[Git][security-tracker-team/security-tracker][master] Add CVE-2026-41074/RT

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
81a72c0c by Salvatore Bonaccorso at 2026-05-23T09:37:21+02:00
Add CVE-2026-41074/RT

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -37,7 +37,9 @@ CVE-2026-41104 (Deserialization of untrusted data in Microsoft Planetary Compute
 CVE-2026-41090 (Improper neutralization of special elements used in a command ('comman ...)
 	NOT-FOR-US: Microsoft
 CVE-2026-41074 (RT is an open source, enterprise-grade issue and ticket tracking syste ...)
-	TODO: check
+	- request-tracker5 <not-affected> (Vulnerable code not present)
+	- request-tracker4 <not-affected> (Vulnerable code not present)
+	NOTE: https://github.com/bestpractical/rt/security/advisories/GHSA-265j-qx4w-256j
 CVE-2026-41071 (libheif is a HEIF and AVIF file format decoder and encoder. In version ...)
 	TODO: check
 CVE-2026-41069 (libheif is a HEIF and AVIF file format decoder and encoder. In version ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/81a72c0ca07effd2dd9463ac3782cae38d4b06b4

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/81a72c0ca07effd2dd9463ac3782cae38d4b06b4
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260523/bb225cd6/attachment.htm>