[Git][security-tracker-team/security-tracker][master] Reserve DSA-6329-1 for tomcat11

Mon, 08 Jun 2026 05:16:04 -0700 


Markus Koschany pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
4d4a4c7c by Markus Koschany at 2026-06-08T14:15:18+02:00
Reserve DSA-6329-1 for tomcat11

- - - - -


3 changed files:

- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -64182,7 +64182,6 @@ CVE-2026-25903 (Apache NiFi 1.1.0 through 2.7.2 are 
missing authorization when u
 CVE-2026-24734 (Improper Input Validation vulnerability in Apache Tomcat 
Native, Apach ...)
        {DSA-6120-1}
        - tomcat11 11.0.18-1
-       [trixie] - tomcat11 <postponed> (Minor issue, fix along with next DSA)
        - tomcat10 10.1.52-1
        - tomcat9 9.0.70-2
        NOTE: Starting with 9.0.70-2 src:tomcat9 no longer ships the server 
stack, using that as the fixed version


=====================================
data/DSA/list
=====================================
@@ -1,3 +1,6 @@
+[08 Jun 2026] DSA-6329-1 tomcat11 - security update
+       {CVE-2026-24734 CVE-2026-24880 CVE-2026-25854 CVE-2026-29129 
CVE-2026-29145 CVE-2026-29146 CVE-2026-32990 CVE-2026-34483 CVE-2026-34487 
CVE-2026-34500 CVE-2026-41284 CVE-2026-41293 CVE-2026-42498 CVE-2026-43512 
CVE-2026-43513 CVE-2026-43514 CVE-2026-43515}
+       [trixie] - tomcat11 11.0.22-1~deb13u1
 [08 Jun 2026] DSA-6328-1 tomcat10 - security update
        {CVE-2026-24880 CVE-2026-25854 CVE-2026-29129 CVE-2026-29145 
CVE-2026-29146 CVE-2026-32990 CVE-2026-34483 CVE-2026-34487 CVE-2026-34500 
CVE-2026-41284 CVE-2026-41293 CVE-2026-42498 CVE-2026-43512 CVE-2026-43513 
CVE-2026-43514 CVE-2026-43515}
        [bookworm] - tomcat10 10.1.55-1~deb12u1


=====================================
data/dsa-needed.txt
=====================================
@@ -113,8 +113,6 @@ sogo
 --
 sympa/oldstable
 --
-tomcat11/stable (apo)
---
 unbound/oldstable
 --
 xrdp



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4d4a4c7c74a61b23329ea50f4cf689a87bb1ee75

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4d4a4c7c74a61b23329ea50f4cf689a87bb1ee75
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to