Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
54ae5150 by security tracker role at 2026-06-22T07:13:11+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,55 @@
+CVE-2026-8918 (A permissive list of allowed inputs in ASUS Armoury Crate
allows a loc ...)
+ TODO: check
+CVE-2026-8157 (The Vitepos WordPress plugin before 3.4.2 does not properly
restrict ...)
+ TODO: check
+CVE-2026-7859 (The Motors WordPress plugin before 1.4.110 does not have
proper autho ...)
+ TODO: check
+CVE-2026-6858 (The Transbank Webpay WordPress plugin before 1.14.0 does not
sanitize ...)
+ TODO: check
+CVE-2026-6645 (An insecure process execution vulnerability exists in the
pc-printer-u ...)
+ TODO: check
+CVE-2026-4259 (The ultimate-woocommerce-auction-pro WordPress plugin through
2.4.5 do ...)
+ TODO: check
+CVE-2026-4110 (The ultimate-woocommerce-auction-pro WordPress plugin through
2.4.5 do ...)
+ TODO: check
+CVE-2026-12845
+ REJECTED
+CVE-2026-12823 (A security flaw has been discovered in Browserbase up to
20260526. Thi ...)
+ TODO: check
+CVE-2026-12822 (A vulnerability was identified in langflow-ai langflow up to
1.9.3. Th ...)
+ TODO: check
+CVE-2026-12821 (A vulnerability was determined in FlowiseAI Flowise up to
3.1.2. The i ...)
+ TODO: check
+CVE-2026-12815 (A vulnerability has been found in coollabsio coolify 4.0.0.
Impacted i ...)
+ TODO: check
+CVE-2026-12814 (A flaw has been found in Comfast CF-WR631AX V3 up to 2.7.0.8.
This iss ...)
+ TODO: check
+CVE-2026-12813 (A vulnerability was detected in activepieces up to 0.83.0.
This vulner ...)
+ TODO: check
+CVE-2026-12812 (A security vulnerability has been detected in Radware Cyber
Controller ...)
+ TODO: check
+CVE-2026-12811 (A weakness has been identified in kortix-ai suna up to 0.8.38.
Affecte ...)
+ TODO: check
+CVE-2026-12810 (A security flaw has been discovered in Edimax BR-6478AC V2
1.23. Affec ...)
+ TODO: check
+CVE-2026-12809 (A vulnerability was identified in Edimax BR-6478AC V2 1.23.
Affected i ...)
+ TODO: check
+CVE-2026-12808 (A vulnerability was determined in Edimax BR-6478AC V2 1.23.
This impac ...)
+ TODO: check
+CVE-2026-12807 (A vulnerability was found in Edimax BR-6478AC V2 1.23. This
affects th ...)
+ TODO: check
+CVE-2026-12806 (A vulnerability has been found in Edimax BR-6478AC V2 1.23.
The impact ...)
+ TODO: check
+CVE-2026-12805 (A flaw has been found in OFFIS DCMTK up to 3.7.0. The affected
element ...)
+ TODO: check
+CVE-2026-11748 (A vulnerability has been identified in
centraldogma-server-auth-shiro ...)
+ TODO: check
+CVE-2026-11746 (A vulnerability has been identified in centraldogma-server
versions pr ...)
+ TODO: check
+CVE-2026-11745 (A vulnerability has been identified in
centraldogma-server-mirror-git ...)
+ TODO: check
+CVE-2026-10530 (The Pie Register WordPress plugin before 3.8.4.10 does not
use suffic ...)
+ TODO: check
CVE-2026-56412 (libexpat before 2.8.2 does not consider XML_TOK_DATA_CHARS in
doCdataS ...)
- expat <unfixed>
NOTE: https://github.com/libexpat/libexpat/pull/1278
@@ -50120,7 +50172,7 @@ CVE-2026-5266 (Exposure of Sensitive Information to an
Unauthorized Actor vulner
NOTE:
https://gerrit.wikimedia.org/r/c/mediawiki/extensions/Echo/+/1265608 (master)
NOTE:
https://lists.wikimedia.org/hyperkitty/list/[email protected]/thread/DIBLSBHISKX6NFRUFNOGZRVW42E7R2QP/
CVE-2026-34095 (Vulnerability in Wikimedia Foundation MediaWiki. This
vulnerability ...)
- {DSA-6208-1}
+ {DSA-6208-1 DLA-4640-1}
- mediawiki 1:1.43.8+dfsg-2
NOTE: http://phabricator.wikimedia.org/T419192
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/core/+/1265669
(REL1_43)
@@ -50150,14 +50202,14 @@ CVE-2026-34086 (Vulnerability in Wikimedia Foundation
AbuseFilter. This issue a
NOTE:
https://gerrit.wikimedia.org/r/c/mediawiki/extensions/AbuseFilter/+/1265611
(master)
NOTE:
https://lists.wikimedia.org/hyperkitty/list/[email protected]/thread/DIBLSBHISKX6NFRUFNOGZRVW42E7R2QP/
CVE-2026-34093 (Exposure of Sensitive Information to an Unauthorized Actor
vulnerabili ...)
- {DSA-6208-1}
+ {DSA-6208-1 DLA-4640-1}
- mediawiki 1:1.43.8+dfsg-1
NOTE: https://phabricator.wikimedia.org/T414547
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/core/+/1265667
(REL1_43)
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/core/+/1265639 (master)
NOTE:
https://lists.wikimedia.org/hyperkitty/list/[email protected]/thread/DIBLSBHISKX6NFRUFNOGZRVW42E7R2QP/
CVE-2026-34087 (Exposure of Sensitive Information to an Unauthorized Actor
vulnerabili ...)
- {DSA-6208-1}
+ {DSA-6208-1 DLA-4640-1}
- mediawiki 1:1.43.8+dfsg-1
NOTE: https://phabricator.wikimedia.org/T412061
NOTE:
https://gerrit.wikimedia.org/r/c/mediawiki/extensions/OATHAuth/+/1265614
(REL1_43)
@@ -50186,7 +50238,7 @@ CVE-2026-34092 (Exposure of Sensitive Information to an
Unauthorized Actor vulne
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/core/+/1265638 (master)
NOTE:
https://lists.wikimedia.org/hyperkitty/list/[email protected]/thread/DIBLSBHISKX6NFRUFNOGZRVW42E7R2QP/
CVE-2026-34088 (Exposure of Sensitive Information to an Unauthorized Actor
vulnerabili ...)
- {DSA-6208-1}
+ {DSA-6208-1 DLA-4640-1}
- mediawiki 1:1.43.8+dfsg-1
NOTE: https://phabricator.wikimedia.org/T410429
NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/core/+/1265670
(REL1_43)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/54ae515072d56c24b96957dccd708e3e2f2c8c3d
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/54ae515072d56c24b96957dccd708e3e2f2c8c3d
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
