[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun May 24 08:13:08 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
c2e5e86d by security tracker role at 2026-05-24T07:13:02+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,41 @@
+CVE-2026-9359 (A vulnerability was identified in Edimax EW-7438RPn 1.28a. Affected by ...)
+ TODO: check
+CVE-2026-9358 (A vulnerability was determined in postcss up to 7.1.1. Affected is the ...)
+ TODO: check
+CVE-2026-9357 (A vulnerability was found in vBulletin 6.x. This impacts an unknown fu ...)
+ TODO: check
+CVE-2026-9356 (A vulnerability has been found in SourceCodester Hospitals Patient Rec ...)
+ TODO: check
+CVE-2026-9355 (A flaw has been found in SourceCodester Hospitals Patient Records Mana ...)
+ TODO: check
+CVE-2026-9354 (A vulnerability was detected in NousResearch hermes-agent up to 2026.4 ...)
+ TODO: check
+CVE-2026-9353 (A security vulnerability has been detected in NousResearch hermes-agen ...)
+ TODO: check
+CVE-2026-9352 (A weakness has been identified in NousResearch hermes-agent up to 2026 ...)
+ TODO: check
+CVE-2026-9351 (A security flaw has been discovered in NousResearch hermes-agent up to ...)
+ TODO: check
+CVE-2026-9350 (A vulnerability was identified in NousResearch hermes-agent up to 2026 ...)
+ TODO: check
+CVE-2026-9349 (A vulnerability was determined in calcom cal.diy up to 4.9.4. Affected ...)
+ TODO: check
+CVE-2026-9348 (A vulnerability was found in Edimax EW-7438RPn up to 1.31. Affected by ...)
+ TODO: check
+CVE-2026-9347 (A vulnerability has been found in Edimax EW-7438RPn up to 1.31. Affect ...)
+ TODO: check
+CVE-2026-9346 (A flaw has been found in Edimax EW-7438RPn up to 1.31. This impacts th ...)
+ TODO: check
+CVE-2026-9345 (A vulnerability was detected in Edimax EW-7438RPn up to 1.31. This aff ...)
+ TODO: check
+CVE-2026-9344 (A security vulnerability has been detected in Edimax EW-7438RPn up to ...)
+ TODO: check
+CVE-2026-9343 (A weakness has been identified in Edimax EW-7438RPn up to 1.31. The af ...)
+ TODO: check
+CVE-2026-9342 (A security flaw has been discovered in SourceCodester Hospitals Patien ...)
+ TODO: check
+CVE-2026-3515 (A vulnerability in the `GitHubRepository` block of the `prefect-github ...)
+ TODO: check
CVE-2026-9306 (A security vulnerability has been detected in QuantumNous new-api up t ...)
NOT-FOR-US: QuantumNous new-api
CVE-2026-9305 (A weakness has been identified in QuantumNous new-api up to 0.12.1. Th ...)
@@ -63,6 +101,7 @@ CVE-2018-25341 (Smartshop 1 contains a SQL injection vulnerability that allows u
CVE-2018-25340 (Smartshop 1 contains a SQL injection vulnerability that allows unauthe ...)
NOT-FOR-US: Smartshop
CVE-2026-43503 (In the Linux kernel, the following vulnerability has been resolved: n ...)
+ {DSA-6295-1}
- linux 7.0.9-1
NOTE: https://git.kernel.org/linus/48f6a5356a33dd78e7144ae1faef95ffc990aae0
CVE-2026-9284 (The WooCommerce PayPal Payments plugin for WordPress is vulnerable to ...)
@@ -4869,6 +4908,7 @@ CVE-2026-42934 (NGINX Plus and NGINX Open Source have a vulnerability in the ngx
NOTE: https://nginx.org/en/security_advisories.html
NOTE: https://github.com/nginx/nginx/commit/54b7945961b2eaafc480d6b85d9635d0db1c126a (release-1.30.1)
CVE-2026-46300 (In the Linux kernel, the following vulnerability has been resolved: n ...)
+ {DSA-6295-1}
- linux 7.0.9-1
NOTE: https://github.com/v12-security/pocs/tree/main/fragnesia
NOTE: https://lore.kernel.org/all/20260513041635.1289541-1-vakzz@zellic.io/
@@ -4954,7 +4994,8 @@ CVE-2026-43480 (In the Linux kernel, the following vulnerability has been resolv
[trixie] - linux 6.12.85-1
[bookworm] - linux 6.1.170-1
NOTE: https://git.kernel.org/linus/53f3a900e9a383d47af7253076e19f510c5708d0 (7.0-rc4)
-CVE-2026-48829 [NULL pointer dereference in DIGEST-MD5]
+CVE-2026-48829 (In GNU SASL before 2.2.3, DIGEST-MD5 has a NULL pointer dereference af ...)
+ {DSA-6271-1}
- gsasl 2.2.3-1
NOTE: https://lists.gnu.org/archive/html/help-gsasl/2026-05/msg00002.html
NOTE: Fixed by: https://codeberg.org/gsasl/gsasl/commit/da9b5ae2962b014879e4a406c3b38f25aa70e97a (v2.2.3)
@@ -53077,6 +53118,7 @@ CVE-2026-23146 (In the Linux kernel, the following vulnerability has been resolv
[bullseye] - linux 5.10.249-1
NOTE: https://git.kernel.org/linus/0c3cd7a0b862c37acbee6d9502107146cc944398 (6.19-rc8)
CVE-2026-23171 (In the Linux kernel, the following vulnerability has been resolved: b ...)
+ {DSA-6295-1}
- linux 6.18.9-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/e9acda52fd2ee0cdca332f996da7a95c5fd25294 (6.19-rc8)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c2e5e86d9db327b5995595de230cd984a27c4c5e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c2e5e86d9db327b5995595de230cd984a27c4c5e
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260524/4eaa4906/attachment.htm>
More information about the debian-security-tracker-commits
mailing list