[Git][security-tracker-team/security-tracker][master] Add temporary entry for nginx issue

Wed, 03 Jun 2026 14:15:06 -0700 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
ad9169cb by Salvatore Bonaccorso at 2026-06-03T23:12:49+02:00
Add temporary entry for nginx issue

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -638,6 +638,10 @@ CVE-2026-42504 (Decoding a maliciously-crafted MIME header 
containing many inval
        NOTE: https://github.com/golang/go/issues/79217
        NOTE: 
https://github.com/golang/go/commit/7f24db453a60faf6a3546d60bb02917a0a7aace0 
(go1.26.4)
        NOTE: 
https://github.com/golang/go/commit/b79e0339290e14b3b2de1dc4942b8a88701ddb02 
(go1.25.11)
+CVE-2026-XXXX [HTTP/2 Bomb denial of service]
+       - nginx 1.30.0-2 (bug #1138794)
+       NOTE: https://blog.calif.io/p/codex-discovered-a-hidden-http2-bomb
+       NOTE: 
https://github.com/nginx/nginx/commit/365694160a85229a7cb006738de9260d49ff5fa2 
(release-1.29.8)
 CVE-2026-49975
        - apache2 2.4.67-2 (bug #1138750)
        NOTE: https://blog.calif.io/p/codex-discovered-a-hidden-http2-bomb



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ad9169cb44869419eed7c1aacd55362d950ec933

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ad9169cb44869419eed7c1aacd55362d950ec933
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to