[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for libcrypt-saltedhash-perl issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun May 24 14:21:17 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
642489fc by Salvatore Bonaccorso at 2026-05-24T15:20:49+02:00
Add Debian bug reference for libcrypt-saltedhash-perl issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1258,11 +1258,11 @@ CVE-2026-45753
 	[bullseye] - symfony <not-affected> (Vulnerable code not present, introduced in 6.1)
 	NOTE: https://symfony.com/blog/cve-2026-45753-htmlsanitizer-urlattributesanitizer-omits-action-formaction-poster-cite-javascript-uri-survives-sanitization-xss
 CVE-2026-47373 (Crypt::SaltedHash versions through 0.09 for Perl is susceptible to tim ...)
-	- libcrypt-saltedhash-perl 0.11-1
+	- libcrypt-saltedhash-perl 0.11-1 (bug #1137253)
 	NOTE: https://lists.security.metacpan.org/cve-announce/msg/40249915/
 	NOTE: Fixed by: https://github.com/robrwo/perl-Crypt-SaltedHash/commit/c07bfc5c23185b0667233d0f2e1252d81f1f027a (0.10)
 CVE-2026-47372 (Crypt::SaltedHash versions through 0.09 for Perl generate insecure ran ...)
-	- libcrypt-saltedhash-perl 0.11-1
+	- libcrypt-saltedhash-perl 0.11-1 (bug #1137253)
 	NOTE: https://lists.security.metacpan.org/cve-announce/msg/40252126/
 	NOTE: Fixed by: https://github.com/robrwo/perl-Crypt-SaltedHash/commit/9b68437d2cd420b819b3a795474c3870338d38d5 (0.10)
 CVE-2026-9101 (Prototype pollution in csv parsing logic during import can lead to unt ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/642489fc637ad954706341c3944197665a566622

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/642489fc637ad954706341c3944197665a566622
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260524/cb42a347/attachment.htm>

More information about the debian-security-tracker-commits mailing list