Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
0ed286ca by security tracker role at 2026-05-15T19:13:24+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,17 +1,208 @@
-CVE-2026-8454
+CVE-2026-8695 (radare2 6.1.5 contains a use-after-free vulnerability in the
gdbr_thre ...)
+ TODO: check
+CVE-2026-8686 (Missing bounds validation in the MQTT v5.0 property parser in
coreMQTT ...)
+ TODO: check
+CVE-2026-8425 (The Notify Odoo plugin for WordPress is vulnerable to
Cross-Site Reque ...)
+ TODO: check
+CVE-2026-8398 (A supply chain attack compromised the official installation
packages o ...)
+ TODO: check
+CVE-2026-7563 (The Classified Listing \u2013 AI-Powered Classified ads &
Business Dir ...)
+ TODO: check
+CVE-2026-7182 (Diagram's export module is vulnerable to Path Traversal in src
attribu ...)
+ TODO: check
+CVE-2026-7046 (The NEX-Forms \u2013 Ultimate Forms Plugin for WordPress plugin
for Wo ...)
+ TODO: check
+CVE-2026-6415 (The Advanced Custom Fields: Font Awesome plugin for WordPress
is vulne ...)
+ TODO: check
+CVE-2026-6403 (The Quick Playground plugin for WordPress is vulnerable to Path
Traver ...)
+ TODO: check
+CVE-2026-6228 (The Frontend Admin by DynamiApps plugin for WordPress is
vulnerable to ...)
+ TODO: check
+CVE-2026-5229 (The Form Notify plugin for WordPress is vulnerable to
Authentication B ...)
+ TODO: check
+CVE-2026-4683 (The Smartcat Translator for WPML plugin for WordPress is
vulnerable to ...)
+ TODO: check
+CVE-2026-4054 (Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13,
11.4.x <= 1 ...)
+ TODO: check
+CVE-2026-4053 (Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13 fail
to enfo ...)
+ TODO: check
+CVE-2026-46508 (Turborepo is a high-performance build system for JavaScript
and TypeSc ...)
+ TODO: check
+CVE-2026-46483 (Vim is an open source, command line text editor. Prior to
9.2.0479, a ...)
+ TODO: check
+CVE-2026-46474 (Trog::TOTP versions before 1.006 for Perl generate secrets
using rand. ...)
+ TODO: check
+CVE-2026-46408 (Vvveb is a powerful and easy to use CMS with page builder to
build web ...)
+ TODO: check
+CVE-2026-46407 (Vvveb is a powerful and easy to use CMS with page builder to
build web ...)
+ TODO: check
+CVE-2026-46383 (Microsoft APM is an open-source, community-driven dependency
manager f ...)
+ TODO: check
+CVE-2026-46367 (phpMyFAQ before 4.1.2 contains a stored cross-site scripting
vulnerabi ...)
+ TODO: check
+CVE-2026-46366 (phpMyFAQ before 4.1.2 contains an information disclosure
vulnerability ...)
+ TODO: check
+CVE-2026-46365 (phpMyFAQ before 4.1.2 contains a missing authorization
vulnerability i ...)
+ TODO: check
+CVE-2026-46364 (phpMyFAQ before 4.1.2 contains an unauthenticated SQL
injection vulner ...)
+ TODO: check
+CVE-2026-46363 (phpMyFAQ before 4.1.2 contains a stored cross-site scripting
vulnerabi ...)
+ TODO: check
+CVE-2026-46362 (phpMyFAQ before 4.1.2 contains an authorization bypass
vulnerability i ...)
+ TODO: check
+CVE-2026-46361 (phpMyFAQ before 4.1.2 contains a stored cross-site scripting
vulnerabi ...)
+ TODO: check
+CVE-2026-46360 (phpMyFAQ before 4.1.2 contains a stored cross-site scripting
vulnerabi ...)
+ TODO: check
+CVE-2026-46359 (phpMyFAQ before 4.1.2 contains a sql injection vulnerability
in Curren ...)
+ TODO: check
+CVE-2026-45803 (`gh` is GitHub\u2019s official command line tool. From 1.6.0
to before ...)
+ TODO: check
+CVE-2026-45800 (Vvveb is a powerful and easy to use CMS with page builder to
build web ...)
+ TODO: check
+CVE-2026-45773 (Turborepo is a high-performance build system for JavaScript
and TypeSc ...)
+ TODO: check
+CVE-2026-45772 (Turborepo is a high-performance build system for JavaScript
and TypeSc ...)
+ TODO: check
+CVE-2026-45736 (ws is an open source WebSocket client and server for Node.js.
Prior to ...)
+ TODO: check
+CVE-2026-45622 (Vvveb is a powerful and easy to use CMS with page builder to
build web ...)
+ TODO: check
+CVE-2026-45616 (Vvveb is a powerful and easy to use CMS with page builder to
build web ...)
+ TODO: check
+CVE-2026-45539 (Microsoft APM is an open-source, community-driven dependency
manager f ...)
+ TODO: check
+CVE-2026-45038 (Tabby (formerly Terminus) is a highly configurable terminal
emulator. ...)
+ TODO: check
+CVE-2026-45037 (Tabby (formerly Terminus) is a highly configurable terminal
emulator. ...)
+ TODO: check
+CVE-2026-45036 (Tabby (formerly Terminus) is a highly configurable terminal
emulator. ...)
+ TODO: check
+CVE-2026-45035 (Tabby (formerly Terminus) is a highly configurable terminal
emulator. ...)
+ TODO: check
+CVE-2026-45010 (phpMyFAQ before 4.1.2 contains an improper restriction of
excessive au ...)
+ TODO: check
+CVE-2026-45009 (phpMyFAQ before 4.1.2 contains an insufficient authorization
vulnerabi ...)
+ TODO: check
+CVE-2026-45008 (phpMyFAQ before 4.1.2 contains a path traversal vulnerability
in Clien ...)
+ TODO: check
+CVE-2026-45007 (phpMyFAQ before 4.1.2 contains missing permission checks in
Configurat ...)
+ TODO: check
+CVE-2026-44826 (Vvveb is a powerful and easy to use CMS with page builder to
build web ...)
+ TODO: check
+CVE-2026-44774 (Traefik is an HTTP reverse proxy and load balancer. Prior to
2.11.46, ...)
+ TODO: check
+CVE-2026-44719 (Mathesar is a web application that makes working with
PostgreSQL datab ...)
+ TODO: check
+CVE-2026-44718 (Mathesar is a web application that makes working with
PostgreSQL datab ...)
+ TODO: check
+CVE-2026-44717 (MCP Calculate Server is a mathematical calculation service
based on MC ...)
+ TODO: check
+CVE-2026-44714 (The bitcoinj library is a Java implementation of the Bitcoin
protocol. ...)
+ TODO: check
+CVE-2026-44699 (LibJWT is a C JSON Web Token Library. From 3.0.0 to 3.3.2,
libjwt acce ...)
+ TODO: check
+CVE-2026-44641 (Microsoft APM is an open-source, community-driven dependency
manager f ...)
+ TODO: check
+CVE-2026-44366 (Vvveb is a powerful and easy to use CMS with page builder to
build web ...)
+ TODO: check
+CVE-2026-44310 (Gitsign is a keyless Sigstore to signing tool for Git commits
with you ...)
+ TODO: check
+CVE-2026-44309 (Gitsign is a keyless Sigstore to signing tool for Git commits
with you ...)
+ TODO: check
+CVE-2026-44088 (SzafirHost verifies the signature of the downloaded JAR file
using cla ...)
+ TODO: check
+CVE-2026-42458 (Magento Long Term Support (LTS) is an unofficial,
community-driven pro ...)
+ TODO: check
+CVE-2026-42207 (Magento Long Term Support (LTS) is an unofficial,
community-driven pro ...)
+ TODO: check
+CVE-2026-42155 (Magento Long Term Support (LTS) is an unofficial,
community-driven pro ...)
+ TODO: check
+CVE-2026-41971 (Permission control vulnerability in the security control
module.Impact ...)
+ TODO: check
+CVE-2026-41970 (Out-of-bounds write vulnerability in the distributed file
system modul ...)
+ TODO: check
+CVE-2026-41969 (Permission control vulnerability in the projection
module.Impact: Succ ...)
+ TODO: check
+CVE-2026-41968 (Permission control vulnerability in the manufacturability
design modul ...)
+ TODO: check
+CVE-2026-41967 (Permission control vulnerability in the manufacturability
design modul ...)
+ TODO: check
+CVE-2026-41966 (Permission control vulnerability in the smart sensing
service.Impact: ...)
+ TODO: check
+CVE-2026-41965 (Use-After-Free (UAF) vulnerability in the web.Impact:
Successful explo ...)
+ TODO: check
+CVE-2026-41964 (Permission control vulnerability in the web.Impact: Successful
exploit ...)
+ TODO: check
+CVE-2026-41963 (Stack overflow vulnerability in the media platform.Impact:
Successful ...)
+ TODO: check
+CVE-2026-41962 (Permission control vulnerability in the app management and
control mod ...)
+ TODO: check
+CVE-2026-41961 (Permission control vulnerability in contacts.Impact:
Successful exploi ...)
+ TODO: check
+CVE-2026-41960 (Permission control vulnerability in calls.Impact: Successful
exploitat ...)
+ TODO: check
+CVE-2026-41553 (PDF Export Module used inDHTMLX'sproducts Gantt and Scheduler
is vulne ...)
+ TODO: check
+CVE-2026-41552 (PDF Export Module used in DHTMLX's products Gantt and
Scheduler is vul ...)
+ TODO: check
+CVE-2026-41258 (OpenMRS is an open source electronic medical record system
platform. F ...)
+ TODO: check
+CVE-2026-41181 (Traefik is an HTTP reverse proxy and load balancer. Prior to
2.11.44, ...)
+ TODO: check
+CVE-2026-39054 (Oinone Pamirs 7.0.0 contains a command injection vulnerability
in Comm ...)
+ TODO: check
+CVE-2026-39053 (Oinone Pamirs 7.0.0 contains an XML External Entity (XXE)
issue in its ...)
+ TODO: check
+CVE-2026-39052 (Oinone Pamirs 7.0.0 contains a code execution vulnerability
via Script ...)
+ TODO: check
+CVE-2026-38728 (An issue in Nodemailer smtp_server before v.3.18.3 allows a
remote att ...)
+ TODO: check
+CVE-2026-35194 (Code injection in SQL code generation in Apache Flink 1.15.0
through 1 ...)
+ TODO: check
+CVE-2026-34253 (A buffer underflow vulnerability has been identified in the
ogg123 uti ...)
+ TODO: check
+CVE-2026-2031 (An Improper Access Controlvulnerability inseveral internal API
endpoin ...)
+ TODO: check
+CVE-2026-23695 (Cockpit CMS through version 2.14.0, patched in commit 72a83fc,
contain ...)
+ TODO: check
+CVE-2025-67437 (Medical Management System
a81df1ce700a9662cb136b27af47f4cbde64156b is ...)
+ TODO: check
+CVE-2025-14972 (* Countermeasures for DPA within SYMCRYPTO engine on
SixG301xxx devic ...)
+ TODO: check
+CVE-2021-47968 (Podcast Generator 3.1 contains a persistent cross-site
scripting vulne ...)
+ TODO: check
+CVE-2021-47967 (PHP Timeclock 1.04 contains multiple cross-site scripting
vulnerabilit ...)
+ TODO: check
+CVE-2021-47966 (PHP Timeclock 1.04 contains time-based and boolean-based blind
SQL inj ...)
+ TODO: check
+CVE-2021-47965 (WordPress Plugin WP Super Edit 2.5.4 and earlier contains an
unrestric ...)
+ TODO: check
+CVE-2021-47964 (Schlix CMS 2.2.6-6 contains a remote code execution
vulnerability that ...)
+ TODO: check
+CVE-2021-47963 (Anote 1.0 contains a persistent cross-site scripting
vulnerability tha ...)
+ TODO: check
+CVE-2021-47962 (Savsoft Quiz 5.0 contains a persistent cross-site scripting
vulnerabil ...)
+ TODO: check
+CVE-2021-47959 (WordPress Plugin WPGraphQL 1.3.5 contains a denial of service
vulnerab ...)
+ TODO: check
+CVE-2021-47958 (CouchCMS 2.2.1 contains a server-side request forgery
vulnerability th ...)
+ TODO: check
+CVE-2026-8454 (Imager::File::GIF versions through 1.002 for Perl allow a heap
out of ...)
NOT-FOR-US: Imager::File::GIF Perl module
NOTE: Imager::File::GIF used in libimager-perl and has separate
CVE-2026-8669
NOTE: https://lists.security.metacpan.org/cve-announce/msg/40079077/
-CVE-2026-8503
+CVE-2026-8503 (Apache::Session::Generate::SHA256 versions before 1.3.19 for
Perl crea ...)
- libapache-session-browseable-perl 1.3.19-1
NOTE: https://lists.security.metacpan.org/cve-announce/msg/40079348/
NOTE:
https://github.com/LemonLDAPNG/Apache-Session-Browseable/commit/cc915cbbd266776eec3dd8bf4748b15fa827dbd0
(v1.3.19)
-CVE-2026-8669
+CVE-2026-8669 (Imager versions through 1.030 for Perl allow a heap out of
bounds (OOB ...)
- libimager-perl <unfixed>
NOTE: https://lists.security.metacpan.org/cve-announce/msg/40083214/
NOTE: Imager embbeds the Imager::File::GIF code and syncs the fix:
NOTE: Fixed by:
https://github.com/tonycoz/imager/commit/782e9c06cc75a0f7eed383f39522f51f44598b04
(v1.031)
-CVE-2026-46333 [ptrace: slightly saner 'get_dumpable()' logic]
+CVE-2026-46333 (In the Linux kernel, the following vulnerability has been
resolved: p ...)
+ {DSA-6275-1 DSA-6274-1}
- linux 7.0.7-1
NOTE:
https://github.com/torvalds/linux/commit/31e62c2ebbfdc3fe3dbdf5e02c92a9dc67087a3a
NOTE: https://www.openwall.com/lists/oss-security/2026/05/15/2
@@ -114,6 +305,7 @@ CVE-2026-43903 (OpenImageIO is a toolset for reading,
writing, and manipulating
- openimageio <unfixed>
NOTE:
https://github.com/AcademySoftwareFoundation/OpenImageIO/security/advisories/GHSA-jg3q-vm3q-2j35
CVE-2026-43490 (In the Linux kernel, the following vulnerability has been
resolved: k ...)
+ {DSA-6274-1}
- linux 7.0.7-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE:
https://git.kernel.org/linus/996454bc0da84d5a1dedb1a7861823087e01a7ae (7.1-rc3)
@@ -345,242 +537,321 @@ CVE-2026-45698
- netatalk <unfixed>
NOTE: https://netatalk.io/security/CVE-2026-45698
CVE-2026-8509 (Heap buffer overflow in WebML in Google Chrome prior to
148.0.7778.168 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8510 (Integer overflow in Skia in Google Chrome on Windows prior to
148.0.77 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
- libskia <unfixed>
CVE-2026-8511 (Use after free in UI in Google Chrome prior to 148.0.7778.168
allowed ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8512 (Use after free in FileSystem in Google Chrome prior to
148.0.7778.168 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8513 (Use after free in Input in Google Chrome on Android prior to
148.0.777 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8514 (Use after free in Aura in Google Chrome prior to 148.0.7778.168
allowe ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8515 (Use after free in HID in Google Chrome prior to 148.0.7778.168
allowed ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8516 (Insufficient validation of untrusted input in DataTransfer in
Google C ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8517 (Object lifecycle issue in WebShare in Google Chrome on Mac
prior to 14 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8518 (Use after free in Blink in Google Chrome prior to
148.0.7778.168 allow ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8519 (Integer overflow in ANGLE in Google Chrome on Windows prior to
148.0.7 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8520 (Race in Payments in Google Chrome prior to 148.0.7778.168
allowed a re ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8521 (Use after free in Tab Groups in Google Chrome prior to
148.0.7778.168 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8522 (Use after free in Downloads in Google Chrome on Mac prior to
148.0.777 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8523 (Use after free in Mojo in Google Chrome prior to 148.0.7778.168
allowe ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8558 (Out of bounds write in Fonts in Google Chrome prior to
148.0.7778.168 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8524 (Out of bounds write in WebAudio in Google Chrome prior to
148.0.7778.1 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8525 (Heap buffer overflow in ANGLE in Google Chrome on Mac prior to
148.0.7 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8526 (Out of bounds write in WebRTC in Google Chrome prior to
148.0.7778.168 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8527 (Insufficient validation of untrusted input in Downloads in
Google Chro ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8528 (Insufficient validation of untrusted input in SiteIsolation in
Google ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8529 (Heap buffer overflow in Codecs in Google Chrome prior to
148.0.7778.16 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8530 (Use after free in Network in Google Chrome on Windows prior to
148.0.7 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8531 (Heap buffer overflow in WebML in Google Chrome on Windows prior
to 148 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8532 (Integer overflow in XML in Google Chrome prior to
148.0.7778.168 allow ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8533 (Use after free in Accessibility in Google Chrome prior to
148.0.7778.1 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8534 (Integer overflow in GPU in Google Chrome on Linux and ChromeOS
prior t ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8535 (Out of bounds read in Media in Google Chrome on Linux and
ChromeOS pri ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8536 (Insufficient validation of untrusted input in ReadingMode in
Google Ch ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8537 (Insufficient policy enforcement in ViewTransitions in Google
Chrome pr ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8538 (Insufficient validation of untrusted input in GPU in Google
Chrome pri ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8539 (Script injection in SanitizerAPI in Google Chrome on Android
prior to ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8540 (Type Confusion in V8 in Google Chrome prior to 148.0.7778.168
allowed ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8541 (Out of bounds read in UI in Google Chrome prior to
148.0.7778.168 allo ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8542 (Use after free in Core in Google Chrome on Windows prior to
148.0.7778 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8543 (Out of bounds read in FileSystem in Google Chrome on Mac prior
to 148. ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8544 (Use after free in Media in Google Chrome prior to
148.0.7778.168 allow ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8545 (Object corruption in Compositing in Google Chrome prior to
148.0.7778. ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8546 (Out of bounds read in GPU in Google Chrome on Mac and Windows
prior to ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8547 (Insufficient policy enforcement in Passwords in Google Chrome
on Windo ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8548 (Out of bounds write in Media in Google Chrome prior to
148.0.7778.168 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8549 (Use after free in Media in Google Chrome prior to
148.0.7778.168 allow ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8550 (Use after free in Google Lens in Google Chrome prior to
148.0.7778.168 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8551 (Use after free in Downloads in Google Chrome prior to
148.0.7778.168 a ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8552 (Heap buffer overflow in GPU in Google Chrome on Android prior
to 148.0 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8553 (Use after free in GPU in Google Chrome prior to 148.0.7778.168
allowed ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8554 (Type Confusion in ANGLE in Google Chrome on Windows prior to
148.0.777 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8555 (Use after free in GTK in Google Chrome on Windows prior to
148.0.7778. ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8556 (Inappropriate implementation in ANGLE in Google Chrome on
Windows prio ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8557 (Use after free in Accessibility in Google Chrome prior to
148.0.7778.1 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8559 (Integer overflow in Internationalization in Google Chrome on
Windows p ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8560 (Heap buffer overflow in SwiftShader in Google Chrome on Mac and
iOS pr ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8561 (Incorrect security UI in Fullscreen in Google Chrome prior to
148.0.77 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8562 (Side-channel information leakage in Navigation in Google Chrome
prior ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8563 (Insufficient policy enforcement in IFrame Sandbox in Google
Chrome on ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8564 (Incorrect security UI in Downloads in Google Chrome on Android
and Mac ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8565 (Inappropriate implementation in Downloads in Google Chrome on
Mac prio ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8566 (Insufficient policy enforcement in Payments in Google Chrome on
Androi ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8567 (Integer overflow in ANGLE in Google Chrome on Windows prior to
148.0.7 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8568 (Insufficient policy enforcement in AI in Google Chrome prior to
148.0. ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8569 (Out of bounds write in Codecs in Google Chrome on Mac prior to
148.0.7 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8570 (Type Confusion in V8 in Google Chrome prior to 148.0.7778.168
allowed ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8571 (Insufficient policy enforcement in GPU in Google Chrome on
Android pri ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8572 (Insufficient policy enforcement in Network in Google Chrome on
Android ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8573 (Integer overflow in Codecs in Google Chrome on Windows prior to
148.0. ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8574 (Use after free in Core in Google Chrome on Windows prior to
148.0.7778 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8575 (Use after free in UI in Google Chrome prior to 148.0.7778.168
allowed ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8576 (Inappropriate implementation in CORS in Google Chrome on Linux
and Chr ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8577 (Integer overflow in Fonts in Google Chrome prior to
148.0.7778.168 all ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8578 (Out of bounds read in GPU in Google Chrome on Linux prior to
148.0.777 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8579 (Insufficient validation of untrusted input in Skia in Google
Chrome pr ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
- libskia <unfixed>
CVE-2026-8580 (Use after free in Mojo in Google Chrome prior to 148.0.7778.168
allowe ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8581 (Use after free in GPU in Google Chrome prior to 148.0.7778.168
allowed ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8582 (Object lifecycle issue in Dawn in Google Chrome prior to
148.0.7778.16 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8583 (Insufficient policy enforcement in WebXR in Google Chrome on
Android p ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8584 (Inappropriate implementation in Views in Google Chrome on iOS
prior to ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8585 (Inappropriate implementation in Media in Google Chrome on iOS
prior to ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8586 (Inappropriate implementation in Chromoting in Google Chrome
prior to 1 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-8587 (Use after free in Extensions in Google Chrome on Mac prior to
148.0.77 ...)
+ {DSA-6273-1}
- chromium 148.0.7778.167-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-43961
@@ -3215,7 +3486,7 @@ CVE-2026-34961 (barebox prior to version 2026.04.0
contains out-of-bounds read v
TODO: check
CVE-2026-34960 (barebox prior to version 2026.04.0 contains an out-of-bounds
read vuln ...)
TODO: check
-CVE-2026-34263 (Due to improper Spring Security configuration, SAP Commerce
cloud allo ...)
+CVE-2026-34263 (Due to improper Spring Security configuration, SAP Commerce
Cloud allo ...)
NOT-FOR-US: SAP
CVE-2026-34260 (SAP S/4HANA (SAP Enterprise Search for ABAP) contains a SQL
injection ...)
NOT-FOR-US: SAP
@@ -7799,6 +8070,7 @@ CVE-2026-43223 (In the Linux kernel, the following
vulnerability has been resolv
[bookworm] - linux 6.1.170-1
NOTE:
https://git.kernel.org/linus/a8333c8262aed2aedf608c18edd39cf5342680a7 (7.0-rc1)
CVE-2026-43220 (In the Linux kernel, the following vulnerability has been
resolved: i ...)
+ {DSA-6274-1}
- linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/
CVE-2026-43219 (In the Linux kernel, the following vulnerability has been
resolved: n ...)
@@ -8247,6 +8519,7 @@ CVE-2026-43110 (In the Linux kernel, the following
vulnerability has been resolv
[trixie] - linux 6.12.85-1
NOTE:
https://git.kernel.org/linus/304950a467d83678bd0b0f46331882e2ac23b12d (7.0)
CVE-2026-43109 (In the Linux kernel, the following vulnerability has been
resolved: x ...)
+ {DSA-6274-1}
- linux 6.19.14-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
@@ -8305,6 +8578,7 @@ CVE-2026-43089 (In the Linux kernel, the following
vulnerability has been resolv
[trixie] - linux 6.12.85-1
NOTE:
https://git.kernel.org/linus/1beb76b2053b68c491b78370794b8ff63c8f8c02 (7.0)
CVE-2026-43088 (In the Linux kernel, the following vulnerability has been
resolved: n ...)
+ {DSA-6274-1}
- linux 6.19.14-1
NOTE:
https://git.kernel.org/linus/426c355742f02cf743b347d9d7dbdc1bfbfa31ef (7.0)
CVE-2026-43085 (In the Linux kernel, the following vulnerability has been
resolved: n ...)
@@ -15415,6 +15689,7 @@ CVE-2026-31500 (In the Linux kernel, the following
vulnerability has been resolv
- linux 6.19.11-1
NOTE:
https://git.kernel.org/linus/94d8e6fe5d0818e9300e514e095a200bd5ff93ae (7.0-rc6)
CVE-2026-31499 (In the Linux kernel, the following vulnerability has been
resolved: B ...)
+ {DSA-6274-1}
- linux 6.19.11-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
[bullseye] - linux <not-affected> (Vulnerable code not present)
@@ -18277,6 +18552,7 @@ CVE-2026-41015 (radare2 before 9236f44, when configured
on UNIX without SSL, all
NOTE: Introduced with:
https://github.com/radareorg/radare2/commit/01ca2f61fa43bd3f4b732447de31b16039d820c0
(6.1.4)
NOTE: Fixed by:
https://github.com/radareorg/radare2/commit/9236f44a28812fe911814e1b3a7bcf1e4de5d3c2
(6.1.4)
CVE-2026-40962 (FFmpeg before 8.1 has an integer overflow and resultant
out-of-bounds ...)
+ {DSA-6268-1}
- ffmpeg 7:8.1-1
[bookworm] - ffmpeg <postponed> (Minor issue, wait until it's fixed in
the 5.1 branch)
[bullseye] - ffmpeg <postponed> (minor issue)
@@ -26054,26 +26330,31 @@ CVE-2026-3872 (A flaw was found in Keycloak. This
issue allows an attacker, who
CVE-2026-3692 (In Progress Flowmon versions prior to 12.5.8, a vulnerability
exists w ...)
NOT-FOR-US: Progress Software
CVE-2026-35414 (OpenSSH before 10.3 mishandles the authorized_keys principals
option i ...)
+ {DLA-4584-1}
- openssh 1:10.3p1-1 (bug #1132576)
[trixie] - openssh <no-dsa> (Minor issue)
[bookworm] - openssh <no-dsa> (Minor issue)
NOTE: https://www.openssh.org/releasenotes.html#10.3p1
CVE-2026-35388 (OpenSSH before 10.3 omits connection multiplexing confirmation
for pro ...)
+ {DLA-4584-1}
- openssh 1:10.3p1-1 (bug #1132575)
[trixie] - openssh <no-dsa> (Minor issue)
[bookworm] - openssh <no-dsa> (Minor issue)
NOTE: https://www.openssh.org/releasenotes.html#10.3p1
CVE-2026-35387 (OpenSSH before 10.3 can use unintended ECDSA algorithms.
Listing of an ...)
+ {DLA-4584-1}
- openssh 1:10.3p1-1 (bug #1132574)
[trixie] - openssh <no-dsa> (Minor issue)
[bookworm] - openssh <no-dsa> (Minor issue)
NOTE: https://www.openssh.org/releasenotes.html#10.3p1
CVE-2026-35386 (In OpenSSH before 10.3, command execution can occur via shell
metachar ...)
+ {DLA-4584-1}
- openssh 1:10.3p1-1 (bug #1132573)
[trixie] - openssh <no-dsa> (Minor issue)
[bookworm] - openssh <no-dsa> (Minor issue)
NOTE: https://www.openssh.org/releasenotes.html#10.3p1
CVE-2026-35385 (In OpenSSH before 10.3, a file downloaded by scp may be
installed setu ...)
+ {DLA-4584-1}
- openssh 1:10.3p1-1 (bug #1132572)
[trixie] - openssh <no-dsa> (Minor issue)
[bookworm] - openssh <no-dsa> (Minor issue)
@@ -29222,6 +29503,7 @@ CVE-2026-27893 (vLLM is an inference and serving engine
for large language model
CVE-2026-21724 (A vulnerability has been discovered in Grafana OSS where an
authorizat ...)
- grafana <removed>
CVE-2026-4948 (A flaw was found in firewalld. A local unprivileged user can
exploit t ...)
+ {DLA-4585-1}
- firewalld 2.4.0-2
[trixie] - firewalld <no-dsa> (Minor issue)
[bookworm] - firewalld <no-dsa> (Minor issue)
@@ -99490,12 +99772,14 @@ CVE-2025-10162 (The Admin and Customer Messages After
Order for WooCommerce: Ord
CVE-2025-6985 (The HTMLSectionSplitter class in langchain-text-splitters
version 0.3. ...)
NOT-FOR-US: langchain-text-splitters
CVE-2025-61985 (ssh in OpenSSH before 10.1 allows the '\0' character in an
ssh:// URI, ...)
+ {DLA-4584-1}
- openssh 1:10.1p1-1 (bug #1117530)
[trixie] - openssh 1:10.0p1-7+deb13u1
[bookworm] - openssh 1:9.2p1-2+deb12u8
NOTE: https://www.openwall.com/lists/oss-security/2025/10/06/1
NOTE:
https://github.com/openssh/openssh-portable/commit/43b3bff47bb029f2299bacb6a36057981b39fdb0
(V_10_1_P1)
CVE-2025-61984 (ssh in OpenSSH before 10.1 allows control characters in
usernames that ...)
+ {DLA-4584-1}
- openssh 1:10.1p1-1 (bug #1117529)
[trixie] - openssh 1:10.0p1-7+deb13u1
[bookworm] - openssh 1:9.2p1-2+deb12u8
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0ed286cab7014c2da8d216e37ae9d33a0464847a
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0ed286cab7014c2da8d216e37ae9d33a0464847a
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
