[Git][security-tracker-team/security-tracker][master] Add CVE-2026-4944/vllm, itp'ed

Fri May 29 05:58:34 BST 2026


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8d50a536 by Salvatore Bonaccorso at 2026-05-29T06:58:12+02:00
Add CVE-2026-4944/vllm, itp'ed

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -115,7 +115,7 @@ CVE-2026-6427 (The a3 Lazy Load plugin for WordPress is vulnerable to Stored Cro
 CVE-2026-6226 (The Frontend Admin by DynamiApps plugin for WordPress is vulnerable to ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2026-4944 (vllm-project/vllm version 0.14.1 contains a vulnerability where the `t ...)
-	TODO: check
+	- vllm <itp> (bug #1095237)
 CVE-2026-4377 (DlinkDWR-X1820 router uses weak default password generated from its IM ...)
 	TODO: check
 CVE-2026-4334 (The Shariff Wrapper plugin for WordPress is vulnerable to Stored Cross ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8d50a53613d5af46d53d412ae81ef4df73573935

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8d50a53613d5af46d53d412ae81ef4df73573935
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260529/6b1dcf9c/attachment-0001.htm>
