[Git][security-tracker-team/security-tracker][master] Add two new Keycloak issues, itp'ed
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed May 27 20:39:41 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
40166fbd by Salvatore Bonaccorso at 2026-05-27T21:39:14+02:00
Add two new Keycloak issues, itp'ed
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,9 +1,9 @@
CVE-2026-9712 (When creating an export through the pretix API, API clients are retur ...)
NOT-FOR-US: rami.io products
CVE-2026-9704 (A flaw was found in Keycloak. An authenticated user with low privilege ...)
- TODO: check
+ - keycloak <itp> (bug #1088287)
CVE-2026-9689 (A flaw was found in Keycloak, an open-source identity and access manag ...)
- TODO: check
+ - keycloak <itp> (bug #1088287)
CVE-2026-9674 (A cross-site request forgery (CSRF) vulnerability in Jenkins Multijob ...)
NOT-FOR-US: Jenkins (core or plugin)
CVE-2026-9617 (PostgreSQL Anonymizer contains a vulnerability that allows a user to g ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/40166fbd95d7200e39ae94437f9e0322648a458c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/40166fbd95d7200e39ae94437f9e0322648a458c
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260527/2e800ff0/attachment.htm>
More information about the debian-security-tracker-commits
mailing list