Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
1054be74 by Emilio Pozuelo Monfort at 2026-05-13T11:22:54+02:00
elts: add dnsmasq
- - - - -
b5ddaa0a by Emilio Pozuelo Monfort at 2026-05-13T11:22:54+02:00
lts: triage python-django issues as no-dsa
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -6858,18 +6858,21 @@ CVE-2026-6907 (An issue was discovered in 6.0 before
6.0.5 and 5.2 before 5.2.14
- python-django 3:5.2.14-1 (bug #1135755)
[trixie] - python-django <no-dsa> (Minor issue)
[bookworm] - python-django <no-dsa> (Minor issue)
+ [bullseye] - python-django <no-dsa> (Minor issue)
NOTE:
https://www.djangoproject.com/weblog/2026/may/05/security-releases/
NOTE: Fixed by:
https://github.com/django/django/commit/2115d4eaee15107f5cd290d7cfcc5ffe3ad43661
(5.2.14)
CVE-2026-35192 (An issue was discovered in 6.0 before 6.0.5 and 5.2 before
5.2.14. Res ...)
- python-django 3:5.2.14-1 (bug #1135755)
[trixie] - python-django <no-dsa> (Minor issue)
[bookworm] - python-django <no-dsa> (Minor issue)
+ [bullseye] - python-django <no-dsa> (Minor issue)
NOTE:
https://www.djangoproject.com/weblog/2026/may/05/security-releases/
NOTE: Fixed by:
https://github.com/django/django/commit/47cf968c125e3fab317e10fe150ec479e745f995
(5.2.14)
CVE-2026-5766 (An issue was discovered in 6.0 before 6.0.5 and 5.2 before
5.2.14. ASG ...)
- python-django 3:5.2.14-1 (bug #1135755)
[trixie] - python-django <no-dsa> (Minor issue)
[bookworm] - python-django <no-dsa> (Minor issue)
+ [bullseye] - python-django <no-dsa> (Minor issue)
NOTE:
https://www.djangoproject.com/weblog/2026/may/05/security-releases/
NOTE: Fixed by:
https://github.com/django/django/commit/2ec27eda3ba6c14f0856e6e3eb1df07c41fd95e6
(5.2.14)
CVE-2026-43869 (Improper Validation of Certificate with Host Mismatch
vulnerability in ...)
=====================================
data/dla-needed.txt
=====================================
@@ -98,6 +98,9 @@ coturn
cups (Thorsten Alteholz)
NOTE: 20260404: Added by Front-Desk (ta)
--
+dnsmasq
+ NOTE: 20260513: Added by Front-Desk (pochu)
+--
docker-registry
NOTE: 20260419: Added by Front-Desk (rouca)
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/9aa54fbafc6563656670b5e18ffc369ff3bc5ae5...b5ddaa0aa7f7904d72d9a697f823da58563ad590
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/9aa54fbafc6563656670b5e18ffc369ff3bc5ae5...b5ddaa0aa7f7904d72d9a697f823da58563ad590
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
