Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
52e1218d by Salvatore Bonaccorso at 2026-05-09T08:29:20+02:00
Add CVE-2026-41070/openvpn-auth-oauth2
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -150,7 +150,9 @@ CVE-2026-41308 (Password Pusher is an open source
application to communicate sen
CVE-2026-41161 (Sync-in Server is a secure, open-source platform for file
storage, sha ...)
NOT-FOR-US: Sync-in Server
CVE-2026-41070 (openvpn-auth-oauth2 is a plugin/management interface client
for OpenVP ...)
- TODO: check
+ - openvpn-auth-oauth2 <unfixed>
+ NOTE:
https://github.com/jkroepke/openvpn-auth-oauth2/security/advisories/GHSA-246w-jgmq-88fg
+ NOTE:
https://github.com/jkroepke/openvpn-auth-oauth2/commit/36f69a6c67c1054da7cbfa04ced3f0555127c8f2
(v1.27.3)
CVE-2026-3318 (Open redirection vulnerability in the latest demo version of
the Cradl ...)
TODO: check
CVE-2026-39816 (The optional extension component TinkerpopClientService is
missing the ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/52e1218d92315a394a0efd3aeceb5358a0dcd928
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/52e1218d92315a394a0efd3aeceb5358a0dcd928
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
