[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for mistune issues

Sat May 30 09:43:24 BST 2026


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
05a00dd3 by Salvatore Bonaccorso at 2026-05-30T10:42:24+02:00
Add Debian bug reference for mistune issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -4769,16 +4769,16 @@ CVE-2026-44903 (Prometheus is an open-source monitoring system and time series d
 CVE-2026-44900 (epa4all-client is the Java Client for epa4all / ePA 3.0 in the Telemat ...)
 	NOT-FOR-US: epa4all-client
 CVE-2026-44899 (Mistune is a Python Markdown parser with renderers and plugins. Prior  ...)
-	- mistune <unfixed>
+	- mistune <unfixed> (bug #1138260)
 	NOTE: https://github.com/lepture/mistune/security/advisories/GHSA-ccfx-mfmx-2fx9
 CVE-2026-44898 (Mistune is a Python Markdown parser with renderers and plugins. Prior  ...)
-	- mistune <unfixed>
+	- mistune <unfixed> (bug #1138260)
 	NOTE: https://github.com/lepture/mistune/security/advisories/GHSA-6269-cqxg-mhhv
 CVE-2026-44897 (Mistune is a Python Markdown parser with renderers and plugins. Prior  ...)
-	- mistune <unfixed>
+	- mistune <unfixed> (bug #1138260)
 	NOTE: https://github.com/lepture/mistune/security/advisories/GHSA-v87v-83h2-53w7
 CVE-2026-44896 (Mistune is a Python Markdown parser with renderers and plugins. In 3.2 ...)
-	- mistune <unfixed>
+	- mistune <unfixed> (bug #1138260)
 	NOTE: https://github.com/lepture/mistune/security/advisories/GHSA-58cw-g322-p94v
 CVE-2026-44895 (GitLab MCP Server lets an AI agent talk directly to GitLab. Prior to 0 ...)
 	NOT-FOR-US: GitLab MCP Server
@@ -4803,7 +4803,7 @@ CVE-2026-44831 (Snipe-IT is an IT asset/license management system. Prior to 8.4.
 CVE-2026-44788 (SharpCompress is a fully managed C# library to deal with many compress ...)
 	NOT-FOR-US: SharpCompress library
 CVE-2026-44708 (Mistune is a Python Markdown parser with renderers and plugins. Prior  ...)
-	- mistune <unfixed>
+	- mistune <unfixed> (bug #1138260)
 	NOTE: https://github.com/lepture/mistune/security/advisories/GHSA-8g87-j6q8-g93x
 CVE-2026-44451 (Lumiverse is a full-featured AI chat application. Prior to 0.9.7, the  ...)
 	NOT-FOR-US: Lumiverse



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/05a00dd342a83df3dacf06246b6edd8508856b08

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/05a00dd342a83df3dacf06246b6edd8508856b08
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260530/101cb2ed/attachment-0001.htm>
