Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
973bb610 by Salvatore Bonaccorso at 2026-05-29T22:54:03+02:00
Add two new rabbitmq-server issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2597,9 +2597,11 @@ CVE-2026-44971 (GuardDog is a CLI tool to identify
malicious PyPI packages. From
CVE-2026-44902 (opentelemetry-js is the OpenTelemetry JavaScript Client. Prior
to 0.21 ...)
NOT-FOR-US: opentelemetry-js
CVE-2026-44839 (RabbitMQ is a messaging and streaming broker. From 3.7.0 to
before 4.1 ...)
- TODO: check
+ - rabbitmq-server 4.3.0-2
+ NOTE:
https://github.com/rabbitmq/rabbitmq-server/security/advisories/GHSA-fh5r-jpm3-fjwp
CVE-2026-44838 (RabbitMQ is a messaging and streaming broker. From 4.2.0 to
before 4.2 ...)
- TODO: check
+ - rabbitmq-server <not-affected> (Vulnerable code never in Debian
released version)
+ NOTE:
https://github.com/rabbitmq/rabbitmq-server/security/advisories/GHSA-x866-xp2g-cx8v
CVE-2026-44830 (Nocturne Memory is a lightweight, rollbackable, and visual
Long-Term M ...)
NOT-FOR-US: Nocturne Memory
CVE-2026-44635 (Kysely is a type-safe TypeScript SQL query builder. From
0.26.0 to 0.2 ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/973bb6104c5f1f807c27ace9ba2105f686532779
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/973bb6104c5f1f807c27ace9ba2105f686532779
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
