Your message dated Wed, 15 Jul 2026 12:47:06 +0000
with message-id <[email protected]>
and subject line Bug#1136448: fixed in bettercap 2.33.0-1+deb13u1
has caused the Debian Bug report #1136448,
regarding bettercap: CVE-2026-8275 CVE-2026-8276
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
1136448: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1136448
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: bettercap
Version: 2.33.0-1
Severity: important
Tags: security upstream
X-Debbugs-Cc: [email protected], Debian Security Team <[email protected]>

Hi,

The following vulnerabilities were published for bettercap.

CVE-2026-8275[0]:
| A vulnerability was detected in bettercap up to 2.41.5. Affected by
| this vulnerability is the function ippReadChunkedBody of the file
| modules/zerogod/zerogod_ipp_primitives.go of the component zerogod
| IPP Service. Performing a manipulation results in integer coercion
| error. The attack can be initiated remotely. The attack is
| considered to have high complexity. The exploitation appears to be
| difficult. The exploit is now public and may be used. The patch is
| named 3731d5576cffae9eefe3721cd46a40933304129f. To fix this issue,
| it is recommended to deploy a patch.


CVE-2026-8276[1]:
| A flaw has been found in bettercap up to 2.41.5. Affected by this
| issue is some unknown functionality of the file
| modules/mysql_server/mysql_server.go of the component MySQL Server.
| Executing a manipulation can lead to integer coercion error. The
| attack can be launched remotely. The attack requires a high level of
| complexity. The exploitation is known to be difficult. The exploit
| has been published and may be used. This patch is called
| 0eaa375c5e5446bfba94a290eff92967a5deac9e. It is advisable to
| implement a patch to correct this issue.


If you fix the vulnerabilities please also make sure to include the
CVE (Common Vulnerabilities & Exposures) ids in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2026-8275
    https://www.cve.org/CVERecord?id=CVE-2026-8275
[1] https://security-tracker.debian.org/tracker/CVE-2026-8276
    https://www.cve.org/CVERecord?id=CVE-2026-8276

Regards,
Salvatore

--- End Message ---
--- Begin Message ---
Source: bettercap
Source-Version: 2.33.0-1+deb13u1
Done: Francisco Vilmar Cardoso Ruviaro <[email protected]>

We believe that the bug you reported is fixed in the latest version of
bettercap, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Francisco Vilmar Cardoso Ruviaro <[email protected]> (supplier of updated 
bettercap package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 13 Jul 2026 02:41:40 +0000
Source: bettercap
Architecture: source
Version: 2.33.0-1+deb13u1
Distribution: trixie
Urgency: medium
Maintainer: Debian Security Tools <[email protected]>
Changed-By: Francisco Vilmar Cardoso Ruviaro <[email protected]>
Closes: 1136448
Changes:
 bettercap (2.33.0-1+deb13u1) trixie; urgency=medium
 .
   * Add debian/patches/CVE-2026-8276.patch.
     (Closes: #1136448, CVE-2026-8276)
Checksums-Sha1:
 258f538b272b0dc5ed242b94bdd95ab6e6cb5660 3536 bettercap_2.33.0-1+deb13u1.dsc
 d5f31cbc19ab3a8eb645c04557687f791f3add24 6356 
bettercap_2.33.0-1+deb13u1.debian.tar.xz
 94b0225a253ea34278d24d2fb61b57e95ae27334 10437 
bettercap_2.33.0-1+deb13u1_amd64.buildinfo
Checksums-Sha256:
 43a0c1ab70c4f27886cd10c75d911c9861bbf3264266ca0ef2277dde7fd0c024 3536 
bettercap_2.33.0-1+deb13u1.dsc
 9ec244d348040ed1c782176f81374ed2d1ad34defee626ef82df4546e98e7039 6356 
bettercap_2.33.0-1+deb13u1.debian.tar.xz
 3589515022b649fc62610126185b3c4ca149022c92b131a33d147ad7a8c96679 10437 
bettercap_2.33.0-1+deb13u1_amd64.buildinfo
Files:
 724999f1919741b6196e07480f8ef8bb 3536 net optional 
bettercap_2.33.0-1+deb13u1.dsc
 b9d44ab61fc5ee717b0730f173ddb613 6356 net optional 
bettercap_2.33.0-1+deb13u1.debian.tar.xz
 a20b3925db0e9203deb574c5523a9d27 10437 net optional 
bettercap_2.33.0-1+deb13u1_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=lOMQ
-----END PGP SIGNATURE-----

Attachment: pgpgph7cwrug9.pgp
Description: PGP signature


--- End Message ---

Reply via email to