bookworm triage

Moritz Muehlenhoff (@jmm) Wed, 04 Feb 2026 08:25:44 -0800


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
22e5a17f by Moritz Muehlenhoff at 2026-02-04T17:25:22+01:00
trixie/bookworm triage

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2614,7 +2614,11 @@ CVE-2026-1470 (n8n contains a critical Remote Code 
Execution (RCE) vulnerability
        NOT-FOR-US: n8n
 CVE-2026-1467 (A flaw was found in libsoup, an HTTP client library. This 
vulnerabilit ...)
        - libsoup3 3.6.5-8 (bug #1126548)
+       [trixie] - libsoup3 <no-dsa> (Minor issue)
+       [bookworm] - libsoup3 <no-dsa> (Minor issue)
        - libsoup2.4 <removed>
+       [trixie] - libsoup2.4 <no-dsa> (Minor issue)
+       [bookworm] - libsoup2.4 <no-dsa> (Minor issue)
        NOTE: https://gitlab.gnome.org/GNOME/libsoup/-/issues/488
        NOTE: 
https://gitlab.gnome.org/GNOME/libsoup/-/commit/167ef0c6817658c1a089c75c462482209e207db4
 CVE-2026-1465 (Improper Restriction of Operations within the Bounds of a 
Memory Buffe ...)
@@ -3049,6 +3053,8 @@ CVE-2016-15057 (** UNSUPPORTED WHEN ASSIGNED ** Improper 
Neutralization of Speci
        NOT-FOR-US: Apache software not packaged in Debian
 CVE-2026-1425 (A security flaw has been discovered in pymumu SmartDNS up to 
47.1. Thi ...)
        - smartdns <unfixed> (bug #1126538)
+       [trixie] - smartdns <no-dsa> (Minor issue)
+       [bookworm] - smartdns <no-dsa> (Minor issue)
        NOTE: Fixed by: 
https://github.com/pymumu/smartdns/commit/2d57c4b4e1add9b4537aeb403f794a084727e1c8
 CVE-2026-1424 (A vulnerability was identified in PHPGurukul News Portal 1.0. 
This aff ...)
        NOT-FOR-US: PHPGurukul
@@ -4188,6 +4194,8 @@ CVE-2026-24002 (Grist is spreadsheet software using 
Python as its formula langua
        NOT-FOR-US: Grist
 CVE-2026-24001 (jsdiff is a JavaScript text differencing implementation. Prior 
to vers ...)
        - node-diff <unfixed> (bug #1126272)
+       [trixie] - node-diff <no-dsa> (Minor issue)
+       [bookworm] - node-diff <no-dsa> (Minor issue)
        NOTE: 
https://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx
        NOTE: https://github.com/kpdecker/jsdiff/issues/653
        NOTE: https://github.com/kpdecker/jsdiff/pull/649



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/22e5a17f0229528c00bc6d0775e4378fd700898c

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/22e5a17f0229528c00bc6d0775e4378fd700898c
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] trixie/bookworm triage

Reply via email to