[Git][security-tracker-team/security-tracker][master] Reserve DSA number for gnutls28 update

Tue May 19 21:34:31 BST 2026


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e42d5829 by Salvatore Bonaccorso at 2026-05-19T22:33:48+02:00
Reserve DSA number for gnutls28 update

- - - - -


3 changed files:

- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -12762,6 +12762,7 @@ CVE-2026-5419
 	NOTE: Fixed by: https://gitlab.com/gnutls/gnutls/-/commit/1e627aa5ad95c6dc0518d94e9a009997b081a1ab (3.8.13)
 CVE-2026-3832 (A flaw was found in gnutls. A remote attacker could exploit this vulne ...)
 	- gnutls28 3.8.13-1 (bug #1135319)
+	[trixie] - gnutls28 3.8.9-3+deb13u4
 	[bookworm] - gnutls28 <not-affected> (Vulnerable code introduced later)
 	[bullseye] - gnutls28 <not-affected> (Vulnerable code introduced later)
 	NOTE: https://www.gnutls.org/security-new.html#GNUTLS-SA-2026-04-29-12


=====================================
data/DSA/list
=====================================
@@ -1,3 +1,7 @@
+[19 May 2026] DSA-6281-1 gnutls28 - security update
+	{CVE-2026-3833 CVE-2026-5260 CVE-2026-5419 CVE-2026-33845 CVE-2026-33846 CVE-2026-42009 CVE-2026-42010 CVE-2026-42011 CVE-2026-42012 CVE-2026-42013 CVE-2026-42014 CVE-2026-42015}
+	[bookworm] - gnutls28 3.7.9-2+deb12u7
+	[trixie] - gnutls28 3.8.9-3+deb13u4
 [18 May 2026] DSA-6280-1 netatalk - security update
 	{CVE-2026-44047 CVE-2026-44048 CVE-2026-44049 CVE-2026-44050 CVE-2026-44051 CVE-2026-44052 CVE-2026-44054 CVE-2026-44055 CVE-2026-44057 CVE-2026-44060 CVE-2026-44062 CVE-2026-44064 CVE-2026-44066 CVE-2026-44068 CVE-2026-44076 CVE-2026-45354 CVE-2026-45355 CVE-2026-45356 CVE-2026-45698 CVE-2026-45699}
 	[trixie] - netatalk 4.2.3~ds-1+deb13u2


=====================================
data/dsa-needed.txt
=====================================
@@ -38,8 +38,6 @@ frr
 gh/oldstable
   Santiago Vila might work on preparing an update
 --
-gnutls28 (carnil)
---
 haproxy (carnil)
 --
 isc-kea/oldstable



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e42d582978986b5429c586620a96ffd995e74d75

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e42d582978986b5429c586620a96ffd995e74d75
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260519/41384ce5/attachment-0001.htm>
