[Git][security-tracker-team/security-tracker][master] Add CVE-2026-44660/ujson

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
bd314da4 by Salvatore Bonaccorso at 2026-05-29T22:51:41+02:00
Add CVE-2026-44660/ujson

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2281,7 +2281,9 @@ CVE-2026-44681 (Authlib is a Python library which builds 
OAuth and OpenID Connec
        - python-authlib 1.7.2-1
        NOTE: 
https://github.com/authlib/authlib/security/advisories/GHSA-r95x-qfjj-fjj2
 CVE-2026-44660 (UltraJSON is a fast JSON encoder and decoder written in pure C 
with bi ...)
-       TODO: check
+       - ujson <unfixed>
+       NOTE: 
https://github.com/ultrajson/ultrajson/security/advisories/GHSA-c38f-wx89-p2xg
+       NOTE: Fixed by: 
https://github.com/ultrajson/ultrajson/commit/82af1d0ac01d09aa40c887b460d44b9d9f4bccd9
 (5.12.1)
 CVE-2026-44590 (Sherlock hunts down social media accounts by username across 
social ne ...)
        TODO: check
 CVE-2026-44247 (Volcano is a Kubernetes-native batch scheduling system. Prior 
to v1.14 ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bd314da469c51c8dc9dd8cfab61f3752e620ef12

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bd314da469c51c8dc9dd8cfab61f3752e620ef12
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits