Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
340a851d by security tracker role at 2026-02-08T20:13:16+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,83 @@
+CVE-2026-2183 (A security vulnerability has been detected in Great Developers
Certifi ...)
+ TODO: check
+CVE-2026-2182 (A weakness has been identified in UTT \u8fdb\u53d6 521G
3.1.1-190816. ...)
+ TODO: check
+CVE-2026-2181 (A security flaw has been discovered in Tenda RX3 16.03.13.11.
Affected ...)
+ TODO: check
+CVE-2026-2180 (A vulnerability was identified in Tenda RX3 16.03.13.11.
Affected is a ...)
+ TODO: check
+CVE-2026-2179 (A vulnerability was determined in PHPGurukul Hospital
Management Syste ...)
+ TODO: check
+CVE-2026-2178 (A vulnerability was found in r-huijts xcode-mcp-server up to
f3419f001 ...)
+ TODO: check
+CVE-2026-2177 (A vulnerability has been found in SourceCodester Prison
Management Sys ...)
+ TODO: check
+CVE-2026-2176 (A security vulnerability has been detected in code-projects
Contact Ma ...)
+ TODO: check
+CVE-2026-2175 (A weakness has been identified in D-Link DIR-823X 250416. This
vulnera ...)
+ TODO: check
+CVE-2026-2174 (A security flaw has been discovered in code-projects Contact
Managemen ...)
+ TODO: check
+CVE-2026-2173 (A vulnerability was identified in code-projects Online
Examination Sys ...)
+ TODO: check
+CVE-2026-2172 (A vulnerability was determined in code-projects Online
Application Sys ...)
+ TODO: check
+CVE-2026-2171 (A vulnerability was found in code-projects Online Student
Management S ...)
+ TODO: check
+CVE-2026-2169 (A vulnerability has been found in D-Link DWR-M921 1.1.50. This
impacts ...)
+ TODO: check
+CVE-2026-2168 (A flaw has been found in D-Link DWR-M921 1.1.50. This affects
the func ...)
+ TODO: check
+CVE-2026-2167 (A vulnerability was detected in Totolink WA300
5.2cu.7112_B20190227. T ...)
+ TODO: check
+CVE-2026-2166 (A security vulnerability has been detected in code-projects
Online Rev ...)
+ TODO: check
+CVE-2026-2165 (A weakness has been identified in detronetdip E-commerce 1.0.0.
Impact ...)
+ TODO: check
+CVE-2026-2164 (A security flaw has been discovered in detronetdip E-commerce
1.0.0. T ...)
+ TODO: check
+CVE-2026-2163 (A vulnerability was identified in D-Link DIR-600 up to
2.15WWb02. This ...)
+ TODO: check
+CVE-2026-2162 (A vulnerability was determined in itsourcecode News Portal
Project 1.0 ...)
+ TODO: check
+CVE-2026-2161 (A vulnerability was found in itsourcecode Directory Management
System ...)
+ TODO: check
+CVE-2026-2160 (A vulnerability has been found in SourceCodester Simple
Responsive Tou ...)
+ TODO: check
+CVE-2026-2159 (A flaw has been found in SourceCodester Simple Responsive
Tourism Webs ...)
+ TODO: check
+CVE-2026-2158 (A vulnerability was detected in code-projects Student Web
Portal 1.0. ...)
+ TODO: check
+CVE-2026-2157 (A security vulnerability has been detected in D-Link DIR-823X
250416. ...)
+ TODO: check
+CVE-2026-2156 (A weakness has been identified in code-projects Online Student
Managem ...)
+ TODO: check
+CVE-2026-2155 (A security flaw has been discovered in D-Link DIR-823X 250416.
The aff ...)
+ TODO: check
+CVE-2026-2154 (A vulnerability was identified in SourceCodester/Patrick Mvuma
Patient ...)
+ TODO: check
+CVE-2026-2153 (A vulnerability was determined in mwielgoszewski doorman up to
0.6. Th ...)
+ TODO: check
+CVE-2026-2152 (A vulnerability was found in D-Link DIR-615 4.10. This
vulnerability a ...)
+ TODO: check
+CVE-2026-2151 (A vulnerability has been found in D-Link DIR-615 4.10. This
affects an ...)
+ TODO: check
+CVE-2026-2150 (A flaw has been found in SourceCodester/Patrick Mvuma Patients
Waiting ...)
+ TODO: check
+CVE-2026-2149 (A vulnerability was detected in SourceCodester/Patrick Mvuma
Patients ...)
+ TODO: check
+CVE-2026-2148 (A security vulnerability has been detected in Tenda AC21
16.03.08.16. ...)
+ TODO: check
+CVE-2026-2147 (A weakness has been identified in Tenda AC21 16.03.08.16. This
impacts ...)
+ TODO: check
+CVE-2026-2146 (A security flaw has been discovered in guchengwuyue yshopmall
up to 1. ...)
+ TODO: check
+CVE-2026-2145 (A vulnerability was identified in cym1102 nginxWebUI up to
4.3.7. The ...)
+ TODO: check
+CVE-2026-2143 (A security vulnerability has been detected in D-Link DIR-823X
250416. ...)
+ TODO: check
+CVE-2026-2142 (A weakness has been identified in D-Link DIR-823X 250416. This
vulnera ...)
+ TODO: check
CVE-2026-2209 (A vulnerability was detected in WeKan up to 8.18. The affected
element ...)
- wekan <itp> (bug #819238)
CVE-2026-2208 (A security vulnerability has been detected in WeKan up to 8.20.
Impact ...)
@@ -8844,6 +8924,7 @@ CVE-2026-23574
CVE-2026-23512 (SumatraPDF is a multi-format reader for Windows. In 3.5.2 and
earlier, ...)
NOT-FOR-US: SumatraPDF
CVE-2026-0962 (SOME/IP-SD protocol dissector crash in Wireshark 4.6.0 to 4.6.2
and 4. ...)
+ {DSA-6124-1}
- wireshark 4.6.3-1 (bug #1125690)
[bookworm] - wireshark <not-affected> (Vulnerable code not present)
[bullseye] - wireshark <not-affected> (Vulnerable code not present)
@@ -8852,6 +8933,7 @@ CVE-2026-0962 (SOME/IP-SD protocol dissector crash in
Wireshark 4.6.0 to 4.6.2 a
NOTE: Fixed by:
https://gitlab.com/wireshark/wireshark/-/commit/55ec8b3db4968c97115f014fb5974206cdf57454
NOTE: Introduced by:
https://gitlab.com/wireshark/wireshark/-/commit/ca941e3881fc85e032159d004b8bdb499b590ad3
(v4.1.0)
CVE-2026-0961 (BLF file parser crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to
4.4.12 ...)
+ {DSA-6124-1}
- wireshark 4.6.3-1 (bug #1125690)
[bookworm] - wireshark <not-affected> (Vulnerable code not present)
[bullseye] - wireshark <not-affected> (Vulnerable code not present)
@@ -8860,11 +8942,13 @@ CVE-2026-0961 (BLF file parser crash in Wireshark 4.6.0
to 4.6.2 and 4.4.0 to 4.
NOTE: Fixed by:
https://gitlab.com/wireshark/wireshark/-/commit/516ba22c34bd62468c2967ac476146bc03482679
NOTE: Introduced by:
https://gitlab.com/wireshark/wireshark/-/commit/4e8603b60438650fe3329d5a0a0e8ff0bc96b08c
(v4.3.0rc1)
CVE-2026-0960 (HTTP3 protocol dissector infinite loop in Wireshark 4.6.0 to
4.6.2 all ...)
+ {DSA-6124-1}
- wireshark 4.6.3-1 (bug #1125690)
[bookworm] - wireshark <no-dsa> (Minor issue)
NOTE: https://www.wireshark.org/security/wnpa-sec-2026-04.html
NOTE: https://gitlab.com/wireshark/wireshark/-/issues/20944
CVE-2026-0959 (IEEE 802.11 protocol dissector crash in Wireshark 4.6.0 to
4.6.2 and 4 ...)
+ {DSA-6124-1}
- wireshark 4.6.3-1 (bug #1125690)
[bookworm] - wireshark <not-affected> (Vulnerable code not present)
[bullseye] - wireshark <not-affected> (Vulnerable code not present)
@@ -29249,11 +29333,13 @@ CVE-2025-61940 (NMIS/BioDose V22.02 and previous
versions rely on a common SQL S
CVE-2025-55181 (Sending an HTTP request/response body with greater than 2^31
bytes tri ...)
NOT-FOR-US: Meta software not packaged in Debian
CVE-2025-13946 (MEGACO dissector infinite loop in Wireshark 4.6.0 to 4.6.1 and
4.4.0 t ...)
+ {DSA-6124-1}
- wireshark 4.6.2-1
[bookworm] - wireshark <no-dsa> (Minor issue)
NOTE: https://www.wireshark.org/security/wnpa-sec-2025-08.html
NOTE: https://gitlab.com/wireshark/wireshark/-/issues/20884
CVE-2025-13945 (HTTP3 dissector crash in Wireshark 4.6.0 and 4.6.1 allows
denial of se ...)
+ {DSA-6124-1}
- wireshark 4.6.2-1
[bookworm] - wireshark <no-dsa> (Minor issue)
NOTE: https://www.wireshark.org/security/wnpa-sec-2025-07.html
@@ -31736,6 +31822,7 @@ CVE-2025-36072 (IBM webMethods Integration 10.11
through 10.11_Core_Fix22, 10.15
CVE-2025-25613 (FS Inc S3150-8T2F 8-Port Gigabit Ethernet L2+ Switch, 8 x
Gigabit RJ45 ...)
NOT-FOR-US: FS Inc S3150-8T2F 8-Port Gigabit Ethernet L2+ Switch, 8 x
Gigabit RJ45, with 2 x 1Gb SFP, Fanless
CVE-2025-13499 (Kafka dissector crash in Wireshark 4.6.0 and 4.4.0 to 4.4.10
allows de ...)
+ {DSA-6124-1}
- wireshark 4.6.1-1
[bookworm] - wireshark <no-dsa> (Minor issue)
NOTE: https://www.wireshark.org/security/wnpa-sec-2025-06.html
@@ -44463,6 +44550,7 @@ CVE-2025-31718 (In modem, there is a possible system
crash due to improper input
CVE-2025-31717 (In modem, there is a possible system crash due to improper
input valid ...)
NOT-FOR-US: Unisoc
CVE-2025-11626 (MONGO dissector infinite loop in Wireshark 4.4.0 to 4.4.9 and
4.2.0 to ...)
+ {DSA-6124-1}
- wireshark 4.6.0-1 (bug #1117852)
NOTE: https://www.wireshark.org/security/wnpa-sec-2025-04.html
NOTE: https://gitlab.com/wireshark/wireshark/-/issues/20724
@@ -56876,6 +56964,7 @@ CVE-2025-27238 (Due to a bug in Zabbix API, the
hostprototype.get method lists a
NOTE: Fixed by:
https://github.com/zabbix/zabbix/commit/de83eeea59ca18e5a435a517570f8e6925f124ec
(7.2.8rc1)
NOTE: Fixed in 7.0.14, 7.2.8
CVE-2025-27234 (Zabbix Agent 2 smartctl plugin does not properly sanitize
smart.disk.g ...)
+ {DLA-4473-1}
- zabbix 1:6.0.7+dfsg-2
NOTE: https://support.zabbix.com/browse/ZBX-26985
NOTE: 5.0.0-5.0.46 specific issue, thus mark the first version in
unstable from the
@@ -60592,6 +60681,7 @@ CVE-2025-9832 (A security vulnerability has been
detected in SourceCodester Food
CVE-2025-9831 (A weakness has been identified in PHPGurukul Beauty Parlour
Management ...)
NOT-FOR-US: PHPGurukul
CVE-2025-9817 (SSH dissector crash in Wireshark 4.4.0 to 4.4.8 allows denial
of servi ...)
+ {DSA-6124-1}
- wireshark 4.4.9-1
NOTE: https://www.wireshark.org/security/wnpa-sec-2025-03.html
NOTE: https://gitlab.com/wireshark/wireshark/-/issues/20642
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/340a851d1c42a9381ce5c06a602d283c2f933f6a
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/340a851d1c42a9381ce5c06a602d283c2f933f6a
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
