Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6ba31170 by security tracker role at 2026-05-15T07:12:56+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,179 @@
+CVE-2026-8654 (Improper input validation in Delphix Continuous Data connectors
allows ...)
+ TODO: check
+CVE-2026-8634 (Crabbox prior to v0.12.0 contains an environment variable
exposure vul ...)
+ TODO: check
+CVE-2026-8629 (Crabbox prior to v0.12.0 contains a privilege escalation
vulnerability ...)
+ TODO: check
+CVE-2026-8612 (WWW::Mechanize::Cached versions before 2.00 for Perl
deserialize cache ...)
+ TODO: check
+CVE-2026-8597 (Missing integrity verification in the Triton inference handler
in Amaz ...)
+ TODO: check
+CVE-2026-8596 (Cleartext storage of sensitive information in the
ModelBuilder/Serve c ...)
+ TODO: check
+CVE-2026-7373 (Rapid7 Metasploit Pro is vulnerable to a local privilege
escalation at ...)
+ TODO: check
+CVE-2026-6811 (Stack exhaustion vulnerability in the MongoDB PHP driver can
cause app ...)
+ TODO: check
+CVE-2026-6646 (The The7 theme for WordPress is vulnerable to Stored Cross-Site
Script ...)
+ TODO: check
+CVE-2026-4094 (The FOX \u2013 Currency Switcher Professional for WooCommerce
plugin f ...)
+ TODO: check
+CVE-2026-46356 (Fleet is open source device management software. Prior to
version 4.80 ...)
+ TODO: check
+CVE-2026-45781 (The MCP Registry provides MCP clients with a list of MCP
servers, like ...)
+ TODO: check
+CVE-2026-45370 (python-utcp is the python implementation of UTCP. Prior to
1.1.3, _pre ...)
+ TODO: check
+CVE-2026-45369 (python-utcp is the python implementation of UTCP. Prior to
1.1.3, the ...)
+ TODO: check
+CVE-2026-45248 (Hedera Guardian through 3.5.1 contains an authentication
bypass vulner ...)
+ TODO: check
+CVE-2026-44700 (Elixir WebRTC is an Elixir implementation of the W3C WebRTC
API. Prior ...)
+ TODO: check
+CVE-2026-44679 (Tuist is a virtual platform team for Swift app devs. Prior to
1.180.10 ...)
+ TODO: check
+CVE-2026-44678 (Tuist is a virtual platform team for Swift app devs. In
1.180.8 and ea ...)
+ TODO: check
+CVE-2026-44673 (libyang is a YANG data modeling language library. Prior to SO
5.2.15, ...)
+ TODO: check
+CVE-2026-44671 (ZITADEL is an open source identity management platform. From
2.71.11 t ...)
+ TODO: check
+CVE-2026-44666 (HRConvert2 is a self-hosted, drag-and-drop & nosql file
conversion ser ...)
+ TODO: check
+CVE-2026-44662 (rust-openssl provides OpenSSL bindings for the Rust
programming langua ...)
+ TODO: check
+CVE-2026-44661 (python-utcp is the python implementation of UTCP. Prior to
1.1.3, the ...)
+ TODO: check
+CVE-2026-44647 (OneDev is a Git server with CI/CD, kanban, and packages. Prior
to 15.0 ...)
+ TODO: check
+CVE-2026-44638 (libsixel is a SIXEL encoder/decoder implementation derived
from kmiya' ...)
+ TODO: check
+CVE-2026-44637 (libsixel is a SIXEL encoder/decoder implementation derived
from kmiya' ...)
+ TODO: check
+CVE-2026-44636 (libsixel is a SIXEL encoder/decoder implementation derived
from kmiya' ...)
+ TODO: check
+CVE-2026-44430 (The MCP Registry provides MCP clients with a list of MCP
servers, like ...)
+ TODO: check
+CVE-2026-44429 (The MCP Registry provides MCP clients with a list of MCP
servers, like ...)
+ TODO: check
+CVE-2026-44428 (The MCP Registry provides MCP clients with a list of MCP
servers, like ...)
+ TODO: check
+CVE-2026-44427 (The MCP Registry provides MCP clients with a list of MCP
servers, like ...)
+ TODO: check
+CVE-2026-44212 (PrestaShop is an open source e-commerce web application. Prior
to 8.2. ...)
+ TODO: check
+CVE-2026-43996 (OpenImageIO is a toolset for reading, writing, and
manipulating image ...)
+ TODO: check
+CVE-2026-43909 (OpenImageIO is a toolset for reading, writing, and
manipulating image ...)
+ TODO: check
+CVE-2026-43908 (OpenImageIO is a toolset for reading, writing, and
manipulating image ...)
+ TODO: check
+CVE-2026-43907 (OpenImageIO is a toolset for reading, writing, and
manipulating image ...)
+ TODO: check
+CVE-2026-43906 (OpenImageIO is a toolset for reading, writing, and
manipulating image ...)
+ TODO: check
+CVE-2026-43905 (OpenImageIO is a toolset for reading, writing, and
manipulating image ...)
+ TODO: check
+CVE-2026-43904 (OpenImageIO is a toolset for reading, writing, and
manipulating image ...)
+ TODO: check
+CVE-2026-43903 (OpenImageIO is a toolset for reading, writing, and
manipulating image ...)
+ TODO: check
+CVE-2026-43490 (In the Linux kernel, the following vulnerability has been
resolved: k ...)
+ TODO: check
+CVE-2026-42847 (ClipBucket v5 is an open source video sharing platform. Prior
to 5.5.3 ...)
+ TODO: check
+CVE-2026-42327 (rust-openssl provides OpenSSL bindings for the Rust
programming langua ...)
+ TODO: check
+CVE-2026-41702 (VMware Fusion contains a TOCTOU (Time-of-check Time-of-use)
vulnerabil ...)
+ TODO: check
+CVE-2026-3290 (Timing limitations of the HRNG in RS9116 when power save mode
is enabl ...)
+ TODO: check
+CVE-2026-2652 (A vulnerability in mlflow/mlflow versions 3.9.0 and earlier
allows una ...)
+ TODO: check
+CVE-2026-28761 (Cross-site request forgery vulnerability exists in Musetheque
V4 Infor ...)
+ TODO: check
+CVE-2026-26191 (Fleet is open source device management software. Prior to
version 4.81 ...)
+ TODO: check
+CVE-2026-26062 (Fleet is open source device management software. Prior to
version 4.81 ...)
+ TODO: check
+CVE-2026-24899 (Fleet is open source device management software. Prior to
version 4.82 ...)
+ TODO: check
+CVE-2026-24662 (Cross-site scripting vulnerability exists in Musetheque V4
Information ...)
+ TODO: check
+CVE-2026-24000 (Fleet is open source device management software. Prior to
version 4.80 ...)
+ TODO: check
+CVE-2026-0481 (Unrestricted IP address binding in the AMD Device Metrics
Exporter (RO ...)
+ TODO: check
+CVE-2026-0438 (A System Management Mode (SMM) handler could perform a callout
to code ...)
+ TODO: check
+CVE-2026-0432 (Incorrect default permissions in the installation directory for
the AM ...)
+ TODO: check
+CVE-2026-0428 (Insufficient parameter sanitization in TEE SOC Driver could
allow an a ...)
+ TODO: check
+CVE-2026-0427 (Improper cleanup of shared register resources in GPU firmware
could al ...)
+ TODO: check
+CVE-2025-66664 (Insufficient parameter sanitization in AMD Secure Processor
(ASP) TEE ...)
+ TODO: check
+CVE-2025-66660 (Insufficient parameter sanitization in TEE SOC Driver could
allow an a ...)
+ TODO: check
+CVE-2025-54517 (Out of bounds write in AMD AMDGV_CMD_GET_DIAG_DATA ioctl
handler could ...)
+ TODO: check
+CVE-2025-54511 (Improper handling of insufficient privileges in the AMD Secure
Process ...)
+ TODO: check
+CVE-2025-52540 (An improper input validation vulnerability within the AMD
Platform Man ...)
+ TODO: check
+CVE-2025-52532 (A race condition in the MxGPU-Virtualization driver\u2019s
ioctl path ...)
+ TODO: check
+CVE-2025-48521 (Improper input validation in the AMD Secure Processor (ASP)
PCI driver ...)
+ TODO: check
+CVE-2025-48520 (An improper input validation vulnerability within the AMD
Platform Man ...)
+ TODO: check
+CVE-2025-48519 (An improper input validation vulnerability within the AMD
Platform Man ...)
+ TODO: check
+CVE-2025-48516 (Insecure default configuration state of DDR5 memory module by
AGESA Bo ...)
+ TODO: check
+CVE-2025-48513 (Use of uninitialized resource within the AMD Platform
Management Frame ...)
+ TODO: check
+CVE-2025-48512 (Incorrect default permissions in the installation directory
for the AM ...)
+ TODO: check
+CVE-2025-29944 (A buffer overflow vulnerability within AMD Sensor Fusion Hub
Driver ca ...)
+ TODO: check
+CVE-2025-29938 (An unchecked return value within the AMD Platform Management
Framework ...)
+ TODO: check
+CVE-2025-29937 (An out of bounds read within the AMD Platform Management
Framework (PM ...)
+ TODO: check
+CVE-2025-29936 (Improper input validation within the AMD Platform Management
Framework ...)
+ TODO: check
+CVE-2025-29935 (An out of bounds write within the AMD Platform Management
Framework (P ...)
+ TODO: check
+CVE-2025-0045 (Improper Input validation in the AMD Secure Processor (ASP) PCI
driver ...)
+ TODO: check
+CVE-2025-0044 (An out-of-bounds read in power management firmware by a
malicious loca ...)
+ TODO: check
+CVE-2025-0040 (Improper access control between the Joint Test Action Group
(JTAG) and ...)
+ TODO: check
+CVE-2025-0028 (An unchecked return value within the AMD Platform Management
Framework ...)
+ TODO: check
+CVE-2024-36345 (Improper input validation in the AMD OverDrive (AOD) System
Management ...)
+ TODO: check
+CVE-2024-36334 (Improper verification of cryptographic signature in the Radeon
RGB too ...)
+ TODO: check
+CVE-2024-36333 (A DLL hijacking vulnerability in the AMD Cleanup Utility could
allow a ...)
+ TODO: check
+CVE-2024-36332 (Improper isolation of GPU HW register space could allow a
privileged a ...)
+ TODO: check
+CVE-2024-36323 (Improper isolation of VCN-JPEG HW register space could allow a
malicio ...)
+ TODO: check
+CVE-2024-21962 (Improper Input Validation in the AMD RAID driver could allow
an attack ...)
+ TODO: check
+CVE-2024-21950 (An out of bounds read in the remote management firmware could
allow a ...)
+ TODO: check
+CVE-2023-31317 (Improper restriction of operations within the bounds of a
memory buffe ...)
+ TODO: check
+CVE-2023-31316 (Improperly preserved integrity of hardware configuration state
during ...)
+ TODO: check
+CVE-2023-31309 (Improper validation in Power Management Firmware (PMFW) may
allow an a ...)
+ TODO: check
CVE-2026-44068
- netatalk <unfixed>
NOTE: https://netatalk.io/security/CVE-2026-44068
@@ -130,243 +306,243 @@ CVE-2026-45699
CVE-2026-45698
- netatalk <unfixed>
NOTE: https://netatalk.io/security/CVE-2026-45698
-CVE-2026-8509
+CVE-2026-8509 (Heap buffer overflow in WebML in Google Chrome prior to
148.0.7778.168 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8510
+CVE-2026-8510 (Integer overflow in Skia in Google Chrome on Windows prior to
148.0.77 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
- libskia <unfixed>
-CVE-2026-8511
+CVE-2026-8511 (Use after free in UI in Google Chrome prior to 148.0.7778.168
allowed ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8512
+CVE-2026-8512 (Use after free in FileSystem in Google Chrome prior to
148.0.7778.168 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8513
+CVE-2026-8513 (Use after free in Input in Google Chrome on Android prior to
148.0.777 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8514
+CVE-2026-8514 (Use after free in Aura in Google Chrome prior to 148.0.7778.168
allowe ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8515
+CVE-2026-8515 (Use after free in HID in Google Chrome prior to 148.0.7778.168
allowed ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8516
+CVE-2026-8516 (Insufficient validation of untrusted input in DataTransfer in
Google C ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8517
+CVE-2026-8517 (Object lifecycle issue in WebShare in Google Chrome on Mac
prior to 14 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8518
+CVE-2026-8518 (Use after free in Blink in Google Chrome prior to
148.0.7778.168 allow ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8519
+CVE-2026-8519 (Integer overflow in ANGLE in Google Chrome on Windows prior to
148.0.7 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8520
+CVE-2026-8520 (Race in Payments in Google Chrome prior to 148.0.7778.168
allowed a re ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8521
+CVE-2026-8521 (Use after free in Tab Groups in Google Chrome prior to
148.0.7778.168 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8522
+CVE-2026-8522 (Use after free in Downloads in Google Chrome on Mac prior to
148.0.777 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8523
+CVE-2026-8523 (Use after free in Mojo in Google Chrome prior to 148.0.7778.168
allowe ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8558
+CVE-2026-8558 (Out of bounds write in Fonts in Google Chrome prior to
148.0.7778.168 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8524
+CVE-2026-8524 (Out of bounds write in WebAudio in Google Chrome prior to
148.0.7778.1 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8525
+CVE-2026-8525 (Heap buffer overflow in ANGLE in Google Chrome on Mac prior to
148.0.7 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8526
+CVE-2026-8526 (Out of bounds write in WebRTC in Google Chrome prior to
148.0.7778.168 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8527
+CVE-2026-8527 (Insufficient validation of untrusted input in Downloads in
Google Chro ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8528
+CVE-2026-8528 (Insufficient validation of untrusted input in SiteIsolation in
Google ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8529
+CVE-2026-8529 (Heap buffer overflow in Codecs in Google Chrome prior to
148.0.7778.16 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8530
+CVE-2026-8530 (Use after free in Network in Google Chrome on Windows prior to
148.0.7 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8531
+CVE-2026-8531 (Heap buffer overflow in WebML in Google Chrome on Windows prior
to 148 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8532
+CVE-2026-8532 (Integer overflow in XML in Google Chrome prior to
148.0.7778.168 allow ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8533
+CVE-2026-8533 (Use after free in Accessibility in Google Chrome prior to
148.0.7778.1 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8534
+CVE-2026-8534 (Integer overflow in GPU in Google Chrome on Linux and ChromeOS
prior t ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8535
+CVE-2026-8535 (Out of bounds read in Media in Google Chrome on Linux and
ChromeOS pri ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8536
+CVE-2026-8536 (Insufficient validation of untrusted input in ReadingMode in
Google Ch ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8537
+CVE-2026-8537 (Insufficient policy enforcement in ViewTransitions in Google
Chrome pr ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8538
+CVE-2026-8538 (Insufficient validation of untrusted input in GPU in Google
Chrome pri ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8539
+CVE-2026-8539 (Script injection in SanitizerAPI in Google Chrome on Android
prior to ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8540
+CVE-2026-8540 (Type Confusion in V8 in Google Chrome prior to 148.0.7778.168
allowed ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8541
+CVE-2026-8541 (Out of bounds read in UI in Google Chrome prior to
148.0.7778.168 allo ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8542
+CVE-2026-8542 (Use after free in Core in Google Chrome on Windows prior to
148.0.7778 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8543
+CVE-2026-8543 (Out of bounds read in FileSystem in Google Chrome on Mac prior
to 148. ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8544
+CVE-2026-8544 (Use after free in Media in Google Chrome prior to
148.0.7778.168 allow ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8545
+CVE-2026-8545 (Object corruption in Compositing in Google Chrome prior to
148.0.7778. ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8546
+CVE-2026-8546 (Out of bounds read in GPU in Google Chrome on Mac and Windows
prior to ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8547
+CVE-2026-8547 (Insufficient policy enforcement in Passwords in Google Chrome
on Windo ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8548
+CVE-2026-8548 (Out of bounds write in Media in Google Chrome prior to
148.0.7778.168 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8549
+CVE-2026-8549 (Use after free in Media in Google Chrome prior to
148.0.7778.168 allow ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8550
+CVE-2026-8550 (Use after free in Google Lens in Google Chrome prior to
148.0.7778.168 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8551
+CVE-2026-8551 (Use after free in Downloads in Google Chrome prior to
148.0.7778.168 a ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8552
+CVE-2026-8552 (Heap buffer overflow in GPU in Google Chrome on Android prior
to 148.0 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8553
+CVE-2026-8553 (Use after free in GPU in Google Chrome prior to 148.0.7778.168
allowed ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8554
+CVE-2026-8554 (Type Confusion in ANGLE in Google Chrome on Windows prior to
148.0.777 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8555
+CVE-2026-8555 (Use after free in GTK in Google Chrome on Windows prior to
148.0.7778. ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8556
+CVE-2026-8556 (Inappropriate implementation in ANGLE in Google Chrome on
Windows prio ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8557
+CVE-2026-8557 (Use after free in Accessibility in Google Chrome prior to
148.0.7778.1 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8559
+CVE-2026-8559 (Integer overflow in Internationalization in Google Chrome on
Windows p ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8560
+CVE-2026-8560 (Heap buffer overflow in SwiftShader in Google Chrome on Mac and
iOS pr ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8561
+CVE-2026-8561 (Incorrect security UI in Fullscreen in Google Chrome prior to
148.0.77 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8562
+CVE-2026-8562 (Side-channel information leakage in Navigation in Google Chrome
prior ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8563
+CVE-2026-8563 (Insufficient policy enforcement in IFrame Sandbox in Google
Chrome on ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8564
+CVE-2026-8564 (Incorrect security UI in Downloads in Google Chrome on Android
and Mac ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8565
+CVE-2026-8565 (Inappropriate implementation in Downloads in Google Chrome on
Mac prio ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8566
+CVE-2026-8566 (Insufficient policy enforcement in Payments in Google Chrome on
Androi ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8567
+CVE-2026-8567 (Integer overflow in ANGLE in Google Chrome on Windows prior to
148.0.7 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8568
+CVE-2026-8568 (Insufficient policy enforcement in AI in Google Chrome prior to
148.0. ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8569
+CVE-2026-8569 (Out of bounds write in Codecs in Google Chrome on Mac prior to
148.0.7 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8570
+CVE-2026-8570 (Type Confusion in V8 in Google Chrome prior to 148.0.7778.168
allowed ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8571
+CVE-2026-8571 (Insufficient policy enforcement in GPU in Google Chrome on
Android pri ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8572
+CVE-2026-8572 (Insufficient policy enforcement in Network in Google Chrome on
Android ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8573
+CVE-2026-8573 (Integer overflow in Codecs in Google Chrome on Windows prior to
148.0. ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8574
+CVE-2026-8574 (Use after free in Core in Google Chrome on Windows prior to
148.0.7778 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8575
+CVE-2026-8575 (Use after free in UI in Google Chrome prior to 148.0.7778.168
allowed ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8576
+CVE-2026-8576 (Inappropriate implementation in CORS in Google Chrome on Linux
and Chr ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8577
+CVE-2026-8577 (Integer overflow in Fonts in Google Chrome prior to
148.0.7778.168 all ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8578
+CVE-2026-8578 (Out of bounds read in GPU in Google Chrome on Linux prior to
148.0.777 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8579
+CVE-2026-8579 (Insufficient validation of untrusted input in Skia in Google
Chrome pr ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
- libskia <unfixed>
-CVE-2026-8580
+CVE-2026-8580 (Use after free in Mojo in Google Chrome prior to 148.0.7778.168
allowe ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8581
+CVE-2026-8581 (Use after free in GPU in Google Chrome prior to 148.0.7778.168
allowed ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8582
+CVE-2026-8582 (Object lifecycle issue in Dawn in Google Chrome prior to
148.0.7778.16 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8583
+CVE-2026-8583 (Insufficient policy enforcement in WebXR in Google Chrome on
Android p ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8584
+CVE-2026-8584 (Inappropriate implementation in Views in Google Chrome on iOS
prior to ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8585
+CVE-2026-8585 (Inappropriate implementation in Media in Google Chrome on iOS
prior to ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8586
+CVE-2026-8586 (Inappropriate implementation in Chromoting in Google Chrome
prior to 1 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
-CVE-2026-8587
+CVE-2026-8587 (Use after free in Extensions in Google Chrome on Mac prior to
148.0.77 ...)
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-43961
@@ -2780,7 +2956,7 @@ CVE-2025-12659 (The affected applications contains a
memory corruption vulnerabi
TODO: check
CVE-2024-54017 (A vulnerability has been identified in SIPROTEC 5 6MD84
(CP300) (All v ...)
NOT-FOR-US: Siemens
-CVE-2025-54518
+CVE-2025-54518 (Improper isolation of shared resources within the CPU
operation cache ...)
- xen <unfixed>
[bullseye] - xen <end-of-life> (EOLed in Bullseye)
NOTE: https://xenbits.xen.org/xsa/advisory-490.html
@@ -31543,12 +31719,12 @@ CVE-2026-21715 (A flaw in Node.js Permission Model
filesystem enforcement leaves
NOTE: Feature introduced in 20 see
https://nodejs.org/en/blog/announcements/v20-release-announce
NOTE: Documentation of the flag:
https://nodejs.org/api/cli.html#--experimental-permission (Added in v20.0.0)
CVE-2026-21714 (A memory leak occurs in Node.js HTTP/2 servers when a client
sends WIN ...)
- {DSA-6183-1}
+ {DSA-6272-1 DSA-6183-1}
- nodejs 22.22.2+dfsg+~cs22.19.15-1
NOTE:
https://nodejs.org/en/blog/vulnerability/march-2026-security-releases#memory-leak-in-nodejs-http2-server-via-window_update-on-stream-0-leads-to-resource-exhaustion-cve-2026-21714---medium
NOTE: Fixed by:
https://github.com/nodejs/node/commit/a0c73425da4c95fbcf6c13b7fe8921301290b8e6
(v20.20.2)
CVE-2026-21713 (A flaw in Node.js HMAC verification uses a non-constant-time
compariso ...)
- {DSA-6183-1}
+ {DSA-6272-1 DSA-6183-1}
- nodejs 22.22.2+dfsg+~cs22.19.15-1
NOTE:
https://nodejs.org/en/blog/vulnerability/march-2026-security-releases#timing-side-channel-in-hmac-verification-via-memcmp-in-crypto_hmaccc-leads-to-potential-mac-forgery-cve-2026-21713---medium
NOTE: Fixed by:
https://github.com/nodejs/node/commit/cfb51fa9ce1da2a8c810ec35bcc7c000f8c94faf
(v20.20.2)
@@ -31559,7 +31735,7 @@ CVE-2026-21711 (A flaw in Node.js Permission Model
network enforcement leaves Un
- nodejs <not-affected> (Vulnerable code not present)
NOTE:
https://nodejs.org/en/blog/vulnerability/march-2026-security-releases#nodejs-permission-model-bypass-uds-server-bindlisten-works-without---allow-net-cve-2026-21711---medium
CVE-2026-21710 (A flaw in Node.js HTTP request handling causes an uncaught
`TypeError` ...)
- {DSA-6183-1}
+ {DSA-6272-1 DSA-6183-1}
- nodejs 22.22.2+dfsg+~cs22.19.15-1
NOTE:
https://nodejs.org/en/blog/vulnerability/march-2026-security-releases#denial-of-service-via-__proto__-header-name-in-reqheadersdistinct-uncaught-typeerror-crashes-nodejs-process-cve-2026-21710---high
NOTE: Fixed by:
https://github.com/nodejs/node/commit/00ad47a28eb2e3dc0ff5610d58c53341acf3cf8d
(v20.20.2)
@@ -33627,6 +33803,7 @@ CVE-2025-13910 (The WP-WebAuthn plugin for WordPress is
vulnerable to Unauthenti
CVE-2024-13785 (The The Contact Form, Survey, Quiz & Popup Form Builder \u2013
ARForms ...)
NOT-FOR-US: WordPress plugin
CVE-2026-4519 (The webbrowser.open() API would accept leading dashes in the
URL which ...)
+ {DLA-4583-1}
- python3.14 3.14.4-1
- python3.13 <unfixed>
[trixie] - python3.13 <no-dsa> (Minor issue)
@@ -35908,6 +36085,7 @@ CVE-2026-4228 (A vulnerability was detected in LB-LINK
BL-WR9000 2.4.9. This aff
CVE-2026-4227 (A security vulnerability has been detected in LB-LINK BL-WR9000
2.4.9. ...)
NOT-FOR-US: LB-LINK BL-WR9000
CVE-2026-4224 (When an Expat parser with a registered ElementDeclHandler
parses an in ...)
+ {DLA-4583-1}
- python3.14 3.14.3-4
- python3.13 <unfixed>
[trixie] - python3.13 <no-dsa> (Minor issue)
@@ -35928,6 +36106,7 @@ CVE-2026-4224 (When an Expat parser with a registered
ElementDeclHandler parses
NOTE: Fixed by:
https://github.com/python/cpython/commit/196edfb06a7458377d4d0f4b3cd41724c1f3bd4a
(v3.13.13)
NOTE: Fixed by:
https://github.com/python/cpython/commit/642865ddf4b232da1f3b1f7abcfa3254c4bfe785
(3.11 branch)
CVE-2026-3644 (The fix for CVE-2026-0672, which rejected control characters in
http.c ...)
+ {DLA-4583-1}
- python3.14 3.14.3-4
- python3.13 <unfixed>
[trixie] - python3.13 <no-dsa> (Minor issue)
@@ -37425,6 +37604,7 @@ CVE-2025-61154 (Heap buffer overflow vulnerability in
LibreDWG versions v0.13.3.
CVE-2025-13913 (A privileged Ignition user, intentionally or otherwise,
imports an ext ...)
NOT-FOR-US: Inductive Automation Ignition Software
CVE-2025-13462 (The "tarfile" module would still apply normalization of
AREGTYPE (\x00 ...)
+ {DLA-4583-1}
- python3.14 3.14.3-4
- python3.13 <unfixed>
[trixie] - python3.13 <no-dsa> (Minor issue)
@@ -41054,6 +41234,7 @@ CVE-2026-2418 (The Login with Salesforce WordPress
plugin through 1.0.2 does not
CVE-2026-2365 (The Fluent Forms Pro plugin for WordPress is vulnerable to
Stored Cros ...)
NOT-FOR-US: WordPress plugin
CVE-2026-2297 (The import hook in CPython that handles legacy *.pyc files
(Sourceless ...)
+ {DLA-4583-1}
- python3.14 3.14.3-4
- python3.13 <unfixed>
[trixie] - python3.13 <no-dsa> (Minor issue)
@@ -59455,7 +59636,7 @@ CVE-2026-0865 (User-controlled header names and values
containing newlines can a
NOTE:
https://github.com/python/cpython/commit/c592227ffb48679af9845a45dbb0875d975bb219
(v3.10.20)
NOTE: wsgiref limited security support:
https://github.com/python/cpython/issues/144484
CVE-2026-0672 (When using http.cookies.Morsel, user-controlled cookie values
and para ...)
- {DLA-4455-1}
+ {DLA-4583-1 DLA-4455-1}
- python3.14 3.14.3-1 (bug #1126761)
- python3.13 3.13.12-1 (bug #1126762)
[trixie] - python3.13 <no-dsa> (Minor issue)
@@ -62082,12 +62263,12 @@ CVE-2025-59464 (A memory leak in Node.js\u2019s
OpenSSL integration occurs when
- nodejs <not-affected> (Only affects Node.js v24 releases and fixed in
v24.12.0)
NOTE:
https://nodejs.org/en/blog/vulnerability/december-2025-security-releases#memory-leak-that-enables-remote-denial-of-service-against-applications-processing-tls-client-certificates-cve-2025-59464---medium
CVE-2025-59466 (We have identified a bug in Node.js error handling where
"Maximum call ...)
- {DSA-6166-1}
+ {DSA-6272-1 DSA-6166-1}
- nodejs 22.22.0+dfsg+~cs22.19.6-1
NOTE:
https://nodejs.org/en/blog/vulnerability/december-2025-security-releases#uncatchable-maximum-call-stack-size-exceeded-error-on-nodejs-via-async_hooks-leads-to-process-crashes-bypassing-error-handlers-cve-2025-59466---medium
NOTE: Fixed by:
https://github.com/nodejs/node/commit/d7a5c587c02ebe18f9fe4de986bac55d80c2868f
(v20.20.0)
CVE-2025-59465 (A malformed `HTTP/2 HEADERS` frame with oversized, invalid
`HPACK` dat ...)
- {DSA-6166-1}
+ {DSA-6272-1 DSA-6166-1}
- nodejs 22.22.0+dfsg+~cs22.19.6-1
NOTE:
https://nodejs.org/en/blog/vulnerability/december-2025-security-releases#nodejs-http2-server-crashes-with-unhandled-error-when-receiving-malformed-headers-frame-cve-2025-59465---high
NOTE: Fixed by:
https://github.com/nodejs/node/commit/1febc48d5b0bcf9070085589d9cc586d74053f9c
(v20.20.0)
@@ -62100,7 +62281,7 @@ CVE-2025-55130 (A flaw in Node.js\u2019s Permissions
model allows attackers to b
NOTE: Fixed by:
https://github.com/nodejs/node/commit/494f62dc230b407461f4a2de893a7c6a44273d08
(v20.20.0)
NOTE: Permission model added by nodejs v20.0.0
(https://nodejs.org/en/blog/announcements/v20-release-announce)
CVE-2025-55131 (A flaw in Node.js's buffer allocation logic can expose
uninitialized m ...)
- {DSA-6166-1}
+ {DSA-6272-1 DSA-6166-1}
- nodejs 22.22.0+dfsg+~cs22.19.6-1
NOTE:
https://nodejs.org/en/blog/vulnerability/december-2025-security-releases#timeout-based-race-conditions-make-uint8arraybufferalloc-non-zerofilled-cve-2025-55131---high
NOTE: Fixed by:
https://github.com/nodejs/node/commit/51f4de4b4a52b5b0eb2c63ecbb4126577e05f636
(v20.20.0)
@@ -146830,6 +147011,7 @@ CVE-2025-23167 (A flaw in Node.js 20's HTTP parser
allows improper termination o
NOTE: https://github.com/nodejs/llhttp/pull/239
NOTE: Fixed by:
https://github.com/nodejs/llhttp/commit/72f53095152740e176438cf7fe68742fe1cb7be8
(v9.0.1)
CVE-2025-23166 (The C++ method SignTraits::DeriveBits() may incorrectly call
ThrowExce ...)
+ {DSA-6272-1}
- nodejs 20.19.2+dfsg-1 (bug #1105832)
[bullseye] - nodejs <not-affected> (The vulnerable code was introduced
later)
NOTE:
https://nodejs.org/en/blog/vulnerability/may-2025-security-releases#improper-error-handling-in-async-cryptographic-operations-crashes-process-cve-2025-23166---high
@@ -185288,7 +185470,7 @@ CVE-2025-0411 (7-Zip Mark-of-the-Web Bypass
Vulnerability. This vulnerability al
NOTE: https://www.zerodayinitiative.com/advisories/ZDI-25-045/
NOTE: https://www.openwall.com/lists/oss-security/2025/01/24/6
CVE-2025-23085 (A memory leak could occur when a remote peer abruptly closes
the socke ...)
- {DSA-6166-1 DLA-4067-1}
+ {DSA-6272-1 DSA-6166-1 DLA-4067-1}
- nodejs 20.18.2+dfsg-1 (bug #1094134)
NOTE:
https://nodejs.org/en/blog/vulnerability/january-2025-security-releases#goaway-http2-frames-cause-memory-leak-outside-heap-cve-2025-23085---medium
NOTE: Fixed by:
https://github.com/nodejs/node/commit/3c7686163ed4c6ae3e5901b758b7a7d4fd5bb0c0
(v23.6.1)
@@ -432765,8 +432947,8 @@ CVE-2022-23828
RESERVED
CVE-2022-23827
REJECTED
-CVE-2022-23826
- RESERVED
+CVE-2022-23826 (A TOCTOU (Time-Of-Check to Time-Of-Use) in the graphics
interface may ...)
+ TODO: check
CVE-2022-23825 (Aliases in the branch predictor may cause some AMD processors
to predi ...)
{DSA-5184-1}
- xen 4.16.2-1
@@ -432799,7 +432981,7 @@ CVE-2022-23819
RESERVED
CVE-2022-23818 (Insufficient input validation on the model specific register:
VM_HSAVE ...)
NOT-FOR-US: AMD
-CVE-2022-23817 (Insufficient checking of memory buffer in ASP Secure OS may
allow an a ...)
+CVE-2022-23817 (Insufficient checking of memory buffer in AMD Secure Processor
(ASP) S ...)
NOT-FOR-US: AMD
CVE-2022-23816
REJECTED
@@ -494740,8 +494922,8 @@ CVE-2021-26382 (An attacker with root account
privileges can load any legitimate
NOT-FOR-US: AMD
CVE-2021-26381 (Improper system call parameter validation in the Trusted OS
may allow ...)
TODO: check
-CVE-2021-26380
- RESERVED
+CVE-2021-26380 (A compromised Trusted OS (TOS) driver could issue a malformed
call tha ...)
+ TODO: check
CVE-2021-26379 (Insufficient input validation of mailbox data in the SMU may
allow an ...)
NOT-FOR-US: AMD
CVE-2021-26378 (Insufficient bound checks in the System Management Unit (SMU)
may resu ...)
@@ -862471,9 +862653,9 @@ CVE-2012-4552 (Stack-based buffer overflow in the
error function in ssg/ssgParse
[squeeze] - plib <no-dsa> (Minor issue)
CVE-2012-4551 (Use-after-free vulnerability in libunity-webapps before 2.4.1
allows r ...)
NOT-FOR-US: libunity-webapps
-CVE-2012-4550 (JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP)
before ...)
+CVE-2012-4550 (A flaw was found in JBoss Enterprise Application Platform. When
role-b ...)
- jbossas4 <not-affected> (Only builds a few libraries, not the full
application server)
-CVE-2012-4549 (The processInvocation function in
org.jboss.as.ejb3.security.Authoriza ...)
+CVE-2012-4549 (A flaw was found in JBoss Enterprise Application Platform. The
`proces ...)
- jbossas4 <not-affected> (Only builds a few libraries, not the full
application server)
CVE-2012-4548 (Argument injection vulnerability in syntax-highlighting.sh in
cgit 9.0 ...)
- cgit <not-affected> (Fixed before the initial upload into the archive)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6ba3117082cab1d3368a832808c9526209a9bd01
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6ba3117082cab1d3368a832808c9526209a9bd01
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
