Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4928be80 by Salvatore Bonaccorso at 2026-05-15T22:02:39+02:00
Add CVE-2026-44699/libjwt
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -108,7 +108,10 @@ CVE-2026-44717 (MCP Calculate Server is a mathematical
calculation service based
CVE-2026-44714 (The bitcoinj library is a Java implementation of the Bitcoin
protocol. ...)
- bitcoinj <itp> (bug #629008)
CVE-2026-44699 (LibJWT is a C JSON Web Token Library. From 3.0.0 to 3.3.2,
libjwt acce ...)
- TODO: check
+ - libjwt3 <unfixed>
+ - libjwt <not-affected> (Only affects the 3.x series)
+ NOTE:
https://github.com/benmcollins/libjwt/security/advisories/GHSA-q843-6q5f-w55g
+ NOTE: Fixed by:
https://github.com/benmcollins/libjwt/commit/49c730a4036c5ae67a4a97e4e55101e445fda694
(v3.3.3)
CVE-2026-44641 (Microsoft APM is an open-source, community-driven dependency
manager f ...)
NOT-FOR-US: Microsoft
CVE-2026-44366 (Vvveb is a powerful and easy to use CMS with page builder to
build web ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4928be8042323d37752a013ea9b86e769360b3c5
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4928be8042323d37752a013ea9b86e769360b3c5
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
