[Git][security-tracker-team/security-tracker][master] Add new issues in Mistune

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri May 29 21:08:30 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2d09aacc by Salvatore Bonaccorso at 2026-05-29T22:07:59+02:00
Add new issues in Mistune

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -4676,13 +4676,17 @@ CVE-2026-44903 (Prometheus is an open-source monitoring system and time series d
 CVE-2026-44900 (epa4all-client is the Java Client for epa4all / ePA 3.0 in the Telemat ...)
 	NOT-FOR-US: epa4all-client
 CVE-2026-44899 (Mistune is a Python Markdown parser with renderers and plugins. Prior  ...)
-	TODO: check
+	- mistune <unfixed>
+	NOTE: https://github.com/lepture/mistune/security/advisories/GHSA-ccfx-mfmx-2fx9
 CVE-2026-44898 (Mistune is a Python Markdown parser with renderers and plugins. Prior  ...)
-	TODO: check
+	- mistune <unfixed>
+	NOTE: https://github.com/lepture/mistune/security/advisories/GHSA-6269-cqxg-mhhv
 CVE-2026-44897 (Mistune is a Python Markdown parser with renderers and plugins. Prior  ...)
-	TODO: check
+	- mistune <unfixed>
+	NOTE: https://github.com/lepture/mistune/security/advisories/GHSA-v87v-83h2-53w7
 CVE-2026-44896 (Mistune is a Python Markdown parser with renderers and plugins. In 3.2 ...)
-	TODO: check
+	- mistune <unfixed>
+	NOTE: https://github.com/lepture/mistune/security/advisories/GHSA-58cw-g322-p94v
 CVE-2026-44895 (GitLab MCP Server lets an AI agent talk directly to GitLab. Prior to 0 ...)
 	NOT-FOR-US: GitLab MCP Server
 CVE-2026-44847 (MaxKB is an open-source AI assistant for enterprise. Prior to 2.9.0, M ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2d09aacc89d694ea2c85b14056524de376d50f93

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2d09aacc89d694ea2c85b14056524de376d50f93
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260529/83b2a06e/attachment.htm>

More information about the debian-security-tracker-commits mailing list