[Git][security-tracker-team/security-tracker][master] Add new pyload issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri May 29 07:05:58 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e4847b5a by Salvatore Bonaccorso at 2026-05-29T08:05:39+02:00
Add new pyload issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -205,7 +205,7 @@ CVE-2026-47074 (Improper Certificate Validation vulnerability in ex-aws ex_aws_s
 CVE-2026-46685 (RustFS is a distributed object storage system built in Rust. Prior to  ...)
 	NOT-FOR-US: RustFS
 CVE-2026-46561 (pyLoad is a free and open-source download manager written in Python. P ...)
-	TODO: check
+	- pyload <itp> (bug #1001980)
 CVE-2026-46526 (Local Deep Research is an AI-powered research assistant for deep, iter ...)
 	NOT-FOR-US: Local Deep Research
 CVE-2026-46509 (deepobj provides get, set, delete deep objects in javascript. Prior to ...)
@@ -219,7 +219,7 @@ CVE-2026-45373 (CodeWhale is a DeepSeek + MiMo coding agent in terminal. Prior t
 CVE-2026-45353 (electerm is an open-sourced terminal/ssh/sftp/telnet/serialport/RDP/VN ...)
 	NOT-FOR-US: electerm
 CVE-2026-45348 (pyLoad is a free and open-source download manager written in Python. P ...)
-	TODO: check
+	- pyload <itp> (bug #1001980)
 CVE-2026-45332 (Automad is a flat-file content management system and template engine.  ...)
 	NOT-FOR-US: Automad
 CVE-2026-45323 (MeshCore Card provides MeshCore Lovelace card for Home Assistant. Prio ...)
@@ -231,7 +231,7 @@ CVE-2026-45310 (CodeWhale is a DeepSeek + MiMo coding agent in terminal. Prior t
 CVE-2026-45307 (Speakr is a personal, self-hosted web application designed for transcr ...)
 	NOT-FOR-US: Speakr
 CVE-2026-45306 (pyLoad is a free and open-source download manager written in Python. P ...)
-	TODO: check
+	- pyload <itp> (bug #1001980)
 CVE-2026-45297 (OpenReplay is a self-hosted session replay suite. Prior to 1.26.0, the ...)
 	NOT-FOR-US: OpenReplay
 CVE-2026-45296 (OpenReplay is a self-hosted session replay suite. Prior to 1.26.0, Ope ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e4847b5a1b75b88ae061e0fe8f03836fb008b5d3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e4847b5a1b75b88ae061e0fe8f03836fb008b5d3
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260529/65718fbe/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list