Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker
Commits:
22b16ff1 by Chris Lamb at 2026-03-07T11:05:11-08:00
Triage CVE-2026-2659, CVE-2026-2661, CVE-2026-3388 & CVE-2026-3389 in squirrel3
for bullseye LTS.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2817,10 +2817,12 @@ CVE-2026-3390 (A vulnerability was identified in
FascinatedBox lily up to 2.3. T
CVE-2026-3389 (A vulnerability was determined in Squirrel up to 3.2. This
vulnerabili ...)
- squirrel3 <unfixed>
[trixie] - squirrel3 <no-dsa> (Minor issue)
+ [bullseye] - squirrel3 <postponed> (Minor issue; can be fixed in next
update)
NOTE: https://github.com/albertodemichelis/squirrel/issues/314
CVE-2026-3388 (A vulnerability was found in Squirrel up to 3.2. This affects
the func ...)
- squirrel3 <unfixed>
[trixie] - squirrel3 <no-dsa> (Minor issue)
+ [bullseye] - squirrel3 <postponed> (Minor issue; can be fixed in next
update)
NOTE: https://github.com/albertodemichelis/squirrel/issues/312
CVE-2026-3387 (A vulnerability has been found in wren-lang wren up to 0.4.0.
Affected ...)
NOT-FOR-US: wren-lang wren
@@ -7554,12 +7556,14 @@ CVE-2026-2662 (A weakness has been identified in
FascinatedBox lily up to 2.3. T
CVE-2026-2661 (A security flaw has been discovered in Squirrel up to 3.2. This
affect ...)
- squirrel3 <unfixed>
[trixie] - squirrel3 <no-dsa> (Minor issue)
+ [bullseye] - squirrel3 <postponed> (Minor issue; can be fixed in next
update)
NOTE: https://github.com/albertodemichelis/squirrel/issues/310
CVE-2026-2660 (A vulnerability was identified in FascinatedBox lily up to 2.3.
Affect ...)
NOT-FOR-US: FascinatedBox lily
CVE-2026-2659 (A vulnerability was determined in Squirrel up to 3.2. Affected
by this ...)
- squirrel3 <unfixed>
[trixie] - squirrel3 <no-dsa> (Minor issue)
+ [bullseye] - squirrel3 <postponed> (Minor issue; can be fixed in next
update)
NOTE: https://github.com/albertodemichelis/squirrel/issues/311
CVE-2026-2658 (A vulnerability was found in newbee-ltd newbee-mall up to
a069069b0702 ...)
NOT-FOR-US: newbee-ltd newbee-mall
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/22b16ff1548c98b198d663e8e8c0caea328ca5ae
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/22b16ff1548c98b198d663e8e8c0caea328ca5ae
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
