[Git][security-tracker-team/security-tracker][master] new znuny issues

Moritz Muehlenhoff (@jmm) jmm at debian.org
Fri May 29 15:04:11 BST 2026 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c54cda8f by Moritz Muehlenhoff at 2026-05-29T16:03:08+02:00
new znuny issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,18 @@
+CVE-2026-XXXX [ZSA-2026-11]
+	- znuny 6.5.21-1
+	[trixie] - znuny <no-dsa> (Non-free not supported)
+	[bookworm] - znuny <no-dsa> (Non-free not supported)
+	NOTE: https://www.znuny.org/en/advisories/zsa-2026-11
+CVE-2026-XXXX [ZSA-2026-10]
+	- znuny 6.5.21-1
+	[trixie] - znuny <no-dsa> (Non-free not supported)
+	[bookworm] - znuny <no-dsa> (Non-free not supported)
+	NOTE: https://www.znuny.org/en/advisories/zsa-2026-10
+CVE-2025-26843
+	- znuny 6.5.21-1
+	[trixie] - znuny <no-dsa> (Non-free not supported)
+	[bookworm] - znuny <no-dsa> (Non-free not supported)
+	NOTE: https://www.znuny.org/en/advisories/zsa-2026-08
 CVE-2024-13745
 	- edk2 <unfixed>
 	[trixie] - edk2 <no-dsa> (Minor issue, revisit when/if fixed upstream)
@@ -42073,10 +42088,12 @@ CVE-2026-1958 (Use of hard-coded credentials in Klinika XP and KlinikaXP Inserti
 CVE-2026-0898 (An arbitrary file-write vulnerability in Pega Browser Extension (PBE)  ...)
 	NOT-FOR-US: Pega
 CVE-2025-59490
-	- znuny 6.5.19-1
+	- znuny 6.5.21-1
 	[trixie] - znuny <no-dsa> (Non-free not supported)
 	[bookworm] - znuny <no-dsa> (Non-free not supported)
 	NOTE: https://www.znuny.org/en/releases/znuny-lts-6-5-19
+	NOTE: https://www.znuny.org/en/advisories/zsa-2026-09
+	NOTE: Initial fixed in 6.5.19 was incomplete
 CVE-2025-52204 (A Cross-Site Scripting (XSS) vulnerability exists in Znuny::ITSM 6.5.x ...)
 	- znuny 6.5.19-1
 	[trixie] - znuny <no-dsa> (Non-free not supported)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c54cda8fcfc89a4fd9e52901d6e9498da6328b31

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c54cda8fcfc89a4fd9e52901d6e9498da6328b31
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260529/db5e2adc/attachment.htm>

More information about the debian-security-tracker-commits mailing list