Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
9e090633 by Salvatore Bonaccorso at 2026-06-17T07:42:20+02:00
Add references for CVE-2026-54411/pam

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1316,7 +1316,8 @@ CVE-2026-54412 (LiamBindle MQTT-C through version 1.1.6 
contains a heap-based ou
        NOT-FOR-US: MQTT-C
 CVE-2026-54411 (Linux-PAM through 1.7.2 contains an observable timing 
discrepancy (CWE ...)
        - pam <unfixed>
-       TODO: check, check for upstream issue, only a problem with pam_userdb 
with crypt=none
+       NOTE: https://github.com/linux-pam/linux-pam/issues/992
+       NOTE: https://github.com/linux-pam/linux-pam/pull/991
 CVE-2026-54410 (nanoMODBUS through v1.23.0 contains an off-by-one buffer 
overflow in t ...)
        NOT-FOR-US: nanoMODBUS
 CVE-2026-12223 (A vulnerability was identified in Yealink SIP-T46U 
108.86.0.118. Affec ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9e0906339b43b60a87d6db646a9ae71f91268b1a

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9e0906339b43b60a87d6db646a9ae71f91268b1a
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help


_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to