[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu May 21 20:13:52 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
4abebfa0 by security tracker role at 2026-05-21T19:13:43+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,39 +1,201 @@
-CVE-2026-46473
+CVE-2026-9157 (Improper input validation, Unrestricted upload of file with dangerous ...)
+ TODO: check
+CVE-2026-9089 (The ConnectWise Automate\u2122 Agent does not fully verify the authent ...)
+ TODO: check
+CVE-2026-5434 (Honeywell Control Network Module (CNM)contains insertion of sensitive ...)
+ TODO: check
+CVE-2026-5433 (Honeywell Control Network Module (CNM)contains command injection vulne ...)
+ TODO: check
+CVE-2026-5118 (The Divi Form Builder plugin for WordPress is vulnerable to privilege ...)
+ TODO: check
+CVE-2026-4858 (Mattermost versions 11.6.x <= 11.6.0, 11.5.x <= 11.5.3, 11.4.x <= 11.4 ...)
+ TODO: check
+CVE-2026-4055 (Mattermost versions 11.5.x <= 11.5.1 fail to validate team-level run_c ...)
+ TODO: check
+CVE-2026-48249 (Open ISES Tickets before 3.44.2 disables TLS certificate verification ...)
+ TODO: check
+CVE-2026-48248 (Open ISES Tickets before 3.44.2 disables TLS certificate verification ...)
+ TODO: check
+CVE-2026-48247 (Open ISES Tickets before 3.44.2 disables TLS certificate verification ...)
+ TODO: check
+CVE-2026-48246 (Open ISES Tickets before 3.44.2 disables TLS certificate verification ...)
+ TODO: check
+CVE-2026-48245 (Open ISES Tickets before 3.44.2 embeds a hardcoded Google Maps API key ...)
+ TODO: check
+CVE-2026-48244 (Open ISES Tickets before 3.44.2 embeds a hardcoded Google Maps API key ...)
+ TODO: check
+CVE-2026-48243 (Open ISES Tickets before 3.44.2 embeds a hardcoded WhitePages reverse- ...)
+ TODO: check
+CVE-2026-48242 (Open ISES Tickets before 3.44.2 contains hardcoded MySQL database conn ...)
+ TODO: check
+CVE-2026-48241 (Open ISES Tickets before 3.44.2 contains hardcoded MySQL database cred ...)
+ TODO: check
+CVE-2026-48240 (Open ISES Tickets before 3.44.2 contains a SQL injection vulnerability ...)
+ TODO: check
+CVE-2026-48239 (Open ISES Tickets before 3.44.2 contains a SQL injection vulnerability ...)
+ TODO: check
+CVE-2026-48238 (Open ISES Tickets before 3.44.2 contains a SQL injection vulnerability ...)
+ TODO: check
+CVE-2026-48237 (Open ISES Tickets before 3.44.2 contains a SQL injection vulnerability ...)
+ TODO: check
+CVE-2026-48236 (Open ISES Tickets before 3.44.2 contains a SQL injection vulnerability ...)
+ TODO: check
+CVE-2026-48235 (Open ISES Tickets before 3.44.2 contains a SQL injection vulnerability ...)
+ TODO: check
+CVE-2026-48234 (Open ISES Tickets before 3.44.2 contains a SQL injection vulnerability ...)
+ TODO: check
+CVE-2026-48233 (Open ISES Tickets before 3.44.2 contains a SQL injection vulnerability ...)
+ TODO: check
+CVE-2026-48232 (Open ISES Tickets before 3.44.2 contains a SQL injection vulnerability ...)
+ TODO: check
+CVE-2026-48231 (Open ISES Tickets before 3.44.2 contains a SQL injection vulnerability ...)
+ TODO: check
+CVE-2026-48230 (Open ISES Tickets before 3.44.2 contains a reflected cross-site script ...)
+ TODO: check
+CVE-2026-48229 (Open ISES Tickets before 3.44.2 contains a reflected cross-site script ...)
+ TODO: check
+CVE-2026-48228 (Open ISES Tickets before 3.44.2 contains a reflected cross-site script ...)
+ TODO: check
+CVE-2026-48227 (Open ISES Tickets before 3.44.2 contains a reflected cross-site script ...)
+ TODO: check
+CVE-2026-48226 (Open ISES Tickets before 3.44.2 contains a reflected cross-site script ...)
+ TODO: check
+CVE-2026-48225 (Open ISES Tickets before 3.44.2 contains a reflected cross-site script ...)
+ TODO: check
+CVE-2026-48224 (Open ISES Tickets before 3.44.2 contains a reflected cross-site script ...)
+ TODO: check
+CVE-2026-48223 (Open ISES Tickets before 3.44.2 contains a reflected cross-site script ...)
+ TODO: check
+CVE-2026-48222 (Open ISES Tickets before 3.44.2 contains a reflected cross-site script ...)
+ TODO: check
+CVE-2026-48221 (Open ISES Tickets before 3.44.2 contains a reflected cross-site script ...)
+ TODO: check
+CVE-2026-48220 (Open ISES Tickets before 3.44.2 contains a reflected cross-site script ...)
+ TODO: check
+CVE-2026-48219 (Open ISES Tickets before 3.44.2 contains a reflected cross-site script ...)
+ TODO: check
+CVE-2026-48218 (Open ISES Tickets before 3.44.2 contains a reflected cross-site script ...)
+ TODO: check
+CVE-2026-48217 (Open ISES Tickets before 3.44.2 contains a reflected cross-site script ...)
+ TODO: check
+CVE-2026-48216 (Open ISES Tickets before 3.44.2 contains a reflected cross-site script ...)
+ TODO: check
+CVE-2026-48215 (Open ISES Tickets before 3.44.2 contains a reflected cross-site script ...)
+ TODO: check
+CVE-2026-48214 (Open ISES Tickets before 3.44.2 contains a reflected cross-site script ...)
+ TODO: check
+CVE-2026-48213 (Open ISES Tickets before 3.44.2 contains a reflected cross-site script ...)
+ TODO: check
+CVE-2026-48207 (Deserialization of untrusted data in Apache Fory PyFory. PyFory's Redu ...)
+ TODO: check
+CVE-2026-45760 ((Externally Controlled Reference to a Resource in Another Sphere), (Au ...)
+ TODO: check
+CVE-2026-45255 (When bsdinstall or bsdconfig are prompted to scan for nearby Wi-Fi net ...)
+ TODO: check
+CVE-2026-45254 (In the case of the cap_net service, when a key present in the old limi ...)
+ TODO: check
+CVE-2026-45253 (ptrace(PT_SC_REMOTE) failed to properly validate parameters for the sy ...)
+ TODO: check
+CVE-2026-45252 (When a fusefs file system implements extended attributes, the kernel m ...)
+ TODO: check
+CVE-2026-45251 (A file descriptor can be closed while a thread is blocked in a poll(2) ...)
+ TODO: check
+CVE-2026-45208 (A time-of-check time-of-use vulnerability in the Apex One/SEP agent co ...)
+ TODO: check
+CVE-2026-45207 (An origin validation vulnerability in the Apex One/SEP agent could all ...)
+ TODO: check
+CVE-2026-45206 (An origin validation vulnerability in the Apex One/SEP agent could all ...)
+ TODO: check
+CVE-2026-39593 (Missing Authorization vulnerability in VillaTheme HAPPY allows Exploit ...)
+ TODO: check
+CVE-2026-39531 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
+ TODO: check
+CVE-2026-39461 (libcasper(3) communicates with helper processes via UNIX domain socket ...)
+ TODO: check
+CVE-2026-36189 (Buffer Overflow vulnerability in Uncrustify Project Affected v.Uncrust ...)
+ TODO: check
+CVE-2026-34930 (An origin validation vulnerability in the Apex One/SEP agent could all ...)
+ TODO: check
+CVE-2026-34929 (An origin validation vulnerability in the Apex One/SEP agent could all ...)
+ TODO: check
+CVE-2026-34928 (An origin validation vulnerability in the Apex One/SEP agent could all ...)
+ TODO: check
+CVE-2026-34927 (An origin validation vulnerability in the Apex One/SEP agent could all ...)
+ TODO: check
+CVE-2026-34926 (A directory traversal vulnerability in the Apex One (on-premise) serve ...)
+ TODO: check
+CVE-2026-2740 (Zohocorp ManageEngine ADSelfService Plus version before 6525, DataSecu ...)
+ TODO: check
+CVE-2026-28764 (MediaArea MediaInfoLib LXF element parsing heap-based buffer overflow ...)
+ TODO: check
+CVE-2026-27393 (Missing Authorization vulnerability in Tobias CF7 WOW Styler allows Ex ...)
+ TODO: check
+CVE-2026-27349 (Exposure of Sensitive System Information to an Unauthorized Control Sp ...)
+ TODO: check
+CVE-2026-22880 (Mattermost Mobile Apps versions <=2.37 11.4 2.0.37 11.0.4 11.1.3 11.3. ...)
+ TODO: check
+CVE-2026-1816 (Improper restriction of excessive authentication attempts vulnerabilit ...)
+ TODO: check
+CVE-2026-1815 (Insufficient session expiration vulnerability in Turkiye Electricity T ...)
+ TODO: check
+CVE-2026-0393 (The affected product may expose credentials remotely between low privi ...)
+ TODO: check
+CVE-2025-71217 (An origin validation error vulnerability in the Trend Micro Apex One ( ...)
+ TODO: check
+CVE-2025-71216 (A time-of-check time-of-use vulnerability in the Trend Micro Apex One ...)
+ TODO: check
+CVE-2025-71215 (A time-of-check time-of-use vulnerability in the Trend Micro Apex One ...)
+ TODO: check
+CVE-2025-71214 (An origin validation error vulnerability in the Trend Micro Apex One ( ...)
+ TODO: check
+CVE-2025-71213 (An origin validation error vulnerability in Trend Micro Apex One could ...)
+ TODO: check
+CVE-2025-71212 (A link following vulnerability in the Trend Micro Apex One scan engine ...)
+ TODO: check
+CVE-2025-71211 (A vulnerability in the Trend Micro Apex One management console could a ...)
+ TODO: check
+CVE-2025-71210 (A vulnerability in the Trend Micro Apex One management console could a ...)
+ TODO: check
+CVE-2025-13479 (Authorization bypass through User-Controlled key vulnerability in PosC ...)
+ TODO: check
+CVE-2025-13477 (Exposure of private personal information to an unauthorized actor, Ins ...)
+ TODO: check
+CVE-2026-46473 (Authen::TOTP versions before 0.1.1 for Perl generate secrets using ran ...)
NOT-FOR-US: Authen::TOTP Perl module
-CVE-2026-43498 [accel/ivpu: Disallow re-exporting imported GEM objects]
+CVE-2026-43498 (In the Linux kernel, the following vulnerability has been resolved: a ...)
- linux 7.0.7-1
[trixie] - linux <not-affected> (Vulnerable code not present)
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/7dd57d7a6350770dfc283287125c409e995200e0 (7.1-rc3)
-CVE-2026-43502 [net/rds: handle zerocopy send cleanup before the message is queued]
+CVE-2026-43502 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 7.0.7-1
[trixie] - linux 6.12.88-1
NOTE: https://git.kernel.org/linus/44b550d88b267320459d518c0743a241ab2108fa (7.1-rc3)
-CVE-2026-43501 [ipv6: rpl: reserve mac_len headroom when recompressed SRH grows]
+CVE-2026-43501 (In the Linux kernel, the following vulnerability has been resolved: i ...)
- linux 7.0.4-1
[trixie] - linux 6.12.86-1
NOTE: https://git.kernel.org/linus/9e6bf146b55999a095bb14f73a843942456d1adc (7.1-rc2)
-CVE-2026-43499 [rtmutex: Use waiter::task instead of current in remove_waiter()]
+CVE-2026-43499 (In the Linux kernel, the following vulnerability has been resolved: r ...)
- linux 7.0.4-1
[trixie] - linux 6.12.86-1
NOTE: https://git.kernel.org/linus/3bfdc63936dd4773109b7b8c280c0f3b5ae7d349 (7.1-rc1)
-CVE-2026-43497 [fbdev: udlfb: add vm_ops to dlfb_ops_mmap to prevent use-after-free]
+CVE-2026-43497 (In the Linux kernel, the following vulnerability has been resolved: f ...)
- linux 7.0.7-1
[trixie] - linux 6.12.88-1
NOTE: https://git.kernel.org/linus/8de779dc40d35d39fa07387b6f921eb11df0f511 (7.1-rc3)
-CVE-2026-43496 [net/sched: sch_red: Replace direct dequeue call with peek and qdisc_dequeue_peeked]
+CVE-2026-43496 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 7.0.7-1
[trixie] - linux 6.12.88-1
NOTE: https://git.kernel.org/linus/458d5615272d3de535748342eb68ca492343048c (7.1-rc3)
-CVE-2026-43495 [net: wwan: t7xx: validate port_count against message length in t7xx_port_enum_msg_handler]
+CVE-2026-43495 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux 7.0.7-1
[trixie] - linux 6.12.88-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/0e7c074cfcd9bd93765505f9eb8b42f03ed2a744 (7.1-rc3)
CVE-2026-47243
NOT-FOR-US: Kata Containers
-CVE-2026-45250
+CVE-2026-45250 (The setcred(2) system call is only available to privileged users. How ...)
NOT-FOR-US: FreeBSD
CVE-2026-42547
NOT-FOR-US: DFIR-IRIS
@@ -132,7 +294,7 @@ CVE-2026-47165
NOTE: https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-2rgj-gx5x-f62w
NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/bb79e91155127dd6c3c18a01c8761e9c2ea82d70 (7.1.2-23)
NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick6/commit/2ca87784a434899067b8408e5f8a7f0165a8f884 (6.9.13-48)
-CVE-2026-43494 [net/rds: reset op_nents when zerocopy page pin fails]
+CVE-2026-43494 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- linux <unfixed>
NOTE: https://git.kernel.org/linus/e174929793195e0cd6a4adb0cad731b39f9019b4 (7.1-rc4)
CVE-2026-47732
@@ -206,51 +368,67 @@ CVE-2026-9133 (Active debug code exists in the ARN resolver of amazon-mq rabbitm
CVE-2026-9129 (A path traversal vulnerability exists in the Altium Enterprise Server ...)
NOT-FOR-US: Altium
CVE-2026-9126 (Use after free in DOM in Google Chrome on prior to 148.0.7778.179 allo ...)
+ {DSA-6287-1}
- chromium 148.0.7778.178-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-9124 (Insufficient validation of untrusted input in Input in Google Chrome o ...)
+ {DSA-6287-1}
- chromium 148.0.7778.178-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-9123 (Heap buffer overflow in Chromecast in Google Chrome on Android, Linux, ...)
+ {DSA-6287-1}
- chromium 148.0.7778.178-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-9122 (Out of bounds read in GPU in Google Chrome on Mac prior to 148.0.7778. ...)
+ {DSA-6287-1}
- chromium 148.0.7778.178-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-9121 (Out of bounds read in GPU in Google Chrome on prior to 148.0.7778.179 ...)
+ {DSA-6287-1}
- chromium 148.0.7778.178-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-9120 (Use after free in WebRTC in Google Chrome prior to 148.0.7778.179 allo ...)
+ {DSA-6287-1}
- chromium 148.0.7778.178-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-9119 (Heap buffer overflow in WebRTC in Google Chrome on prior to 148.0.7778 ...)
+ {DSA-6287-1}
- chromium 148.0.7778.178-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-9118 (Use after free in XR in Google Chrome on Windows prior to 148.0.7778.1 ...)
+ {DSA-6287-1}
- chromium 148.0.7778.178-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-9117 (Type Confusion in GFX in Google Chrome on Linux, ChromeOS prior to 148 ...)
+ {DSA-6287-1}
- chromium 148.0.7778.178-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-9116 (Insufficient policy enforcement in ServiceWorker in Google Chrome on p ...)
+ {DSA-6287-1}
- chromium 148.0.7778.178-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-9115 (Insufficient policy enforcement in Service Worker in Google Chrome on ...)
+ {DSA-6287-1}
- chromium 148.0.7778.178-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-9114 (Use after free in QUIC in Google Chrome on prior to 148.0.7778.179 all ...)
+ {DSA-6287-1}
- chromium 148.0.7778.178-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-9113 (Out of bounds read in GPU in Google Chrome on Mac prior to 148.0.7778. ...)
+ {DSA-6287-1}
- chromium 148.0.7778.178-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-9112 (Use after free in GPU in Google Chrome on Windows prior to 148.0.7778. ...)
+ {DSA-6287-1}
- chromium 148.0.7778.178-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-9111 (Use after free in WebRTC in Google Chrome on Linux prior to 148.0.7778 ...)
+ {DSA-6287-1}
- chromium 148.0.7778.178-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-9110 (Inappropriate implementation in UI in Google Chrome on Windows prior t ...)
+ {DSA-6287-1}
- chromium 148.0.7778.178-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-9102 (A path traversal vulnerability exists in the Altium Enterprise Server ...)
@@ -589,7 +767,7 @@ CVE-2026-44227
- request-tracker5 5.0.10+dfsg-1
- request-tracker4 <unfixed>
NOTE: https://github.com/bestpractical/rt/releases/tag/rt-5.0.10
-CVE-2026-6841
+CVE-2026-6841 (Request Tracker is vulnerable to a reflected cross-site scripting (XSS ...)
- request-tracker5 5.0.10+dfsg-1
- request-tracker4 <unfixed>
NOTE: https://github.com/bestpractical/rt/releases/tag/rt-5.0.10
@@ -608,34 +786,34 @@ CVE-2026-44231
CVE-2026-XXXX [RUSTSEC-2026-0145]
- rust-astral-tokio-tar 0.6.2-1
NOTE: https://rustsec.org/advisories/RUSTSEC-2026-0145.html
-CVE-2026-41999
+CVE-2026-41999 (Incorrect Behaviour of Views with TCP PROXY Requests)
- pdns 5.0.5-1
[bookworm] - pdns <end-of-life> (See #1119290)
[bullseye] - pdns <end-of-life> (see DLA 4471)
NOTE: https://docs.powerdns.com/authoritative/security-advisories/powerdns-advisory-2026-06.html#incorrect-behaviour-of-views-with-tcp-proxy-requests
NOTE: https://github.com/PowerDNS/pdns/commit/6b0567a56642f22bc9338bb4a4caeaaecde40f27 (auth-5.0.5)
-CVE-2026-42000
+CVE-2026-42000 (Insufficient Validation of Names During AXFR)
{DSA-6284-1}
- pdns 5.0.5-1
[bookworm] - pdns <end-of-life> (See #1119290)
[bullseye] - pdns <end-of-life> (see DLA 4471)
NOTE: https://docs.powerdns.com/authoritative/security-advisories/powerdns-advisory-2026-06.html#insufficient-validation-of-names-during-axfr
NOTE: https://github.com/PowerDNS/pdns/commit/7473d0e899f876507b001ba2966a82aafdce025e (auth-5.0.5)
-CVE-2026-42001
+CVE-2026-42001 (Insufficient Validation of Autoprimary SOA Queries)
{DSA-6284-1}
- pdns 5.0.5-1
[bookworm] - pdns <end-of-life> (See #1119290)
[bullseye] - pdns <end-of-life> (see DLA 4471)
NOTE: https://docs.powerdns.com/authoritative/security-advisories/powerdns-advisory-2026-06.html#insufficient-validation-of-autoprimary-soa-queries
NOTE: https://github.com/PowerDNS/pdns/commit/4459ba81e6674039e40bf15f177424f6b52cdd90 (auth-5.0.5)
-CVE-2026-42002
+CVE-2026-42002 (Concurrency and locking defects in GSS-TSIG)
{DSA-6284-1}
- pdns 5.0.5-1
[bookworm] - pdns <end-of-life> (See #1119290)
[bullseye] - pdns <end-of-life> (see DLA 4471)
NOTE: https://docs.powerdns.com/authoritative/security-advisories/powerdns-advisory-2026-06.html#concurrency-and-locking-defects-in-gss-tsig
NOTE: https://github.com/PowerDNS/pdns/commit/27c388790cb49a11229732ee658c047bcdec9c96 (auth-5.0.5)
-CVE-2026-42396
+CVE-2026-42396 (Insufficient Validation of Member Zone Data May Cause Catalog Zone Tra ...)
{DSA-6284-1}
- pdns 5.0.5-1
[bookworm] - pdns <end-of-life> (See #1119290)
@@ -1178,6 +1356,7 @@ CVE-2026-5090 (Template::Plugin::HTML versions through 3.102 for Perl allows HTM
NOTE: https://github.com/cpan-authors/Template2/pull/337
NOTE: Fixed by: https://github.com/cpan-authors/Template2/commit/11c78a7a771d4af505efeb754a0b8775689c2eae
CVE-2026-46529
+ {DSA-6286-1}
- evince 49~alpha-3
- evince-gtk3 48.4+dfsg-1 (unimportant)
- atril 1.28.4-1
@@ -1192,7 +1371,7 @@ CVE-2026-46529
NOTE: Fixed by: https://gitlab.gnome.org/GNOME/papers/-/commit/1b82bf627b4d8b414a57b55a9095e6d361799d6c
NOTE: No security impact in evince-gtk3 since affected code not built in binary package.
CVE-2026-8975 (Memory safety bugs present in Thunderbird 140.10 and Thunderbird 150. ...)
- {DSA-6283-1 DLA-4592-1}
+ {DSA-6288-1 DSA-6283-1 DLA-4592-1}
- firefox 151.0-1
- firefox-esr 140.11.0esr-1
- thunderbird 1:140.11.0esr-1
@@ -1200,7 +1379,7 @@ CVE-2026-8975 (Memory safety bugs present in Thunderbird 140.10 and Thunderbird
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-48/#CVE-2026-8975
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-51/#CVE-2026-8975
CVE-2026-8974 (Memory safety bugs present in Thunderbird 140.10 and Thunderbird 150. ...)
- {DSA-6283-1 DLA-4592-1}
+ {DSA-6288-1 DSA-6283-1 DLA-4592-1}
- firefox 151.0-1
- firefox-esr 140.11.0esr-1
- thunderbird 1:140.11.0esr-1
@@ -1217,7 +1396,7 @@ CVE-2026-8971 (Same-origin policy bypass in the Networking: JAR component. This
- firefox 151.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-46/#CVE-2026-8971
CVE-2026-8970 (Privilege escalation in the Security component. This vulnerability was ...)
- {DSA-6283-1 DLA-4592-1}
+ {DSA-6288-1 DSA-6283-1 DLA-4592-1}
- firefox 151.0-1
- firefox-esr 140.11.0esr-1
- thunderbird 1:140.11.0esr-1
@@ -1228,7 +1407,7 @@ CVE-2026-8969 (Mitigation bypass in the DOM: Security component. This vulnerabil
- firefox 151.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-46/#CVE-2026-8969
CVE-2026-8968 (Denial-of-service due to invalid pointer in the Audio/Video: Web Codec ...)
- {DSA-6283-1 DLA-4592-1}
+ {DSA-6288-1 DSA-6283-1 DLA-4592-1}
- firefox 151.0-1
- firefox-esr 140.11.0esr-1
- thunderbird 1:140.11.0esr-1
@@ -1251,7 +1430,7 @@ CVE-2026-8963 (Spoofing issue in the Web Speech component. This vulnerability wa
- firefox 151.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-46/#CVE-2026-8963
CVE-2026-8962 (Mitigation bypass in the DOM: Security component. This vulnerability w ...)
- {DSA-6283-1 DLA-4592-1}
+ {DSA-6288-1 DSA-6283-1 DLA-4592-1}
- firefox 151.0-1
- firefox-esr 140.11.0esr-1
- thunderbird 1:140.11.0esr-1
@@ -1259,7 +1438,7 @@ CVE-2026-8962 (Mitigation bypass in the DOM: Security component. This vulnerabil
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-48/#CVE-2026-8962
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-51/#CVE-2026-8962
CVE-2026-8961 (Spoofing issue in the Form Autofill component. This vulnerability was ...)
- {DSA-6283-1 DLA-4592-1}
+ {DSA-6288-1 DSA-6283-1 DLA-4592-1}
- firefox 151.0-1
- firefox-esr 140.11.0esr-1
- thunderbird 1:140.11.0esr-1
@@ -1277,7 +1456,7 @@ CVE-2026-8959 (Sandbox escape due to incorrect boundary conditions in the Widget
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-48/#CVE-2026-8959
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-51/#CVE-2026-8959
CVE-2026-8958 (Information disclosure, sandbox escape in the Security: Process Sandbo ...)
- {DSA-6283-1 DLA-4592-1}
+ {DSA-6288-1 DSA-6283-1 DLA-4592-1}
- firefox 151.0-1
- firefox-esr 140.11.0esr-1
- thunderbird 1:140.11.0esr-1
@@ -1285,7 +1464,7 @@ CVE-2026-8958 (Information disclosure, sandbox escape in the Security: Process S
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-48/#CVE-2026-8958
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-51/#CVE-2026-8958
CVE-2026-8957 (Privilege escalation in the Enterprise Policies component. This vulner ...)
- {DSA-6283-1 DLA-4592-1}
+ {DSA-6288-1 DSA-6283-1 DLA-4592-1}
- firefox 151.0-1
- firefox-esr 140.11.0esr-1
- thunderbird 1:140.11.0esr-1
@@ -1293,7 +1472,7 @@ CVE-2026-8957 (Privilege escalation in the Enterprise Policies component. This v
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-48/#CVE-2026-8957
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-51/#CVE-2026-8957
CVE-2026-8956 (Integer overflow in the Networking: JAR component. This vulnerability ...)
- {DSA-6283-1 DLA-4592-1}
+ {DSA-6288-1 DSA-6283-1 DLA-4592-1}
- firefox 151.0-1
- firefox-esr 140.11.0esr-1
- thunderbird 1:140.11.0esr-1
@@ -1301,7 +1480,7 @@ CVE-2026-8956 (Integer overflow in the Networking: JAR component. This vulnerabi
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-48/#CVE-2026-8956
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-51/#CVE-2026-8956
CVE-2026-8955 (Privilege escalation in the DOM: Workers component. This vulnerability ...)
- {DSA-6283-1 DLA-4592-1}
+ {DSA-6288-1 DSA-6283-1 DLA-4592-1}
- firefox 151.0-1
- firefox-esr 140.11.0esr-1
- thunderbird 1:140.11.0esr-1
@@ -1309,7 +1488,7 @@ CVE-2026-8955 (Privilege escalation in the DOM: Workers component. This vulnerab
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-48/#CVE-2026-8955
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-51/#CVE-2026-8955
CVE-2026-8954 (Incorrect boundary conditions, integer overflow in the Audio/Video com ...)
- {DSA-6283-1 DLA-4592-1}
+ {DSA-6288-1 DSA-6283-1 DLA-4592-1}
- firefox 151.0-1
- firefox-esr 140.11.0esr-1
- thunderbird 1:140.11.0esr-1
@@ -1317,7 +1496,7 @@ CVE-2026-8954 (Incorrect boundary conditions, integer overflow in the Audio/Vide
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-48/#CVE-2026-8954
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-51/#CVE-2026-8954
CVE-2026-8953 (Sandbox escape due to use-after-free in the Disability Access APIs com ...)
- {DSA-6283-1 DLA-4592-1}
+ {DSA-6288-1 DSA-6283-1 DLA-4592-1}
- firefox 151.0-1
- firefox-esr 140.11.0esr-1
- thunderbird 1:140.11.0esr-1
@@ -1331,7 +1510,7 @@ CVE-2026-8951 (Spoofing issue in the Toolbar component in Firefox for Android. T
- firefox <not-affected> (Only affects Firefox on Android)
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-46/#CVE-2026-8951
CVE-2026-8950 (Same-origin policy bypass in the Networking: HTTP component. This vuln ...)
- {DSA-6283-1 DLA-4592-1}
+ {DSA-6288-1 DSA-6283-1 DLA-4592-1}
- firefox 151.0-1
- firefox-esr 140.11.0esr-1
- thunderbird 1:140.11.0esr-1
@@ -1349,7 +1528,7 @@ CVE-2026-8948 (Same-origin policy bypass in the DOM: Networking component. This
- firefox 151.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-46/#CVE-2026-8948
CVE-2026-8947 (Use-after-free in the DOM: Bindings (WebIDL) component. This vulnerabi ...)
- {DSA-6283-1 DLA-4592-1}
+ {DSA-6288-1 DSA-6283-1 DLA-4592-1}
- firefox 151.0-1
- firefox-esr 140.11.0esr-1
- thunderbird 1:140.11.0esr-1
@@ -1357,7 +1536,7 @@ CVE-2026-8947 (Use-after-free in the DOM: Bindings (WebIDL) component. This vuln
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-48/#CVE-2026-8947
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-51/#CVE-2026-8947
CVE-2026-8946 (Incorrect boundary conditions in the Audio/Video: Web Codecs component ...)
- {DSA-6283-1 DLA-4592-1}
+ {DSA-6288-1 DSA-6283-1 DLA-4592-1}
- firefox 151.0-1
- firefox-esr 140.11.0esr-1
- thunderbird 1:140.11.0esr-1
@@ -2497,135 +2676,135 @@ CVE-2023-31316 (Improperly preserved integrity of hardware configuration state d
TODO: check
CVE-2023-31309 (Improper validation in Power Management Firmware (PMFW) may allow an a ...)
TODO: check
-CVE-2026-44068
+CVE-2026-44068 (Incomplete sanitization of extended attribute (EA) path components in ...)
{DSA-6280-1}
- netatalk 4.4.3~ds-1 (bug #1137121)
NOTE: https://netatalk.io/security/CVE-2026-44068
-CVE-2026-44066
+CVE-2026-44066 (Multiple heap out-of-bounds reads in the Spotlight RPC unmarshalling c ...)
{DSA-6280-1}
- netatalk 4.4.3~ds-1 (bug #1137120)
NOTE: https://netatalk.io/security/CVE-2026-44066
-CVE-2026-44064
+CVE-2026-44064 (An out-of-bounds read in ASP session ID handling in Netatalk 1.3 throu ...)
{DSA-6280-1}
- netatalk 4.4.3~ds-1 (bug #1137133)
NOTE: https://netatalk.io/security/CVE-2026-44064
-CVE-2026-44062
+CVE-2026-44062 (A missing output length bounds check in pull_charset_flags() in Netata ...)
{DSA-6280-1}
- netatalk 4.4.3~ds-1 (bug #1137118)
NOTE: https://netatalk.io/security/CVE-2026-44062
-CVE-2026-44060
+CVE-2026-44060 (An integer underflow in dsi_writeinit() in Netatalk 1.5.0 through 4.4. ...)
{DSA-6280-1}
- netatalk 4.4.3~ds-1 (bug #1137117)
NOTE: https://netatalk.io/security/CVE-2026-44060
-CVE-2026-44057
+CVE-2026-44057 (A dead bounds check in the Spotlight RPC unmarshaller in Netatalk 3.0. ...)
{DSA-6280-1}
- netatalk 4.4.3~ds-1 (bug #1137116)
NOTE: https://netatalk.io/security/CVE-2026-44057
-CVE-2026-44055
+CVE-2026-44055 (A logic error involving bitwise OR operations in Netatalk 3.1.4 throug ...)
{DSA-6280-1}
- netatalk 4.4.3~ds-1 (bug #1137119)
NOTE: https://netatalk.io/security/CVE-2026-44055
-CVE-2026-44054
+CVE-2026-44054 (Netatalk 2.0.0 through 4.4.2 generates AFP session tokens derived from ...)
{DSA-6280-1}
- netatalk 4.4.3~ds-1 (bug #1137115)
NOTE: https://netatalk.io/security/CVE-2026-44054
-CVE-2026-44052
+CVE-2026-44052 (Netatalk 2.1.0 through 4.4.2 inserts LDAP simple-bind passwords into l ...)
{DSA-6280-1}
- netatalk 4.4.3~ds-1
NOTE: https://netatalk.io/security/CVE-2026-44052
-CVE-2026-44051
+CVE-2026-44051 (An improper link resolution vulnerability in Netatalk 3.0.2 through 4. ...)
{DSA-6280-1}
- netatalk 4.4.3~ds-1 (bug #1137132)
NOTE: https://netatalk.io/security/CVE-2026-44051
-CVE-2026-44050
+CVE-2026-44050 (A heap-based buffer overflow in the CNID daemon comm_rcv() function in ...)
{DSA-6280-1}
- netatalk 4.4.3~ds-1 (bug #1137131)
NOTE: https://netatalk.io/security/CVE-2026-44050
-CVE-2026-44049
+CVE-2026-44049 (An out-of-bounds write due to improper null termination in convert_cha ...)
{DSA-6280-1}
- netatalk 4.4.3~ds-1 (bug #1137130)
NOTE: https://netatalk.io/security/CVE-2026-44049
-CVE-2026-44048
+CVE-2026-44048 (A stack-based buffer overflow via UCS-2 type confusion in convert_char ...)
{DSA-6280-1}
- netatalk 4.4.3~ds-1 (bug #1137129)
NOTE: https://netatalk.io/security/CVE-2026-44048
-CVE-2026-44047
+CVE-2026-44047 (An SQL injection vulnerability in the MySQL CNID backend in Netatalk 3 ...)
{DSA-6280-1}
- netatalk 4.4.3~ds-1 (bug #1137108)
NOTE: https://netatalk.io/security/CVE-2026-44047
-CVE-2026-7837
+CVE-2026-7837 (A time-of-check time-of-use (TOCTOU) condition in the ad_flush functio ...)
- netatalk <unfixed> (unimportant)
NOTE: https://netatalk.io/security/CVE-2026-7837
NOTE: No security impact per upstream assessment
-CVE-2026-7836
+CVE-2026-7836 (An incorrect calculation in the hextoint macro in Netatalk 2.0.0 throu ...)
- netatalk <unfixed> (unimportant)
NOTE: https://netatalk.io/security/CVE-2026-7836
NOTE: No security impact per upstream assessment
-CVE-2026-7835
+CVE-2026-7835 (A format string argument mismatch in Netatalk 3.0.3 through 4.4.2 allo ...)
- netatalk <unfixed> (unimportant)
NOTE: https://netatalk.io/security/CVE-2026-7835
NOTE: No security impact per upstream assessment
-CVE-2026-44059
+CVE-2026-44059 (A race condition in the privilege toggle mechanism in Netatalk 2.2.5 t ...)
- netatalk <unfixed> (unimportant)
NOTE: https://netatalk.io/security/CVE-2026-44059
NOTE: No security impact per upstream assessment, just hardening
-CVE-2026-44058
+CVE-2026-44058 (An authentication bypass vulnerability in Netatalk 2.2.2 through 4.4.2 ...)
- netatalk <unfixed>
[trixie] - netatalk <postponed> (Minor issue, revisit when merged upstream)
NOTE: https://netatalk.io/security/CVE-2026-44058
-CVE-2026-44053
+CVE-2026-44053 (Netatalk 1.5.0 through 4.2.2 uses a broken cryptographic algorithm in ...)
- netatalk <unfixed>
[trixie] - netatalk <postponed> (Minor issue, revisit when merged upstream)
NOTE: https://netatalk.io/security/CVE-2026-44053
-CVE-2026-44063
+CVE-2026-44063 (An LDAP injection vulnerability in Netatalk 2.1.0 through 4.4.2 allows ...)
- netatalk <unfixed>
[trixie] - netatalk <postponed> (Minor issue, revisit when merged upstream)
NOTE: https://netatalk.io/security/CVE-2026-44063
-CVE-2026-44061
+CVE-2026-44061 (Netatalk 1.5.0 through 4.4.2 uses DES-ECB for authentication with a ti ...)
- netatalk <unfixed>
[trixie] - netatalk <postponed> (Minor issue, revisit when merged upstream)
NOTE: https://netatalk.io/security/CVE-2026-44061
-CVE-2026-44056
+CVE-2026-44056 (A stack-based buffer overflow in desktop.c in Netatalk 1.3 through 4.2 ...)
- netatalk <unfixed>
[trixie] - netatalk <postponed> (Minor issue, revisit when merged upstream)
NOTE: https://netatalk.io/security/CVE-2026-44056
-CVE-2026-44069
+CVE-2026-44069 (An integer underflow in the volxlate function in Netatalk 3.0.0 throug ...)
- netatalk <unfixed> (unimportant)
NOTE: https://netatalk.io/security/CVE-2026-44069
NOTE: No security impact per upstream assessment
-CVE-2026-44067
+CVE-2026-44067 (A heap over-read in extended attribute (EA) header parsing in Netatalk ...)
- netatalk <unfixed>
[trixie] - netatalk <postponed> (Minor issue, revisit when merged upstream)
NOTE: https://netatalk.io/security/CVE-2026-44067
-CVE-2026-44065
+CVE-2026-44065 (An off-by-two error in lp_write() in papd in Netatalk 2.0.0 through 4. ...)
- netatalk <unfixed>
[trixie] - netatalk <postponed> (Minor issue, revisit when merged upstream)
NOTE: https://netatalk.io/security/CVE-2026-44065
-CVE-2026-44072
+CVE-2026-44072 (Netatalk 2.2.1 through 4.4.2 calls system() after a failed chdir() wit ...)
- netatalk <unfixed> (unimportant)
NOTE: https://netatalk.io/security/CVE-2026-44072
NOTE: No security impact per upstream assessment
-CVE-2026-44071
+CVE-2026-44071 (Netatalk 3.1.2 through 4.4.2 is compiled without FORTIFY_SOURCE, which ...)
- netatalk <unfixed> (unimportant)
NOTE: https://netatalk.io/security/CVE-2026-44071
NOTE: Missing hardening, not a security issue
-CVE-2026-44070
+CVE-2026-44070 (An unbounded memory reallocation in the charset conversion code in Net ...)
- netatalk <unfixed> (unimportant)
NOTE: https://netatalk.io/security/CVE-2026-44070
NOTE: Not exploitable per upstream assessment
-CVE-2026-44075
+CVE-2026-44075 (A missing break statement in DSI OpenSession processing in Netatalk 1. ...)
- netatalk <unfixed> (unimportant)
NOTE: https://netatalk.io/security/CVE-2026-44075
NOTE: No security impact per upstream assessment
-CVE-2026-44074
+CVE-2026-44074 (Netatalk 2.1.0 through 4.4.2 combines multiple errno values using bitw ...)
- netatalk <unfixed> (unimportant)
NOTE: https://netatalk.io/security/CVE-2026-44074
NOTE: No security impact per upstream assessment
-CVE-2026-44073
+CVE-2026-44073 (Authentication modules in Netatalk 1.5.0 through 4.4.2 fail to check t ...)
- netatalk <unfixed> (unimportant)
NOTE: https://netatalk.io/security/CVE-2026-44073
NOTE: No security impact per upstream assessment
-CVE-2026-44076
+CVE-2026-44076 (Insufficient sanitization of volume paths in Netatalk 3.1.0 through 4. ...)
{DSA-6280-1}
- netatalk 4.4.3~ds-1 (bug #1137122)
NOTE: https://netatalk.io/security/CVE-2026-44076
@@ -4601,7 +4780,7 @@ CVE-2026-8429 (SPIP versions prior to 4.4.14 contain a remote code execution vul
CVE-2026-8407 (Missing authorization in the PAM module in Devolutions Server allows a ...)
NOT-FOR-US: Devolutions
CVE-2026-8401 (Sandbox escape in the Profile Backup component. This vulnerability was ...)
- {DSA-6283-1 DLA-4592-1}
+ {DSA-6288-1 DSA-6283-1 DLA-4592-1}
- firefox 150.0.3-1
- firefox-esr 140.11.0esr-1
- thunderbird 1:140.11.0esr-1
@@ -4609,7 +4788,7 @@ CVE-2026-8401 (Sandbox escape in the Profile Backup component. This vulnerabilit
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-48/#CVE-2026-8401
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-51/#CVE-2026-8401
CVE-2026-8391 (Other issue in the JavaScript Engine component. This vulnerability was ...)
- {DSA-6283-1 DLA-4592-1}
+ {DSA-6288-1 DSA-6283-1 DLA-4592-1}
- firefox 150.0.3-1
- firefox-esr 140.11.0esr-1
- thunderbird 1:140.11.0esr-1
@@ -4623,7 +4802,7 @@ CVE-2026-8389 (JIT miscompilation in the JavaScript Engine: JIT component. This
- firefox 150.0.3-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2026-45/#CVE-2026-8389
CVE-2026-8388 (Incorrect boundary conditions in the JavaScript Engine: JIT component. ...)
- {DSA-6283-1 DLA-4592-1}
+ {DSA-6288-1 DSA-6283-1 DLA-4592-1}
- firefox 150.0.3-1
- firefox-esr 140.11.0esr-1
- thunderbird 1:140.11.0esr-1
@@ -22745,7 +22924,7 @@ CVE-2026-6194 (A weakness has been identified in Totolink A3002MU B20211125.1046
CVE-2026-6193 (A security flaw has been discovered in PHPGurukul Daily Expense Tracki ...)
NOT-FOR-US: PHPGurukul
CVE-2026-6192 (A vulnerability was identified in uclouvain openjpeg up to 2.5.4. This ...)
- {DSA-6277-1}
+ {DSA-6277-1 DLA-4593-1}
- openjpeg2 2.5.4-1.1 (bug #1133832)
NOTE: https://github.com/uclouvain/openjpeg/issues/1619
NOTE: https://github.com/uclouvain/openjpeg/pull/1628
@@ -49603,7 +49782,7 @@ CVE-2025-67974 (Missing Authorization vulnerability in WP Legal Pages WPLegalPag
NOT-FOR-US: WordPress plugin or theme
CVE-2025-67973 (Missing Authorization vulnerability in sunshinephotocart Sunshine Phot ...)
NOT-FOR-US: WordPress plugin or theme
-CVE-2025-67972 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+CVE-2025-67972 (Missing Authorization vulnerability in Zoho Mail Zoho ZeptoMail allows ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-67971 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
NOT-FOR-US: WordPress plugin or theme
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4abebfa0066ac585c4c97afd5d50ddd7354ddb76
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4abebfa0066ac585c4c97afd5d50ddd7354ddb76
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260521/46bcbd20/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list