[Git][security-tracker-team/security-tracker][master] trixie/bookworm triage

Wed, 10 Jun 2026 14:23:09 -0700 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
631d4353 by Moritz Muehlenhoff at 2026-06-10T23:22:37+02:00
trixie/bookworm triage

- - - - -


2 changed files:

- data/CVE/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -721,6 +721,8 @@ CVE-2026-49840 (FreeSWITCH is a Software Defined Telecom 
Stack enabling the digi
        - freeswitch <itp> (bug #389591)
 CVE-2026-49762 (Uncontrolled Resource Consumption vulnerability in the Elixir 
standard ...)
        - elixir-lang <unfixed>
+       [trixie] - elixir-lang <no-dsa> (Minor issue)
+       [bookworm] - elixir-lang <no-dsa> (Minor issue)
        NOTE: 
https://github.com/elixir-lang/elixir/security/advisories/GHSA-w2h8-8x3g-278p
        NOTE: https://cna.erlef.org/cves/CVE-2026-49762.html
        NOTE: https://osv.dev/vulnerability/EEF-CVE-2026-49762
@@ -51269,6 +51271,8 @@ CVE-2026-26828 (A NULL pointer dereference in the 
daap_reply_playlists function
        NOT-FOR-US: owntone-server
 CVE-2026-26209 (cbor2 provides encoding and decoding for the Concise Binary 
Object Rep ...)
        - cbor2 5.9.0-1
+       [trixie] - cbor2 <no-dsa> (Minor issue)
+       [bookworm] - cbor2 <no-dsa> (Minor issue)
        [bullseye] - cbor2 <postponed> (Minor issue, DoS)
        NOTE: 
https://github.com/agronholm/cbor2/security/advisories/GHSA-3c37-wwvx-h642
        NOTE: https://github.com/agronholm/cbor2/pull/275


=====================================
data/dsa-needed.txt
=====================================
@@ -60,6 +60,8 @@ libdbi-perl (carnil)
 libinput (carnil)
   Clarifying with CNAs with duplicate CVE assignments first
 --
+librabbitmq
+--
 libreswan/oldstable
 --
 linux (carnil)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/631d4353c32b9c1ad8654f253e4fc65d22593ea1

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/631d4353c32b9c1ad8654f253e4fc65d22593ea1
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to