Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 159469ea by Salvatore Bonaccorso at 2026-06-24T08:28:03+02:00 Add another batch of curl issues - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,3 +1,42 @@ +CVE-2026-8932 + - curl 8.21.0~rc2-1 + NOTE: https://curl.se/docs/CVE-2026-8932.html + NOTE: Introduced with: https://github.com/curl/curl/commit/a1d6ad26100bc493c7b04f1301b1634b7f5aa8b4 (curl-7_7) + NOTE: Fixed by: https://github.com/curl/curl/commit/7541ae569d82fb308a5e2d94916027da4fa3ba3e (rc-8_21_0-1, curl-8_21_0) +CVE-2026-9079 + - curl 8.21.0~rc2-1 + [bookworm] - curl <not-affected> (Vulnerable code not present) + [bullseye] - curl <not-affected> (Vulnerable code not present) + NOTE: https://curl.se/docs/CVE-2026-9079.html + NOTE: Introduced with: https://github.com/curl/curl/commit/d5e83eb745762f48d8fafadc5df5dd3ae8d8941e (curl-8_8_0) + NOTE: Fixed by: https://github.com/curl/curl/commit/88c7e16cceec816a2df45c899d49b1e85513f193 (rc-8_21_0-1, curl-8_21_0) +CVE-2026-9080 + - curl 8.21.0~rc2-1 + [bookworm] - curl <not-affected> (Vulnerable code not present) + [bullseye] - curl <not-affected> (Vulnerable code not present) + NOTE: https://curl.se/docs/CVE-2026-9080.html + NOTE: Introduced with: https://github.com/curl/curl/commit/cfc657a48dbafb4194676d4c9d841388b3a22210 (curl-8_13_0) + NOTE: Fixed by: https://github.com/curl/curl/commit/5ab34cba42e4ee4282fe8bab43f311d51b9bf9bd (rc-8_21_0-1, curl-8_21_0) +CVE-2026-9545 + - curl 8.21.0~rc2-1 + [bookworm] - curl <not-affected> (Vulnerable code not present) + [bullseye] - curl <not-affected> (Vulnerable code not present) + NOTE: https://curl.se/docs/CVE-2026-9545.html + NOTE: Introduced with: https://github.com/curl/curl/commit/962097b8dd44ed5b9e7984bc1cdffdbdd566857f (curl-8_11_0) + NOTE: Fixed by: https://github.com/curl/curl/commit/7b9613fa9b1a5e04301a3920eef58e8138dad05e (rc-8_21_0-1, curl-8_21_0) +CVE-2026-9546 + - curl 8.21.0~rc2-1 + [trixie] - curl <not-affected> (Vulnerable code not present) + [bookworm] - curl <not-affected> (Vulnerable code not present) + [bullseye] - curl <not-affected> (Vulnerable code not present) + NOTE: https://curl.se/docs/CVE-2026-9546.html + NOTE: Introduced with: https://github.com/curl/curl/commit/2cb868242dc2ac9cd52ee64987ef51d5964a56f9 (curl-8_18_0) + NOTE: Fixed by: https://github.com/curl/curl/commit/862e8a74a84478d82973471b4f49dc2746c1780e (rc-8_21_0-1, curl-8_21_0) +CVE-2026-9547 + - curl 8.21.0~rc2-1 + NOTE: https://curl.se/docs/CVE-2026-9547.html + NOTE: Introduced with: https://github.com/curl/curl/commit/507cf6a13db0375eadd4655b4c64710db29e9cf2 (curl-7_69_0) + NOTE: Fixed by: https://github.com/curl/curl/commit/0b8dbbc63c98777e4584cb9fbd71df3464008ad1 (rc-8_21_0-1, curl-8_21_0) CVE-2026-10536 - curl 8.21.0~rc2-1 NOTE: https://curl.se/docs/CVE-2026-10536.html View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/159469ea729940e36598fc6c46276980066a4a6e -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/159469ea729940e36598fc6c46276980066a4a6e You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
