Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5db3e7e7 by Salvatore Bonaccorso at 2026-05-14T14:51:31+02:00
Track fixed version for CVE-2026-2492/tensorflow
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -45151,7 +45151,7 @@ CVE-2026-2855 (A vulnerability has been found in D-Link
DWR-M960 1.01.07. Affect
CVE-2026-2635 (MLflow Use of Default Password Authentication Bypass
Vulnerability. Th ...)
NOT-FOR-US: mlflow
CVE-2026-2492 (TensorFlow HDF5 Library Uncontrolled Search Path Element Local
Privile ...)
- - tensorflow <unfixed> (bug #1128653)
+ - tensorflow 2.14.1+dfsg-3.1 (bug #1128653)
NOTE: https://www.zerodayinitiative.com/advisories/ZDI-26-116/
NOTE: Fixed by:
https://github.com/tensorflow/tensorflow/commit/46e7f7fb144fd11cf6d17c23dd47620328d77082
(v2.21.0-rc0)
CVE-2026-2490 (RustDesk Client for Windows Transfer File Link Following
Information D ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5db3e7e74b6df235214b59aae7af148a7c9b1dc4
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5db3e7e74b6df235214b59aae7af148a7c9b1dc4
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
