[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2026-8997/vifm
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri May 29 05:40:53 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a78775be by Salvatore Bonaccorso at 2026-05-29T06:40:22+02:00
Track fixed version for CVE-2026-8997/vifm
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -4788,7 +4788,7 @@ CVE-2026-9047 (Improper handling of factor key state in the multi-factor authent
CVE-2026-9011 (The Ditty \u2013 Responsive News Tickers, Sliders, and Lists plugin fo ...)
NOT-FOR-US: WordPress plugin
CVE-2026-8997 (vifm is vulnerable to a heap buffer overflow during the history merge ...)
- - vifm <unfixed> (bug #1137528)
+ - vifm 0.14.3-3 (bug #1137528)
NOTE: Fixed by: https://github.com/vifm/vifm/commit/23063c741f15a85621fd232dfc3ac5b779f6910d
CVE-2026-8992 (An improper certificate validation vulnerability in Ivanti Secure Acce ...)
NOT-FOR-US: Ivanti
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a78775bea82cce0b342fecd6ed4822747ab5a433
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a78775bea82cce0b342fecd6ed4822747ab5a433
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260529/59bf745a/attachment.htm>
More information about the debian-security-tracker-commits
mailing list