Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
de125811 by Salvatore Bonaccorso at 2026-05-10T19:55:36+02:00
Drop temporary calibre entry
See #1136055 upstream does not consider those real vulnerabilities and
won't neider assign CVEs. So there is no real point into further
tracking this as security issue and the (bug) fixes will land in the
point releases without further hassle to track the temporary entries.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -323,9 +323,6 @@ CVE-2025-15634 (A missing authorization vulnerability in
HCL BigFix WebUI allows
NOT-FOR-US: HCL
CVE-2025-15633 (An improper authorization vulnerability in HCL BigFix WebUI
allows an ...)
NOT-FOR-US: HCL
-CVE-2026-XXXX [Fix security vulnerabilities and code quality issues in 9.8]
- - calibre 9.8.0+ds+~0.10.5-1 (bug #1135543)
- NOTE:
https://github.com/kovidgoyal/calibre/commit/b0c4ba19686232d5bff99d58ce6019546ef4d166
CVE-2026-8178 (An issue exists in Amazon Redshift JDBC Driver versions prior
to 2.2.2 ...)
NOT-FOR-US: Amazon
CVE-2026-8153 (OS command injection in Dashboard Server interface in Universal
Robots ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/de1258112ed771cd979f05392c7e1c27be85bddd
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/de1258112ed771cd979f05392c7e1c27be85bddd
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
