -2127,15 +2127,15 @@ CVE-2025-27850 (The locally served web site on the Garmin WDU (v1 1.4.6 and v2 5
 CVE-2025-15345 (The MapGeo \u2013 Interactive Geo Maps plugin for WordPress is vulnera ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-14870 (GitLab has remediated an issue in GitLab CE/EE affecting all versions  ...)
-	TODO: check
+	- gitlab <unfixed>
 CVE-2025-14869 (GitLab has remediated an issue in GitLab CE/EE affecting all versions  ...)
-	TODO: check
+	- gitlab <unfixed>
 CVE-2025-14767 (The WPC Badge Management for WooCommerce plugin for WordPress is vulne ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-13874 (GitLab has remediated an issue in GitLab CE/EE affecting all versions  ...)
-	TODO: check
+	- gitlab <unfixed>
 CVE-2025-12669 (GitLab has remediated an issue in GitLab CE/EE affecting all versions  ...)
-	TODO: check
+	- gitlab <unfixed>
 CVE-2024-55045 (Firmament-Autopilot FMT-Firmware commit de5aec was discovered to conta ...)
 	NOT-FOR-US: Firmament-Autopilot FMT-Firmware
 CVE-2024-51395 (Buffer Overflow vulnerability in Ardupiot Copter Latest commit 92693e0 ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b9e052cf551540662dd2db98cb28ea3f9f9a613e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b9e052cf551540662dd2db98cb28ea3f9f9a613e
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260517/47f171fa/attachment-0001.htm>