Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b8ce4949 by Salvatore Bonaccorso at 2026-05-14T22:42:47+02:00
Update status for CVE-2026-27851/dovecot
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2284,7 +2284,10 @@ CVE-2026-29204 (Insufficient ownership check in
`clientarea.php` allows an authe
TODO: check
CVE-2026-27851 (When safe filter is used with variable expansion, all
following pipeli ...)
- dovecot <unfixed> (bug #1136444)
+ [bookworm] - dovecot <not-affected> (Vulnerable code introduced later)
+ [bullseye] - dovecot <not-affected> (Vulnerable code introduced later)
NOTE: https://www.openwall.com/lists/oss-security/2026/05/12/6
+ NOTE: Fixed by:
https://github.com/dovecot/core/commit/d75c04e8ccbeb70d66d05938665fe145175ac1b5
(2.4.4)
CVE-2026-27662 (Affected devices do not properly restrict access to the web
browser vi ...)
NOT-FOR-US: Siemens
CVE-2026-26083 (A missing authorization vulnerability in Fortinet FortiSandbox
5.0.0 t ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b8ce4949b1b75abac472c1b172310ac647ac4bf1
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b8ce4949b1b75abac472c1b172310ac647ac4bf1
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
