[Git][security-tracker-team/security-tracker][master] Add two gitlab issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun May 31 08:11:48 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d62d9c9b by Salvatore Bonaccorso at 2026-05-31T09:11:30+02:00
Add two gitlab issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3125,7 +3125,7 @@ CVE-2026-30498 (A Cross-Site Request Forgery (CSRF) vulnerability was discovered
 CVE-2026-2607 (IBM MQ Operator SC2: v3.2.0 through 3.2.23CD: v3.3.0, v3.4.0, v3.4.1,  ...)
 	NOT-FOR-US: IBM
 CVE-2026-2601 (GitLab has remediated an issue in GitLab EE affecting all versions fro ...)
-	TODO: check
+	- gitlab <not-affected> (Only affects Gitlab EE)
 CVE-2026-2288 (The myLinksDump plugin for WordPress is vulnerable to Stored Cross-Sit ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2026-2280 (The rexCrawler plugin for WordPress is vulnerable to Stored Cross-Site ...)
@@ -3139,7 +3139,7 @@ CVE-2026-23679 (libusb before version 1.0.30 contains a NULL pointer dereference
 CVE-2026-1718 (IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable ...)
 	NOT-FOR-US: IBM
 CVE-2026-1402 (GitLab has remediated an issue in GitLab CE/EE affecting all versions  ...)
-	TODO: check
+	- gitlab <removed>
 CVE-2026-1248 (IBM Business Automation Workflow containers and traditionalmay leak in ...)
 	NOT-FOR-US: IBM
 CVE-2025-70116 (A NULL pointer dereference in GPAC MP4Box: when parsing certain trunca ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d62d9c9bded5e4e805b4db55446c50b5f334ac00

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d62d9c9bded5e4e805b4db55446c50b5f334ac00
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260531/404df05a/attachment.htm>

More information about the debian-security-tracker-commits mailing list