[Git][security-tracker-team/security-tracker][master] bugnums

Moritz Muehlenhoff (@jmm) Sun, 10 May 2026 12:00:44 -0700


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
8a4157b4 by Moritz Muehlenhoff at 2026-05-10T20:59:36+02:00
bugnums

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -14951,31 +14951,31 @@ CVE-2026-33193 (Docmost is open-source collaborative 
wiki and documentation soft
 CVE-2026-33146 (Docmost is open-source collaborative wiki and documentation 
software.  ...)
        NOT-FOR-US: Docmost
 CVE-2026-33023 (libsixel is a SIXEL encoder/decoder implementation derived 
from kmiya' ...)
-       - libsixel <unfixed>
+       - libsixel <unfixed> (bug #1136211)
        [trixie] - libsixel <no-dsa> (Minor issue)
        [bookworm] - libsixel <no-dsa> (Minor issue)
        [bullseye] - libsixel <postponed> (Minor issue)
        NOTE: 
https://github.com/saitoha/libsixel/security/advisories/GHSA-hr25-g2j6-qjw6
 CVE-2026-33021 (libsixel is a SIXEL encoder/decoder implementation derived 
from kmiya' ...)
-       - libsixel <unfixed>
+       - libsixel <unfixed> (bug #1136211)
        [trixie] - libsixel <no-dsa> (Minor issue)
        [bookworm] - libsixel <no-dsa> (Minor issue)
        [bullseye] - libsixel <postponed> (Minor issue)
        NOTE: 
https://github.com/saitoha/libsixel/security/advisories/GHSA-j6m5-2cc7-3whc
 CVE-2026-33020 (libsixel is a SIXEL encoder/decoder implementation derived 
from kmiya' ...)
-       - libsixel <unfixed>
+       - libsixel <unfixed> (bug #1136211)
        [trixie] - libsixel <no-dsa> (Minor issue)
        [bookworm] - libsixel <no-dsa> (Minor issue)
        [bullseye] - libsixel <postponed> (Minor issue)
        NOTE: 
https://github.com/saitoha/libsixel/security/advisories/GHSA-2xgm-4x47-2x2p
 CVE-2026-33019 (libsixel is a SIXEL encoder/decoder implementation derived 
from kmiya' ...)
-       - libsixel <unfixed>
+       - libsixel <unfixed> (bug #1136211)
        [trixie] - libsixel <no-dsa> (Minor issue)
        [bookworm] - libsixel <no-dsa> (Minor issue)
        [bullseye] - libsixel <postponed> (Minor issue)
        NOTE: 
https://github.com/saitoha/libsixel/security/advisories/GHSA-c854-ffg9-g72c
 CVE-2026-33018 (libsixel is a SIXEL encoder/decoder implementation derived 
from kmiya' ...)
-       - libsixel <unfixed>
+       - libsixel <unfixed> (bug #1136211)
        [trixie] - libsixel <no-dsa> (Minor issue)
        [bookworm] - libsixel <no-dsa> (Minor issue)
        [bullseye] - libsixel <postponed> (Minor issue)
@@ -15589,7 +15589,7 @@ CVE-2025-7389 (A vulnerability in the AdminServer 
component of OpenEdge on all s
 CVE-2025-70023 (An issue pertaining to CWE-843: Access of Resource Using 
Incompatible  ...)
        NOT-FOR-US: transloadit uppy
 CVE-2025-69993 (Leaflet versions up to and including 1.9.4 are vulnerable to 
Cross-Sit ...)
-       - leaflet <unfixed>
+       - leaflet <unfixed> (bug #1136210)
        [trixie] - leaflet <no-dsa> (Minor issue)
        [bookworm] - leaflet <no-dsa> (Minor issue)
        [bullseye] - leaflet <postponed> (Minor issue)
@@ -55598,7 +55598,7 @@ CVE-2025-15367 (The poplib module, when passed a 
user-controlled command, can ha
        [bullseye] - pypy3 <postponed> (Minor issue)
        - python2.7 <removed>
        [bullseye] - python2.7 <end-of-life> (EOL in bullseye LTS)
-       - jython <unfixed>
+       - jython <unfixed> (bug #1136209)
        [trixie] - jython <no-dsa> (Minor issue)
        [bookworm] - jython <no-dsa> (Minor issue)
        [bullseye] - jython <end-of-life> (EOL in bullseye LTS)
@@ -55621,7 +55621,7 @@ CVE-2025-15366 (The imaplib module, when passed a 
user-controlled command, can h
        [bullseye] - pypy3 <postponed> (Minor issue)
        - python2.7 <removed>
        [bullseye] - python2.7 <end-of-life> (EOL in bullseye LTS)
-       - jython <unfixed>
+       - jython <unfixed> (bug #1136208)
        [trixie] - jython <no-dsa> (Minor issue)
        [bookworm] - jython <no-dsa> (Minor issue)
        [bullseye] - jython <end-of-life> (EOL in bullseye LTS)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8a4157b4568870c6374fbaadf6e0f80663524c18

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8a4157b4568870c6374fbaadf6e0f80663524c18
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] bugnums

Reply via email to