[Git][security-tracker-team/security-tracker][master] Add tracking bug for php8.4 as update was in DSA but not yet in unstable

Salvatore Bonaccorso (@carnil) Fri, 08 May 2026 12:48:17 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
3d2abb4b by Salvatore Bonaccorso at 2026-05-08T21:47:32+02:00
Add tracking bug for php8.4 as update was in DSA but not yet in unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1225,7 +1225,7 @@ CVE-2026-43284 (In the Linux kernel, the following 
vulnerability has been resolv
        - linux 7.0.4-1
 CVE-2026-7258
        {DSA-6256-1 DSA-6255-1}
-       - php8.4 <unfixed>
+       - php8.4 <unfixed> (bug #1136054)
        - php8.2 <removed>
        - php7.4 <removed>
        NOTE: 
https://github.com/php/php-src/security/advisories/GHSA-m8rr-4c36-8gq4
@@ -1235,63 +1235,63 @@ CVE-2026-7258
        NOTE: 
https://github.com/php/php-src/commit/a38418777f65780d9d622197677e90567690fc07
 CVE-2026-7568
        {DSA-6256-1 DSA-6255-1}
-       - php8.4 <unfixed>
+       - php8.4 <unfixed> (bug #1136054)
        - php8.2 <removed>
        - php7.4 <removed>
        NOTE: 
https://github.com/php/php-src/security/advisories/GHSA-96wq-48vp-hh57
        NOTE: 
https://github.com/php/php-src/commit/47def8ce1db1fdbffcfc1f5bb11877a0e22d4b32
 CVE-2026-7262
        {DSA-6256-1 DSA-6255-1}
-       - php8.4 <unfixed>
+       - php8.4 <unfixed> (bug #1136054)
        - php8.2 <removed>
        - php7.4 <removed>
        NOTE: 
https://github.com/php/php-src/security/advisories/GHSA-hmxp-6pc4-f3vv
        NOTE: 
https://github.com/php/php-src/commit/79551ab8b1a97760c739e372f9bc359619f3554d
 CVE-2026-7261
        {DSA-6256-1 DSA-6255-1}
-       - php8.4 <unfixed>
+       - php8.4 <unfixed> (bug #1136054)
        - php8.2 <removed>
        - php7.4 <removed>
        NOTE: 
https://github.com/php/php-src/commit/db2a7f9348fd5dda5fd162061786a664c417bf5b
        NOTE: 
https://github.com/php/php-src/security/advisories/GHSA-m33r-qmcv-p97q
 CVE-2026-6722
        {DSA-6256-1 DSA-6255-1}
-       - php8.4 <unfixed>
+       - php8.4 <unfixed> (bug #1136054)
        - php8.2 <removed>
        - php7.4 <removed>
        NOTE: 
https://github.com/php/php-src/security/advisories/GHSA-85c2-q967-79q5
        NOTE: 
https://github.com/php/php-src/commit/aee3b3ac9b816b0def1c462695b483b49a83148e
 CVE-2025-14179
        {DSA-6256-1 DSA-6255-1}
-       - php8.4 <unfixed>
+       - php8.4 <unfixed> (bug #1136054)
        - php8.2 <removed>
        - php7.4 <removed>
        NOTE: 
https://github.com/php/php-src/security/advisories/GHSA-w476-322c-wpvm
        NOTE: 
https://github.com/php/php-src/commit/3f40b65323dd1b85e9bab6878237d3867e449d5c
 CVE-2026-6104
        {DSA-6256-1}
-       - php8.4 <unfixed>
+       - php8.4 <unfixed> (bug #1136054)
        - php8.2 <not-affected> (Only affects 8.4 and later)
        - php7.4 <not-affected> (Only affects 8.4 and later)
        NOTE: 
https://github.com/php/php-src/security/advisories/GHSA-74r9-qxhc-fx53
        NOTE: 
https://github.com/php/php-src/commit/56ee76f82045ab728f3e63e20bf9530621e829cb
 CVE-2026-7259
        {DSA-6256-1 DSA-6255-1}
-       - php8.4 <unfixed>
+       - php8.4 <unfixed> (bug #1136054)
        - php8.2 <removed>
        - php7.4 <removed>
        NOTE: 
https://github.com/php/php-src/security/advisories/GHSA-wm6j-2649-pv75
        NOTE: 
https://github.com/php/php-src/commit/79a054eae016c56409432e69aebc8ca908a88838
 CVE-2026-6735
        {DSA-6256-1 DSA-6255-1}
-       - php8.4 <unfixed>
+       - php8.4 <unfixed> (bug #1136054)
        - php8.2 <removed>
        - php7.4 <removed>
        NOTE: 
https://github.com/php/php-src/security/advisories/GHSA-7qg2-v9fj-4mwv
        NOTE: 
https://github.com/php/php-src/commit/99a5ad7441de9914246c7863adb6997396008b9d
 CVE-2026-7263
        {DSA-6256-1}
-       - php8.4 <unfixed>
+       - php8.4 <unfixed> (bug #1136054)
        - php8.2 <not-affected> (Only affects 8.4 and later)
        - php7.4 <not-affected> (Only affects 8.4 and later)
        NOTE: 
https://github.com/php/php-src/security/advisories/GHSA-4jhr-8w89-j733



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3d2abb4b31dff1e81b34cd41a877dd600186a9ae

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3d2abb4b31dff1e81b34cd41a877dd600186a9ae
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Add tracking bug for php8.4 as update was in DSA but not yet in unstable

Reply via email to