[Git][security-tracker-team/security-tracker][master] Add Debian bug references for rust-sequoia-openpgp

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri May 22 16:02:51 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
250ae286 by Salvatore Bonaccorso at 2026-05-22T17:02:04+02:00
Add Debian bug references for rust-sequoia-openpgp

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -6635,12 +6635,12 @@ CVE-2026-XXXX [yelp: Sandbox escape]
 	NOTE: Fixed by: https://gitlab.gnome.org/GNOME/yelp/-/commit/d220aa2f754eed4e6a006a4acaa68b31892dea2b (49.1)
 	NOTE: Fixed by: https://gitlab.gnome.org/GNOME/yelp/-/commit/c8c8244c8a812860782d635890c9b6c43ecc2639 (49.1)
 CVE-2026-42784 [openpgp: Don't imply missing key flags from key type]
-	- rust-sequoia-openpgp <unfixed>
+	- rust-sequoia-openpgp <unfixed> (bug #1137328)
 	[trixie] - rust-sequoia-openpgp <no-dsa> (Minor issue)
 	[bookworm] - rust-sequoia-openpgp <no-dsa> (Minor issue)
 	NOTE: Fixed by: https://gitlab.com/sequoia-pgp/sequoia/-/commit/58214b47b110e110432731f8fc5dec71918c4254 (openpgp/v2.3.0)
 CVE-2026-42783 [openpgp: Reject nested embedded signatures]
-	- rust-sequoia-openpgp <unfixed>
+	- rust-sequoia-openpgp <unfixed> (bug #1137326)
 	[trixie] - rust-sequoia-openpgp <no-dsa> (Minor issue)
 	[bookworm] - rust-sequoia-openpgp <no-dsa> (Minor issue)
 	NOTE: Fixed by: https://gitlab.com/sequoia-pgp/sequoia/-/commit/23403ff850352b420f19a8fb4724ce35bf963e08 (openpgp/v2.3.0)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/250ae2861f30aa2b40f486da0ea058170c962a2f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/250ae2861f30aa2b40f486da0ea058170c962a2f
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260522/03942e83/attachment.htm>

More information about the debian-security-tracker-commits mailing list