Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
7cd0bbab by Salvatore Bonaccorso at 2026-02-08T07:19:39+01:00
Update CVE-2026-2100: note introduction of CKM_IBM_BTC_DERIVE support
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -241,7 +241,8 @@ CVE-2020-37079 (Wing FTP Server versions prior to 6.2.7
contain a cross-site req
CVE-2026-2100 [NULL dereference via C_DeriveKey with specific NULL parameters]
- p11-kit <unfixed>
[bullseye] - p11-kit <not-affected> (vulnerable code introduced in
v0.25.6)
- NOTE: Introduced by:
https://github.com/p11-glue/p11-kit/commit/d7523b1031938fdd9740757f90e903aa09f5397d
(0.25.6)
+ NOTE: Introduced with:
https://github.com/p11-glue/p11-kit/commit/aee856f75e06e451a34cb1fdd6630945c9d1623c
(0.25.6)
+ NOTE: Introduced with:
https://github.com/p11-glue/p11-kit/commit/d7523b1031938fdd9740757f90e903aa09f5397d
(0.25.6)
NOTE: Fixed by:
https://github.com/p11-glue/p11-kit/commit/39f3b5ed3deccc2772e21ffb7d269329e3ecb600
(0.26.2)
CVE-2026-2103 (Infor SyteLine ERP uses hard-coded static cryptographic keys to
encryp ...)
NOT-FOR-US: Infor SyteLine ERP
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7cd0bbab5cbd01371e36b118e44fdb363ff591b3
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7cd0bbab5cbd01371e36b118e44fdb363ff591b3
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
