[Git][security-tracker-team/security-tracker][master] iAdd debian bug reference for mpd issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri May 29 15:46:56 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8d1c25c9 by Salvatore Bonaccorso at 2026-05-29T16:46:24+02:00
iAdd debian bug reference for mpd issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -463,19 +463,19 @@ CVE-2026-49299 (In OpenStack Neutron before 28.0.1, the tagging controller enfor
[bookworm] - neutron <no-dsa> (Minor issue)
NOTE: https://security.openstack.org/ossa/OSSA-2026-016.html
CVE-2026-49130 (Music Player Daemon (MPD) before version 0.24.11 contains a CRLF injec ...)
- - mpd <unfixed>
+ - mpd <unfixed> (bug #1138215)
NOTE: https://github.com/MusicPlayerDaemon/MPD/issues/2483
NOTE: Fixed by: https://github.com/MusicPlayerDaemon/MPD/commit/855085b35c67dddeef0652e2cb3ac8cdd4f457b7 (v0.24.11)
CVE-2026-49129 (Music Player Daemon (MPD) before version 0.24.11 contains a server-sid ...)
- - mpd <unfixed>
+ - mpd <unfixed> (bug #1138215)
NOTE: https://github.com/MusicPlayerDaemon/MPD/issues/2487
NOTE: Fixed by: https://github.com/MusicPlayerDaemon/MPD/commit/78341dd6c7b101c3feede233d4cc4f8f1fcc4bb3 (v0.24.11)
CVE-2026-49128 (Music Player Daemon (MPD) before version 0.24.11 contains a path trave ...)
- - mpd <unfixed>
+ - mpd <unfixed> (bug #1138215)
NOTE: https://github.com/MusicPlayerDaemon/MPD/issues/2484
NOTE: Fixed by: https://github.com/MusicPlayerDaemon/MPD/commit/0b5315b9e5a42cb0e88bf46a7579bb5641543f60 (v0.24.11)
CVE-2026-49127 (Music Player Daemon (MPD) before version 0.24.11 contains a stack buff ...)
- - mpd <unfixed>
+ - mpd <unfixed> (bug #1138215)
NOTE: https://github.com/MusicPlayerDaemon/MPD/issues/2485
NOTE: Fixed by: https://github.com/MusicPlayerDaemon/MPD/commit/59911028c020f84bc2e669da6a1ef88121301274 (v0.24.11)
CVE-2026-49095 (Improper Input Validation (CWE-20) in the Kibana Fleet agent policy ma ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8d1c25c93cddb794eea6597b0cf5ebdded3054c0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8d1c25c93cddb794eea6597b0cf5ebdded3054c0
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260529/cf63cb78/attachment.htm>
More information about the debian-security-tracker-commits
mailing list