Lukas Märdian pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
13d93b46 by Lukas Märdian at 2026-05-13T21:12:33+02:00
Reserve DLA-4581-1 for nghttp2
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[13 May 2026] DLA-4581-1 nghttp2 - security update
+ {CVE-2026-27135}
+ [bullseye] - nghttp2 1.43.0-1+deb11u3
[12 May 2026] DLA-4580-1 exim4 - security update
{CVE-2026-45185}
[bullseye] - exim4 4.94.2-7+deb11u5
=====================================
data/dla-needed.txt
=====================================
@@ -340,12 +340,6 @@ netty (rouca)
NOTE: 20260114: fix remaining CVE wait DSA (rouca)
NOTE: 20200331: release DLA-4519-1 netty. Unfortunatly partial due to new
CVEs (rouca)
--
-nghttp2 (slyon)
- NOTE: 20260402: Added by Front-Desk (ta)
- NOTE: 20260412: prepared MR for bullseye:
https://salsa.debian.org/lts-team/packages/nghttp2/-/merge_requests/1 (slyon)
- NOTE: 20260416: ping debian-security for trixie & bookworm fixes in
salsa:debian/nghttp2 #12 & #11 (slyon)
- NOTE: 20260423: pending review (slyon)
---
nginx
NOTE: 20260328: Added by Front-Desk (Beuc)
NOTE: 20260328: 6 new CVEs; also follow DSA-6131-1 (1 CVE)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/13d93b462eb937c2967936349162a73ef6130c10
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/13d93b462eb937c2967936349162a73ef6130c10
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
