[Git][security-tracker-team/security-tracker][master] iAdd debian bug reference for mpd issues

Fri, 29 May 2026 07:47:05 -0700 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
8d1c25c9 by Salvatore Bonaccorso at 2026-05-29T16:46:24+02:00
iAdd debian bug reference for mpd issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -463,19 +463,19 @@ CVE-2026-49299 (In OpenStack Neutron before 28.0.1, the 
tagging controller enfor
        [bookworm] - neutron <no-dsa> (Minor issue)
        NOTE: https://security.openstack.org/ossa/OSSA-2026-016.html
 CVE-2026-49130 (Music Player Daemon (MPD) before version 0.24.11 contains a 
CRLF injec ...)
-       - mpd <unfixed>
+       - mpd <unfixed> (bug #1138215)
        NOTE: https://github.com/MusicPlayerDaemon/MPD/issues/2483
        NOTE: Fixed by: 
https://github.com/MusicPlayerDaemon/MPD/commit/855085b35c67dddeef0652e2cb3ac8cdd4f457b7
 (v0.24.11)
 CVE-2026-49129 (Music Player Daemon (MPD) before version 0.24.11 contains a 
server-sid ...)
-       - mpd <unfixed>
+       - mpd <unfixed> (bug #1138215)
        NOTE: https://github.com/MusicPlayerDaemon/MPD/issues/2487
        NOTE: Fixed by: 
https://github.com/MusicPlayerDaemon/MPD/commit/78341dd6c7b101c3feede233d4cc4f8f1fcc4bb3
 (v0.24.11)
 CVE-2026-49128 (Music Player Daemon (MPD) before version 0.24.11 contains a 
path trave ...)
-       - mpd <unfixed>
+       - mpd <unfixed> (bug #1138215)
        NOTE: https://github.com/MusicPlayerDaemon/MPD/issues/2484
        NOTE: Fixed by: 
https://github.com/MusicPlayerDaemon/MPD/commit/0b5315b9e5a42cb0e88bf46a7579bb5641543f60
 (v0.24.11)
 CVE-2026-49127 (Music Player Daemon (MPD) before version 0.24.11 contains a 
stack buff ...)
-       - mpd <unfixed>
+       - mpd <unfixed> (bug #1138215)
        NOTE: https://github.com/MusicPlayerDaemon/MPD/issues/2485
        NOTE: Fixed by: 
https://github.com/MusicPlayerDaemon/MPD/commit/59911028c020f84bc2e669da6a1ef88121301274
 (v0.24.11)
 CVE-2026-49095 (Improper Input Validation (CWE-20) in the Kibana Fleet agent 
policy ma ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8d1c25c93cddb794eea6597b0cf5ebdded3054c0

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8d1c25c93cddb794eea6597b0cf5ebdded3054c0
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to