[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat May 23 08:12:27 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a0dee944 by security tracker role at 2026-05-23T07:12:21+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,73 @@
+CVE-2026-9284 (The WooCommerce PayPal Payments plugin for WordPress is vulnerable to  ...)
+	TODO: check
+CVE-2026-6898 (The Wishlist Member plugin for WordPress is vulnerable to unauthorized ...)
+	TODO: check
+CVE-2026-6897 (The Wishlist Member plugin for WordPress is vulnerable to unauthorized ...)
+	TODO: check
+CVE-2026-6895 (The WishList Member plugin for WordPress is vulnerable to Missing Auth ...)
+	TODO: check
+CVE-2026-6419 (The WishList Member plugin for WordPress is vulnerable to Privilege Es ...)
+	TODO: check
+CVE-2026-5843 (The MLX inference backend in Docker Model Runner on macOS uses the MLX ...)
+	TODO: check
+CVE-2026-5817 (The vllm-metal inference backend in Docker Model Runner on macOS uncon ...)
+	TODO: check
+CVE-2026-47280 (Improper authentication in Azure Resource Manager (ARM) allows an unau ...)
+	TODO: check
+CVE-2026-45659 (Deserialization of untrusted data in Microsoft Office SharePoint allow ...)
+	TODO: check
+CVE-2026-42901 (Origin validation error in Microsoft Entra ID allows an unauthorized a ...)
+	TODO: check
+CVE-2026-42827 (Improper neutralization of special elements used in a command ('comman ...)
+	TODO: check
+CVE-2026-41149 (Mermaid is a JavaScript tool that uses Markdown-inspired text to creat ...)
+	TODO: check
+CVE-2026-41148 (Mermaid is a JavaScript tool that uses Markdown-inspired text to creat ...)
+	TODO: check
+CVE-2026-41147 (NukeViet CMS is a multi Content Management System. Versions 4.5.07 and ...)
+	TODO: check
+CVE-2026-41104 (Deserialization of untrusted data in Microsoft Planetary Computer Pro  ...)
+	TODO: check
+CVE-2026-41090 (Improper neutralization of special elements used in a command ('comman ...)
+	TODO: check
+CVE-2026-41074 (RT is an open source, enterprise-grade issue and ticket tracking syste ...)
+	TODO: check
+CVE-2026-41071 (libheif is a HEIF and AVIF file format decoder and encoder. In version ...)
+	TODO: check
+CVE-2026-41069 (libheif is a HEIF and AVIF file format decoder and encoder. In version ...)
+	TODO: check
+CVE-2026-40864 (JupyterHub is software that allows users to create a multi-user server ...)
+	TODO: check
+CVE-2026-40610 (BentoML is a Python library for building online serving systems optimi ...)
+	TODO: check
+CVE-2026-40607 (Mantis Bug Tracker (MantisBT) is an open source issue tracker. In vers ...)
+	TODO: check
+CVE-2026-40598 (Mantis Bug Tracker (MantisBT) is an open source issue tracker. In vers ...)
+	TODO: check
+CVE-2026-40597 (Mantis Bug Tracker (MantisBT) is an open source issue tracker. In vers ...)
+	TODO: check
+CVE-2026-40596 (Mantis Bug Tracker (MantisBT) is an open source issue tracker. Version ...)
+	TODO: check
+CVE-2026-40412 (Unrestricted upload of file with dangerous type in Azure Orbital Spati ...)
+	TODO: check
+CVE-2026-40411 (Improper input validation in Azure Virtual Network Gateway allows an a ...)
+	TODO: check
+CVE-2026-40295 (Devise is an authentication solution for Rails based on Warden. In ver ...)
+	TODO: check
+CVE-2026-3294 (An authentication logic vulnerability in multiple TP-Link range extend ...)
+	TODO: check
+CVE-2026-39824 (NewNTUnicodeString does not check for string length overflow. When pro ...)
+	TODO: check
+CVE-2026-35430 (Authorization bypass through user-controlled key in Azure Privileged I ...)
+	TODO: check
+CVE-2026-33843 (Authentication bypass using an alternate path or channel in Microsoft  ...)
+	TODO: check
+CVE-2026-26147 (Improper input validation in Azure Compute Gallery allows an authorize ...)
+	TODO: check
+CVE-2026-23663 (Improper privilege management in Azure Entra ID allows an unauthorized ...)
+	TODO: check
+CVE-2026-23652 (Improper neutralization of special elements used in a command ('comman ...)
+	TODO: check
 CVE-2026-9291 (Insecure deserialization in the job results processing component in Am ...)
 	NOT-FOR-US: Amazon
 CVE-2026-9277 (shell-quote's `quote()` function did not validate object-token inputs  ...)
@@ -1164,7 +1234,7 @@ CVE-2025-11954 (Cross-Site request forgery (CSRF) vulnerability in Sitemio Infor
 	NOT-FOR-US: Sitemio
 CVE-2023-7346 (Ledger Bitcoin app versions 2.1.0 and 2.1.1 contain an address derivat ...)
 	NOT-FOR-US: Ledger Bitcoin app
-CVE-2026-41073
+CVE-2026-41073 (RT is an open source, enterprise-grade issue and ticket tracking syste ...)
 	- request-tracker5 5.0.10+dfsg-1
 	- request-tracker4 <unfixed>
 	NOTE: https://github.com/bestpractical/rt/releases/tag/rt-5.0.10
@@ -1184,11 +1254,11 @@ CVE-2026-6841 (Request Tracker is vulnerable to a reflected cross-site scripting
 	- request-tracker5 5.0.10+dfsg-1
 	- request-tracker4 <unfixed>
 	NOTE: https://github.com/bestpractical/rt/releases/tag/rt-5.0.10
-CVE-2026-41076
+CVE-2026-41076 (RT is an open source, enterprise-grade issue and ticket tracking syste ...)
 	- request-tracker5 5.0.10+dfsg-1
 	- request-tracker4 <unfixed>
 	NOTE: https://github.com/bestpractical/rt/releases/tag/rt-5.0.10
-CVE-2026-41075
+CVE-2026-41075 (RT is an open source, enterprise-grade issue and ticket tracking syste ...)
 	- request-tracker5 5.0.10+dfsg-1
 	- request-tracker4 <unfixed>
 	NOTE: https://github.com/bestpractical/rt/releases/tag/rt-5.0.10
@@ -1773,7 +1843,7 @@ CVE-2026-5090 (Template::Plugin::HTML versions through 3.102 for Perl allows HTM
 	NOTE: https://github.com/cpan-authors/Template2/pull/337
 	NOTE: Fixed by: https://github.com/cpan-authors/Template2/commit/11c78a7a771d4af505efeb754a0b8775689c2eae
 CVE-2026-46529
-	{DSA-6286-1}
+	{DSA-6286-1 DLA-4597-1 DLA-4596-1}
 	- evince 49~alpha-3
 	- evince-gtk3 48.4+dfsg-1 (unimportant)
 	- atril 1.28.4-1
@@ -1970,6 +2040,7 @@ CVE-2026-XXXX [VSV00019]
 	NOTE: https://code.vinyl-cache.org/vinyl-cache/vinyl-cache/commit/dfc27fb4e7bf110945f5c145ce95b8de14ead77f (master)
 	NOTE: https://code.vinyl-cache.org/vinyl-cache/vinyl-cache/commit/037031d429e3d309ae66ebabff33aa591402f20e (6.0)
 CVE-2026-41054 (In `src/havegecmd.c`, the `socket_handler` function performs a credent ...)
+	{DSA-6292-1}
 	- haveged 1.9.21-1 (bug #1137096)
 	NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1264086
 	NOTE: Introduced with: https://github.com/jirka-h/haveged/commit/a2496c5de9af7e3ac3ef82a2257d14d8a0ac37fb (1.9.3)
@@ -5841,7 +5912,7 @@ CVE-2026-33821 (Improper privilege management in Microsoft Dynamics 365 Customer
 CVE-2026-33603 (Attacker can use a specially crafted base64 exchange between Dovecot a ...)
 	- dovecot 1:2.4.4+dfsg1-1 (bug #1136444)
 	NOTE: https://www.openwall.com/lists/oss-security/2026/05/12/6
-CVE-2026-33117 (Improper authentication in Azure SDK allows an unauthorized attacker t ...)
+CVE-2026-33117 (The Java Key Vault Keys library in the Azure SDK for Java contains an  ...)
 	NOT-FOR-US: Microsoft
 CVE-2026-33112 (Deserialization of untrusted data in Microsoft Office SharePoint allow ...)
 	NOT-FOR-US: Microsoft
@@ -15793,6 +15864,7 @@ CVE-2026-40356 (In MIT Kerberos 5 (aka krb5) before 1.22.3, there is an integer
 	- krb5 1.22.1-2.1 (bug #1135317)
 	NOTE: https://github.com/krb5/krb5/commit/2e75f0d9362fb979f5fc92829431a590a130929f
 CVE-2026-40355 (In MIT Kerberos 5 (aka krb5) before 1.22.3, there is a NULL pointer de ...)
+	{DSA-6293-1}
 	- krb5 1.22.1-2.1 (bug #1135317)
 	NOTE: https://github.com/krb5/krb5/commit/2e75f0d9362fb979f5fc92829431a590a130929f
 CVE-2026-3087 (If `shutil.unpack_archive()` is given a ZIP archive with an absolute W ...)
@@ -19339,6 +19411,7 @@ CVE-2026-4367
 	NOTE: https://gitlab.freedesktop.org/xorg/lib/libxpm/-/commit/5448e1bd7252780b16db869c2253d24e0fe0ae18 (libXpm-3.5.19)
 	NOTE: https://gitlab.freedesktop.org/xorg/lib/libxpm/-/merge_requests/31
 CVE-2026-41989 (Libgcrypt before 1.12.2 sometimes allows a heap-based buffer overflow  ...)
+	{DSA-6294-1}
 	- libgcrypt20 1.12.2-1
 	[bullseye] - libgcrypt20 <not-affected> (Vulnerable code introduced later)
 	NOTE: https://www.openwall.com/lists/oss-security/2026/04/21/1
@@ -23541,6 +23614,7 @@ CVE-2026-34186 (Improper Neutralization of Special Elements used in an SQL Comma
 CVE-2026-33858 (Dag Authors, who normally should not be able to execute code in the we ...)
 	- airflow <itp> (bug #819700)
 CVE-2026-33555 (An issue was discovered in HAProxy before 3.3.6. The HTTP/3 parser doe ...)
+	{DSA-6291-1}
 	- haproxy 3.2.15-1
 	[bookworm] - haproxy <ignored> (USE_QUIC not enabled before 2.8.4-2)
 	[bullseye] - haproxy <not-affected> (Vulnerable code not present; HTTP3 support added in later versions)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a0dee9442f64c438728a030348176d5df5e87b28

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a0dee9442f64c438728a030348176d5df5e87b28
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260523/58320e18/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list