Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a0dee944 by security tracker role at 2026-05-23T07:12:21+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,73 @@
+CVE-2026-9284 (The WooCommerce PayPal Payments plugin for WordPress is
vulnerable to ...)
+ TODO: check
+CVE-2026-6898 (The Wishlist Member plugin for WordPress is vulnerable to
unauthorized ...)
+ TODO: check
+CVE-2026-6897 (The Wishlist Member plugin for WordPress is vulnerable to
unauthorized ...)
+ TODO: check
+CVE-2026-6895 (The WishList Member plugin for WordPress is vulnerable to
Missing Auth ...)
+ TODO: check
+CVE-2026-6419 (The WishList Member plugin for WordPress is vulnerable to
Privilege Es ...)
+ TODO: check
+CVE-2026-5843 (The MLX inference backend in Docker Model Runner on macOS uses
the MLX ...)
+ TODO: check
+CVE-2026-5817 (The vllm-metal inference backend in Docker Model Runner on
macOS uncon ...)
+ TODO: check
+CVE-2026-47280 (Improper authentication in Azure Resource Manager (ARM) allows
an unau ...)
+ TODO: check
+CVE-2026-45659 (Deserialization of untrusted data in Microsoft Office
SharePoint allow ...)
+ TODO: check
+CVE-2026-42901 (Origin validation error in Microsoft Entra ID allows an
unauthorized a ...)
+ TODO: check
+CVE-2026-42827 (Improper neutralization of special elements used in a command
('comman ...)
+ TODO: check
+CVE-2026-41149 (Mermaid is a JavaScript tool that uses Markdown-inspired text
to creat ...)
+ TODO: check
+CVE-2026-41148 (Mermaid is a JavaScript tool that uses Markdown-inspired text
to creat ...)
+ TODO: check
+CVE-2026-41147 (NukeViet CMS is a multi Content Management System. Versions
4.5.07 and ...)
+ TODO: check
+CVE-2026-41104 (Deserialization of untrusted data in Microsoft Planetary
Computer Pro ...)
+ TODO: check
+CVE-2026-41090 (Improper neutralization of special elements used in a command
('comman ...)
+ TODO: check
+CVE-2026-41074 (RT is an open source, enterprise-grade issue and ticket
tracking syste ...)
+ TODO: check
+CVE-2026-41071 (libheif is a HEIF and AVIF file format decoder and encoder. In
version ...)
+ TODO: check
+CVE-2026-41069 (libheif is a HEIF and AVIF file format decoder and encoder. In
version ...)
+ TODO: check
+CVE-2026-40864 (JupyterHub is software that allows users to create a
multi-user server ...)
+ TODO: check
+CVE-2026-40610 (BentoML is a Python library for building online serving
systems optimi ...)
+ TODO: check
+CVE-2026-40607 (Mantis Bug Tracker (MantisBT) is an open source issue tracker.
In vers ...)
+ TODO: check
+CVE-2026-40598 (Mantis Bug Tracker (MantisBT) is an open source issue tracker.
In vers ...)
+ TODO: check
+CVE-2026-40597 (Mantis Bug Tracker (MantisBT) is an open source issue tracker.
In vers ...)
+ TODO: check
+CVE-2026-40596 (Mantis Bug Tracker (MantisBT) is an open source issue tracker.
Version ...)
+ TODO: check
+CVE-2026-40412 (Unrestricted upload of file with dangerous type in Azure
Orbital Spati ...)
+ TODO: check
+CVE-2026-40411 (Improper input validation in Azure Virtual Network Gateway
allows an a ...)
+ TODO: check
+CVE-2026-40295 (Devise is an authentication solution for Rails based on
Warden. In ver ...)
+ TODO: check
+CVE-2026-3294 (An authentication logic vulnerability in multiple TP-Link range
extend ...)
+ TODO: check
+CVE-2026-39824 (NewNTUnicodeString does not check for string length overflow.
When pro ...)
+ TODO: check
+CVE-2026-35430 (Authorization bypass through user-controlled key in Azure
Privileged I ...)
+ TODO: check
+CVE-2026-33843 (Authentication bypass using an alternate path or channel in
Microsoft ...)
+ TODO: check
+CVE-2026-26147 (Improper input validation in Azure Compute Gallery allows an
authorize ...)
+ TODO: check
+CVE-2026-23663 (Improper privilege management in Azure Entra ID allows an
unauthorized ...)
+ TODO: check
+CVE-2026-23652 (Improper neutralization of special elements used in a command
('comman ...)
+ TODO: check
CVE-2026-9291 (Insecure deserialization in the job results processing
component in Am ...)
NOT-FOR-US: Amazon
CVE-2026-9277 (shell-quote's `quote()` function did not validate object-token
inputs ...)
@@ -1164,7 +1234,7 @@ CVE-2025-11954 (Cross-Site request forgery (CSRF)
vulnerability in Sitemio Infor
NOT-FOR-US: Sitemio
CVE-2023-7346 (Ledger Bitcoin app versions 2.1.0 and 2.1.1 contain an address
derivat ...)
NOT-FOR-US: Ledger Bitcoin app
-CVE-2026-41073
+CVE-2026-41073 (RT is an open source, enterprise-grade issue and ticket
tracking syste ...)
- request-tracker5 5.0.10+dfsg-1
- request-tracker4 <unfixed>
NOTE: https://github.com/bestpractical/rt/releases/tag/rt-5.0.10
@@ -1184,11 +1254,11 @@ CVE-2026-6841 (Request Tracker is vulnerable to a
reflected cross-site scripting
- request-tracker5 5.0.10+dfsg-1
- request-tracker4 <unfixed>
NOTE: https://github.com/bestpractical/rt/releases/tag/rt-5.0.10
-CVE-2026-41076
+CVE-2026-41076 (RT is an open source, enterprise-grade issue and ticket
tracking syste ...)
- request-tracker5 5.0.10+dfsg-1
- request-tracker4 <unfixed>
NOTE: https://github.com/bestpractical/rt/releases/tag/rt-5.0.10
-CVE-2026-41075
+CVE-2026-41075 (RT is an open source, enterprise-grade issue and ticket
tracking syste ...)
- request-tracker5 5.0.10+dfsg-1
- request-tracker4 <unfixed>
NOTE: https://github.com/bestpractical/rt/releases/tag/rt-5.0.10
@@ -1773,7 +1843,7 @@ CVE-2026-5090 (Template::Plugin::HTML versions through
3.102 for Perl allows HTM
NOTE: https://github.com/cpan-authors/Template2/pull/337
NOTE: Fixed by:
https://github.com/cpan-authors/Template2/commit/11c78a7a771d4af505efeb754a0b8775689c2eae
CVE-2026-46529
- {DSA-6286-1}
+ {DSA-6286-1 DLA-4597-1 DLA-4596-1}
- evince 49~alpha-3
- evince-gtk3 48.4+dfsg-1 (unimportant)
- atril 1.28.4-1
@@ -1970,6 +2040,7 @@ CVE-2026-XXXX [VSV00019]
NOTE:
https://code.vinyl-cache.org/vinyl-cache/vinyl-cache/commit/dfc27fb4e7bf110945f5c145ce95b8de14ead77f
(master)
NOTE:
https://code.vinyl-cache.org/vinyl-cache/vinyl-cache/commit/037031d429e3d309ae66ebabff33aa591402f20e
(6.0)
CVE-2026-41054 (In `src/havegecmd.c`, the `socket_handler` function performs a
credent ...)
+ {DSA-6292-1}
- haveged 1.9.21-1 (bug #1137096)
NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1264086
NOTE: Introduced with:
https://github.com/jirka-h/haveged/commit/a2496c5de9af7e3ac3ef82a2257d14d8a0ac37fb
(1.9.3)
@@ -5841,7 +5912,7 @@ CVE-2026-33821 (Improper privilege management in
Microsoft Dynamics 365 Customer
CVE-2026-33603 (Attacker can use a specially crafted base64 exchange between
Dovecot a ...)
- dovecot 1:2.4.4+dfsg1-1 (bug #1136444)
NOTE: https://www.openwall.com/lists/oss-security/2026/05/12/6
-CVE-2026-33117 (Improper authentication in Azure SDK allows an unauthorized
attacker t ...)
+CVE-2026-33117 (The Java Key Vault Keys library in the Azure SDK for Java
contains an ...)
NOT-FOR-US: Microsoft
CVE-2026-33112 (Deserialization of untrusted data in Microsoft Office
SharePoint allow ...)
NOT-FOR-US: Microsoft
@@ -15793,6 +15864,7 @@ CVE-2026-40356 (In MIT Kerberos 5 (aka krb5) before
1.22.3, there is an integer
- krb5 1.22.1-2.1 (bug #1135317)
NOTE:
https://github.com/krb5/krb5/commit/2e75f0d9362fb979f5fc92829431a590a130929f
CVE-2026-40355 (In MIT Kerberos 5 (aka krb5) before 1.22.3, there is a NULL
pointer de ...)
+ {DSA-6293-1}
- krb5 1.22.1-2.1 (bug #1135317)
NOTE:
https://github.com/krb5/krb5/commit/2e75f0d9362fb979f5fc92829431a590a130929f
CVE-2026-3087 (If `shutil.unpack_archive()` is given a ZIP archive with an
absolute W ...)
@@ -19339,6 +19411,7 @@ CVE-2026-4367
NOTE:
https://gitlab.freedesktop.org/xorg/lib/libxpm/-/commit/5448e1bd7252780b16db869c2253d24e0fe0ae18
(libXpm-3.5.19)
NOTE: https://gitlab.freedesktop.org/xorg/lib/libxpm/-/merge_requests/31
CVE-2026-41989 (Libgcrypt before 1.12.2 sometimes allows a heap-based buffer
overflow ...)
+ {DSA-6294-1}
- libgcrypt20 1.12.2-1
[bullseye] - libgcrypt20 <not-affected> (Vulnerable code introduced
later)
NOTE: https://www.openwall.com/lists/oss-security/2026/04/21/1
@@ -23541,6 +23614,7 @@ CVE-2026-34186 (Improper Neutralization of Special
Elements used in an SQL Comma
CVE-2026-33858 (Dag Authors, who normally should not be able to execute code
in the we ...)
- airflow <itp> (bug #819700)
CVE-2026-33555 (An issue was discovered in HAProxy before 3.3.6. The HTTP/3
parser doe ...)
+ {DSA-6291-1}
- haproxy 3.2.15-1
[bookworm] - haproxy <ignored> (USE_QUIC not enabled before 2.8.4-2)
[bullseye] - haproxy <not-affected> (Vulnerable code not present; HTTP3
support added in later versions)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a0dee9442f64c438728a030348176d5df5e87b28
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a0dee9442f64c438728a030348176d5df5e87b28
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
