[Git][security-tracker-team/security-tracker][master] Add CVE-2026-8830/keycloak, itp'ed

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6231627f by Salvatore Bonaccorso at 2026-05-19T09:35:15+02:00
Add CVE-2026-8830/keycloak, itp'ed

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5,7 +5,7 @@ CVE-2026-8851 (SOGo 5.12.7 contains a SQL injection vulnerability in the Access
 CVE-2026-8838 (Unsafe use of Python's eval() on server-received data in the vector_in ...)
 	NOT-FOR-US: Amazon
 CVE-2026-8830 (A flaw was found in Keycloak. An authenticated user can bypass configu ...)
-	TODO: check
+	- keycloak <itp> (bug #1088287)
 CVE-2026-8814 (Versions of the package exifreader before 4.39.0 are vulnerable to Imp ...)
 	TODO: check
 CVE-2026-8813 (This affects versions of the package exifreader before 4.39.0. A craft ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6231627f51c606bbb493af59f4105ff6d34d57b6

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6231627f51c606bbb493af59f4105ff6d34d57b6
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260519/7aa7cae9/attachment.htm>