Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
ea718452 by security tracker role at 2026-06-24T19:13:51+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,1016 +1,1258 @@
-CVE-2026-53127 [block: fix zones_cond memory leak on zone revalidation error 
paths]
+CVE-2026-7761 (The Ultimate Member plugin for WordPress is vulnerable to 
Account Take ...)
+       TODO: check
+CVE-2026-57307 (A missing permission check in Jenkins Zowe zDevOps Plugin 
1.1.3.50.ve3 ...)
+       TODO: check
+CVE-2026-57306 (A cross-site request forgery (CSRF) vulnerability in Jenkins 
Zowe zDev ...)
+       TODO: check
+CVE-2026-57305 (A cross-site request forgery (CSRF) vulnerability in Jenkins 
Assembla  ...)
+       TODO: check
+CVE-2026-57304 (A missing permission check in Jenkins Assembla Plugin 1.4 and 
earlier  ...)
+       TODO: check
+CVE-2026-57303 (Jenkins Assembla Plugin 1.4 and earlier does not configure its 
XML par ...)
+       TODO: check
+CVE-2026-57302 (Jenkins FitNesse Plugin 1.36 and earlier stores passwords 
unencrypted  ...)
+       TODO: check
+CVE-2026-57301 (Jenkins OWASP ZAP Plugin 1.0.7 and earlier performs build 
operations o ...)
+       TODO: check
+CVE-2026-57300 (A missing permission check in Jenkins MCP Server Plugin 
0.177.v629fdb_ ...)
+       TODO: check
+CVE-2026-57299 (Missing permission checks in Jenkins Contrast Continuous 
Application S ...)
+       TODO: check
+CVE-2026-57298 (A cross-site request forgery (CSRF) vulnerability in Jenkins 
Contrast  ...)
+       TODO: check
+CVE-2026-57297 (A missing permission check in Jenkins Contrast Continuous 
Application  ...)
+       TODO: check
+CVE-2026-57296 (Jenkins External Workspace Manager Plugin 1.3.2 and earlier 
does not r ...)
+       TODO: check
+CVE-2026-57295 (A cross-site request forgery (CSRF) vulnerability in Jenkins 
EC2 Fleet ...)
+       TODO: check
+CVE-2026-57294 (A missing permission check in Jenkins EC2 Fleet Plugin 
4.2.3.539.v8fed ...)
+       TODO: check
+CVE-2026-57293 (An incorrect permission check in Jenkins Gitee Plugin 
1288.v18b_deb_c9 ...)
+       TODO: check
+CVE-2026-57292 (A cross-site request forgery (CSRF) vulnerability in Jenkins 
Gitee Plu ...)
+       TODO: check
+CVE-2026-57291 (Missing permission checks in Jenkins Gitee Plugin 
1288.v18b_deb_c9069b ...)
+       TODO: check
+CVE-2026-57290 (A cross-site request forgery (CSRF) vulnerability in Jenkins 
Priority  ...)
+       TODO: check
+CVE-2026-57289 (Jenkins Bitbucket Push and Pull Request Plugin 3.3.8 and 
earlier uncon ...)
+       TODO: check
+CVE-2026-57288 (Jenkins Active Directory Plugin 2.41.1 and earlier does not 
escape the ...)
+       TODO: check
+CVE-2026-57287 (Jenkins Job Configuration History Plugin 1356.ve360da_6c523a_ 
and earl ...)
+       TODO: check
+CVE-2026-57286 (A missing permission check in Jenkins Git Parameter Plugin 
462.vdcf3df ...)
+       TODO: check
+CVE-2026-57285 (A missing permission check in Jenkins GitHub Branch Source 
Plugin 1967 ...)
+       TODO: check
+CVE-2026-57284 (Jenkins Pipeline: Groovy Plugin 4331.v9d06ed4658ff and earlier 
does no ...)
+       TODO: check
+CVE-2026-57283 (A cross-site request forgery (CSRF) vulnerability in Jenkins 
Pipeline: ...)
+       TODO: check
+CVE-2026-57282 (Jenkins Git client Plugin 6.6.0 and earlier does not correctly 
escape  ...)
+       TODO: check
+CVE-2026-57281 (Jenkins Script Security Plugin 1402.v94c9ce464861 and earlier 
does not ...)
+       TODO: check
+CVE-2026-57280 (Jenkins Script Security Plugin 1402.v94c9ce464861 and earlier 
does not ...)
+       TODO: check
+CVE-2026-56761 (hono before 4.12.14 contains an html injection vulnerability 
in jsx se ...)
+       TODO: check
+CVE-2026-56370 (ImageMagick before 7.1.2-19 contains an out-of-bounds access 
vulnerabi ...)
+       TODO: check
+CVE-2026-56368 (ImageMagick before 7.1.2-15 contains a memory leak 
vulnerability in mu ...)
+       TODO: check
+CVE-2026-56358 (n8n before 1.123.25 (1.x) and before 2.11.2 (2.x), with the 
fix also i ...)
+       TODO: check
+CVE-2026-56351 (n8n before version 2.4.0 contains a sql injection 
vulnerability in MyS ...)
+       TODO: check
+CVE-2026-56338 (Capgo before 12.128.2 contains a denial of service 
vulnerability in th ...)
+       TODO: check
+CVE-2026-56337 (Capgo before 12.128.2 contains an information disclosure 
vulnerability ...)
+       TODO: check
+CVE-2026-56310 (Cap-go before 12.128.2 contains an authorization bypass 
vulnerability  ...)
+       TODO: check
+CVE-2026-56302 (Capgo before 12.128.2 contains an unsecured images bucket 
lacking any  ...)
+       TODO: check
+CVE-2026-56272 (Flowise before 3.0.13 uses bcrypt with default salt rounds of 
5, provi ...)
+       TODO: check
+CVE-2026-56270 (Flowise before 3.1.0 (versions 3.0.13 and earlier) contains a 
missing  ...)
+       TODO: check
+CVE-2026-56269 (Flowise before 3.1.0 (npm package flowise, versions 3.0.13 and 
earlier ...)
+       TODO: check
+CVE-2026-56262 (Crawl4AI before 0.8.7 contains an authentication bypass 
vulnerability  ...)
+       TODO: check
+CVE-2026-56257 (Capgo before 12.128.2 allows direct patching of 
public.apps.owner_org  ...)
+       TODO: check
+CVE-2026-56256 (Capgo before 12.128.2 enforces mandatory two-factor 
authentication onl ...)
+       TODO: check
+CVE-2026-56245 (Supabase Capgo before 12.128.2 contains an authorization 
bypass vulner ...)
+       TODO: check
+CVE-2026-56244 (Capgo before 12.128.2 allows non-admin API keys to read 
webhook signin ...)
+       TODO: check
+CVE-2026-56237 (Capgo before 12.128.2 contains a broken authentication 
vulnerability i ...)
+       TODO: check
+CVE-2026-56232 (Capgo before 12.128.2 fails to enforce limited_to_orgs and 
limited_to_ ...)
+       TODO: check
+CVE-2026-56231 (Capgo before 12.128.2 contains a broken object level 
authorization (BO ...)
+       TODO: check
+CVE-2026-56223 (Capgo before 12.128.2 contains a cross-domain SSO account 
takeover vul ...)
+       TODO: check
+CVE-2026-56121 (Feast before 0.63.0 contains an unsafe deserialization 
vulnerability t ...)
+       TODO: check
+CVE-2026-56119
+       REJECTED
+CVE-2026-56118
+       REJECTED
+CVE-2026-56111 (Marlin Firmware through 2.1.2.7, fixed in commit 1f255d1, when 
built w ...)
+       TODO: check
+CVE-2026-56052 (Improper Neutralization of Special Elements used in an SQL 
Command ('S ...)
+       TODO: check
+CVE-2026-55611 (AnythingLLM is an application that turns pieces of content 
into contex ...)
+       TODO: check
+CVE-2026-55488 (motionEye (mEye) is an online interface for a piece of 
software called ...)
+       TODO: check
+CVE-2026-54906 (concurrent-ruby is a modern concurrency tools for Ruby. Prior 
to 1.3.7 ...)
+       TODO: check
+CVE-2026-54905 (concurrent-ruby is a modern concurrency tools for Ruby. Prior 
to 1.3.7 ...)
+       TODO: check
+CVE-2026-54904 (concurrent-ruby is a modern concurrency tools for Ruby. Prior 
to 1.3.7 ...)
+       TODO: check
+CVE-2026-54699 (Warp is an agentic development environment. From 
0.2024.03.12.08.02.st ...)
+       TODO: check
+CVE-2026-54686 (Warp is an agentic development environment. From 
0.2021.04.25.23.05.st ...)
+       TODO: check
+CVE-2026-54297 (Faraday is an HTTP client library abstraction layer that 
provides a co ...)
+       TODO: check
+CVE-2026-53950 (@tryghost/activitypub is Ghost\u2019s social/federation client 
app. Pr ...)
+       TODO: check
+CVE-2026-53949 (Ghost is a Node.js content management system. From 5.46.1 
until 6.21.2 ...)
+       TODO: check
+CVE-2026-53948 (Ghost is a Node.js content management system. From 6.19.4 
until 6.21.1 ...)
+       TODO: check
+CVE-2026-53947 (Ghost is a Node.js content management system. From 5.18.0 
until 6.21.1 ...)
+       TODO: check
+CVE-2026-53946 (Ghost is a Node.js content management system. From 6.19.4 
until 6.21.1 ...)
+       TODO: check
+CVE-2026-53945 (Ghost is a Node.js content management system. From 6.0.9 until 
6.21.1, ...)
+       TODO: check
+CVE-2026-53944 (Ghost is a Node.js content management system. From 6.0.9 until 
6.21.1, ...)
+       TODO: check
+CVE-2026-53943 (Ghost is a Node.js content management system. From  until 
6.37.0, when ...)
+       TODO: check
+CVE-2026-50712 (A Stored Cross-Site Scripting (XSS) vulnerability exists in 
Frappe Fra ...)
+       TODO: check
+CVE-2026-50711 (A Stored Cross-Site Scripting (XSS) vulnerability exists in 
Frappe Fra ...)
+       TODO: check
+CVE-2026-50710 (A Stored Cross-Site Scripting (XSS) vulnerability exists in 
Frappe Fra ...)
+       TODO: check
+CVE-2026-50709 (A Stored Cross-Site Scripting (XSS) vulnerability exists in 
Frappe Fra ...)
+       TODO: check
+CVE-2026-50708 (A Stored Cross-Site Scripting (XSS) vulnerability exists in 
Frappe Fra ...)
+       TODO: check
+CVE-2026-50705 (A Cross-Site Scripting (XSS) vulnerability exists in Frappe 
Framework  ...)
+       TODO: check
+CVE-2026-50704 (A Stored Cross-Site Scripting (XSS) vulnerability exists in 
Frappe Fra ...)
+       TODO: check
+CVE-2026-50703 (A Stored Cross-Site Scripting (XSS) vulnerability exists in 
Frappe Fra ...)
+       TODO: check
+CVE-2026-50701 (A Reflected Cross-Site Scripting (XSS) vulnerability exists in 
Frappe  ...)
+       TODO: check
+CVE-2026-50700 (A Stored Cross-Site Scripting (XSS) vulnerability exists in 
Frappe Fra ...)
+       TODO: check
+CVE-2026-50699 (A Stored Cross-Site Scripting (XSS) vulnerability exists in 
Frappe Fra ...)
+       TODO: check
+CVE-2026-50698 (A Stored Cross-Site Scripting (XSS) vulnerability exists in 
Frappe Fra ...)
+       TODO: check
+CVE-2026-49980 (Rclone is a command-line program to sync files and directories 
to and  ...)
+       TODO: check
+CVE-2026-49851 (Mistune is a Python Markdown parser with renderers and 
plugins. Prior  ...)
+       TODO: check
+CVE-2026-49269 (Apple M1 GPUs retain register file data between compute shader 
dispatc ...)
+       TODO: check
+CVE-2026-49247 (Jellyfin is an open source self hosted media server. From 
10.9.0 until ...)
+       TODO: check
+CVE-2026-49246 (Jellyfin is an open source self hosted media server. Prior to 
10.11.10 ...)
+       TODO: check
+CVE-2026-49220 (Jellyfin is an open source self hosted media server. Prior to 
10.11.9, ...)
+       TODO: check
+CVE-2026-48793 (Jellyfin is an open source self hosted media server. Prior to 
10.11.10 ...)
+       TODO: check
+CVE-2026-48789 (AnythingLLM is an application that turns pieces of content 
into contex ...)
+       TODO: check
+CVE-2026-48732 (Warp is an agentic development environment. From 
0.2023.03.21.08.02.st ...)
+       TODO: check
+CVE-2026-48731 (Warp is an agentic development environment. From 
0.2024.02.20.08.01.st ...)
+       TODO: check
+CVE-2026-48725 (Warp is an agentic development environment. From 
0.2021.04.25.23.05.st ...)
+       TODO: check
+CVE-2026-48721 (Warp is an agentic development environment. From 
0.2025.10.08.08.12.st ...)
+       TODO: check
+CVE-2026-48720 (Warp is an agentic development environment. From 
0.2025.03.05.08.02.st ...)
+       TODO: check
+CVE-2026-48719 (Warp is an agentic development environment. From 
0.2025.08.06.08.12.st ...)
+       TODO: check
+CVE-2026-48704 (Warp is an agentic development environment. From 
0.2023.10.24.08.03.st ...)
+       TODO: check
+CVE-2026-48703 (Warp is an agentic development environment. From 
0.2025.04.09.08.11.st ...)
+       TODO: check
+CVE-2026-44022 (Docling simplifies document processing by parsing diverse 
formats and  ...)
+       TODO: check
+CVE-2026-44020 (Docling simplifies document processing by parsing diverse 
formats and  ...)
+       TODO: check
+CVE-2026-44017 (Docling simplifies document processing by parsing diverse 
formats and  ...)
+       TODO: check
+CVE-2026-44016 (Docling simplifies document processing by parsing diverse 
formats and  ...)
+       TODO: check
+CVE-2026-42450 (OpenColorIO is a color management framework for visual effects 
and ani ...)
+       TODO: check
+CVE-2026-35025 (ProFTPD through 1.3.9b and 1.3.10rc2 contains an access 
control bypass ...)
+       TODO: check
+CVE-2026-29034
+       REJECTED
+CVE-2026-13164 (Missing Authentication for Critical Function (CWE-306) in the 
Register ...)
+       TODO: check
+CVE-2026-13163 (Open redirect vulnerability (CWE-601) in the _safe_redirect 
function o ...)
+       TODO: check
+CVE-2026-13150 (Server-Side Request Forgery (SSRF) (CWE-918) in the PDF 
generation end ...)
+       TODO: check
+CVE-2026-13140 (Stored Cross-Site Scripting in the exposed AWS API key store 
ofThinkst ...)
+       TODO: check
+CVE-2026-12986 (A critical vulnerability in Admin GUI in Payara Server Full 
4.x, 5.x,  ...)
+       TODO: check
+CVE-2026-12760 (A denial-of-service (DoS) vulnerability has been identified in 
Tapo C2 ...)
+       TODO: check
+CVE-2026-12537 (Improper Neutralization used in an OS Command in the container 
launche ...)
+       TODO: check
+CVE-2026-12242 (The AdRotate Banner Manager plugin for WordPress is vulnerable 
to PHP  ...)
+       TODO: check
+CVE-2026-11968 (Argument Injection in TortoiseGitBlame via Malicious Git 
History Filen ...)
+       TODO: check
+CVE-2026-11878 (Improper neutralization of input during web page generation 
('cross-si ...)
+       TODO: check
+CVE-2026-11877 (An unauthorized user can modify configuration through API 
calls that a ...)
+       TODO: check
+CVE-2026-10745 (Improper output neutralization for logs vulnerability in 
upKeeper Solu ...)
+       TODO: check
+CVE-2025-71361 (picklescan before 0.0.29 fails to detect malicious 
idlelib.calltip.Cal ...)
+       TODO: check
+CVE-2025-71354 (picklescan before 0.0.29 fails to detect malicious pickle 
files that e ...)
+       TODO: check
+CVE-2025-71332 (Flowise through 2.2.7 contains a SQL injection vulnerability 
in the im ...)
+       TODO: check
+CVE-2026-53127 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/2a2f520fda824b5a25c93f2249578ea150c24e06 (7.1-rc1)
-CVE-2026-53126 [blk-cgroup: fix disk reference leak in 
blkcg_maybe_throttle_current()]
+CVE-2026-53126 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/23308af722fefed00af5f238024c11710938fba3 (7.1-rc1)
-CVE-2026-53125 [md: fix array_state=clear sysfs deadlock]
+CVE-2026-53125 (In the Linux kernel, the following vulnerability has been 
resolved:  m ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/2aa72276fab9851dbd59c2daeb4b590c5a113908 (7.1-rc1)
-CVE-2026-53123 [md: wake raid456 reshape waiters before suspend]
+CVE-2026-53123 (In the Linux kernel, the following vulnerability has been 
resolved:  m ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/cf86bb53b9c92354904a328e947a05ffbfdd1840 (7.1-rc1)
-CVE-2026-53121 [amd-pstate: Fix memory leak in amd_pstate_epp_cpu_init()]
+CVE-2026-53121 (In the Linux kernel, the following vulnerability has been 
resolved:  a ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/beda3b363546a423e4e29a7395e04c0ac4ff677e (7.1-rc1)
-CVE-2026-53119 [platform/wmi: use generic driver_override infrastructure]
+CVE-2026-53119 (In the Linux kernel, the following vulnerability has been 
resolved:  p ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/8a700b1fc94df4d847a04f14ebc7f8532592b367 (7.1-rc1)
-CVE-2026-53116 [s390/ap: use generic driver_override infrastructure]
+CVE-2026-53116 (In the Linux kernel, the following vulnerability has been 
resolved:  s ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/81d6f7c3a70b10ff757ee8b5f8114a190871cf1e (7.1-rc1)
-CVE-2026-53114 [perf/amd/ibs: Avoid calling perf_allow_kernel() from the IBS 
NMI handler]
+CVE-2026-53114 (In the Linux kernel, the following vulnerability has been 
resolved:  p ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/b0a09142622a994c4f4088c3f61db5da87cfc711 (7.1-rc1)
-CVE-2026-53110 [s390/bpf: Zero-extend bpf prog return values and kfunc 
arguments]
+CVE-2026-53110 (In the Linux kernel, the following vulnerability has been 
resolved:  s ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/202e42e4aa890172366354b233c42c73107a3f59 (7.1-rc1)
-CVE-2026-53105 [wifi: mt76: mt7925: prevent NULL vif dereference in 
mt7925_mac_write_txwi]
+CVE-2026-53105 (In the Linux kernel, the following vulnerability has been 
resolved:  w ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/962eb04e67552be406c906c83099c1d736aae3b6 (7.1-rc1)
-CVE-2026-53100 [wifi: mt76: fix deadlock in remain-on-channel]
+CVE-2026-53100 (In the Linux kernel, the following vulnerability has been 
resolved:  w ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/6939b97ddad3cf3dfbb3b5a0a12ef79cb886747e (7.1-rc1)
-CVE-2026-53099 [bpf: Switch CONFIG_CFI_CLANG to CONFIG_CFI]
+CVE-2026-53099 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/9b0cf064ea0a6bac5e1a5fb43b004fd52fbe2b3b (7.1-rc1)
-CVE-2026-53098 [wifi: mt76: mt7915: fix use-after-free bugs in 
mt7915_mac_dump_work()]
+CVE-2026-53098 (In the Linux kernel, the following vulnerability has been 
resolved:  w ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/1146d0946b5358fad24812bd39d68f31cd40cc34 (7.1-rc1)
-CVE-2026-53095 [bpf: Fix abuse of kprobe_write_ctx via freplace]
+CVE-2026-53095 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/611fe4b79af72d00d80f2223354284447daafae9 (7.1-rc1)
-CVE-2026-53094 [bpf: Fix stale offload->prog pointer after constant blinding]
+CVE-2026-53094 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/a1aa9ef47c299c5bbc30594d3c2f0589edf908e6 (7.1-rc1)
-CVE-2026-53087 [net: bcmgenet: fix leaking free_bds]
+CVE-2026-53087 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/3f3168300efb839028328d720ab3962f91d6a0d0 (7.1-rc1)
-CVE-2026-53085 [bpf: fix mm lifecycle in open-coded task_vma iterator]
+CVE-2026-53085 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/d8e27d2d22b6e2df3a0125b8c08e9aace38c954c (7.1-rc1)
-CVE-2026-53084 [bpf: return VMA snapshot from task_vma iterator]
+CVE-2026-53084 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/4cbee026db54cad39c39db4d356100cb133412b3 (7.1-rc1)
-CVE-2026-53081 [bpf: Enforce regsafe base id consistency for BPF_ADD_CONST 
scalars]
+CVE-2026-53081 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/2f2ec8e7730e21fc9bd49e0de9cdd58213ea24d0 (7.1-rc1)
-CVE-2026-53079 [net_sched: fix skb memory leak in deferred qdisc drops]
+CVE-2026-53079 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/a6bd339dbb3514bce690fdcf252e788dfab4ee76 (7.1-rc1)
-CVE-2026-53067 [PCI: endpoint: pci-ep-msi: Fix error unwind and prevent double 
alloc]
+CVE-2026-53067 (In the Linux kernel, the following vulnerability has been 
resolved:  P ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/1cba96c0a795124c3229293ed7b5b5765e66f259 (7.1-rc1)
-CVE-2026-53058 [drm/bridge: cadence: cdns-mhdp8546-core: Set the mhdp 
connector earlier in atomic_enable()]
+CVE-2026-53058 (In the Linux kernel, the following vulnerability has been 
resolved:  d ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/43d6508ddbf9fb974fbc359a033154f78c9d4c8b (7.1-rc1)
-CVE-2026-53057 [iommu/riscv: Add IOTINVAL after updating DDT/PDT entries]
+CVE-2026-53057 (In the Linux kernel, the following vulnerability has been 
resolved:  i ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/f5c262b544975e067ea265fc7403aefbbea8563e (7.1-rc1)
-CVE-2026-53055 [crypto: hisilicon/sec2 - prevent req used-after-free for sec]
+CVE-2026-53055 (In the Linux kernel, the following vulnerability has been 
resolved:  c ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/67b53a660e6bf0da2fa8d8872e897a14d8059eaf (7.1-rc1)
-CVE-2026-53054 [drm/msm: Fix VM_BIND UNMAP locking]
+CVE-2026-53054 (In the Linux kernel, the following vulnerability has been 
resolved:  d ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/85042c2cd970a6b0e686329387096fe19989ae62 (7.1-rc1)
-CVE-2026-53051 [PCI: tegra194: Fix CBB timeout caused by DBI access before 
core power-on]
+CVE-2026-53051 (In the Linux kernel, the following vulnerability has been 
resolved:  P ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/34b3eef48d980cd37b876e128bbf314f69fb5d70 (7.1-rc1)
-CVE-2026-53044 [soc/tegra: cbb: Fix incorrect ARRAY_SIZE in fabric lookup 
tables]
+CVE-2026-53044 (In the Linux kernel, the following vulnerability has been 
resolved:  s ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/499f7e5ebbdd9ff0c4d532b1c432f8a61ff585b3 (7.1-rc1)
-CVE-2026-53042 [fwctl: Fix class init ordering to avoid NULL pointer 
dereference on device removal]
+CVE-2026-53042 (In the Linux kernel, the following vulnerability has been 
resolved:  f ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/a55f80233f384dc89ef3425b2e1dd0e6d44bcf29 (7.1-rc1)
-CVE-2026-53038 [ima_fs: Correctly create securityfs files for unsupported hash 
algos]
+CVE-2026-53038 (In the Linux kernel, the following vulnerability has been 
resolved:  i ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/d7bd8cf0b348d3edae7bee33e74a32b21668b181 (7.1-rc1)
-CVE-2026-53032 [bpf: Fix NULL deref in map_kptr_match_type for scalar regs]
+CVE-2026-53032 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/4d0a375887ab4d49e4da1ff10f9606cab8f7c3ad (7.1-rc1)
-CVE-2026-53031 [bpf: Validate node_id in arena_alloc_pages()]
+CVE-2026-53031 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/2845989f2ebaf7848e4eccf9a779daf3156ea0a5 (7.1-rc1)
-CVE-2026-53030 [i3c: master: renesas: Fix memory leak in 
renesas_i3c_i3c_xfers()]
+CVE-2026-53030 (In the Linux kernel, the following vulnerability has been 
resolved:  i ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/d7665c3b4f575251e449e2656879392346ca612b (7.1-rc1)
-CVE-2026-53029 [fs/ntfs3: prevent uninitialized lcn caused by zero len]
+CVE-2026-53029 (In the Linux kernel, the following vulnerability has been 
resolved:  f ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/e98266e823a1fa06fe6499df61aeaac2fd6f7a49 (7.1-rc1)
-CVE-2026-53028 [usb: typec: Fix error pointer dereference]
+CVE-2026-53028 (In the Linux kernel, the following vulnerability has been 
resolved:  u ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/f2529d08fcb429ea01bb87c326342f41483f8b2f (7.1-rc1)
-CVE-2026-53026 [NFSD: fix nfs4_file access extra count in 
nfsd4_add_rdaccess_to_wrdeleg]
+CVE-2026-53026 (In the Linux kernel, the following vulnerability has been 
resolved:  N ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/b48f44f36e6607b2f818560f19deb86b4a9c717b (7.1-rc1)
-CVE-2026-53020 [um: Fix potential race condition in TLB sync]
+CVE-2026-53020 (In the Linux kernel, the following vulnerability has been 
resolved:  u ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/102331b66bcaf1f41f50b9c4cd5c36e46bafa9f3 (7.1-rc1)
-CVE-2026-53019 [clk: spacemit: ccu_mix: fix inverted condition in 
ccu_mix_trigger_fc()]
+CVE-2026-53019 (In the Linux kernel, the following vulnerability has been 
resolved:  c ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/54e97360b44bed6b4399dd3be3d65f392df940fa (7.1-rc1)
-CVE-2026-53014 [net/sched: act_mirred: fix wrong device for mac_header_xmit 
check in tcf_blockcast_redir]
+CVE-2026-53014 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/4510d140524ca7d6e772db962e013f26f09a63b1 (7.1-rc1)
-CVE-2026-53013 [macvlan: fix macvlan_get_size() not reserving space for 
IFLA_MACVLAN_BC_CUTOFF]
+CVE-2026-53013 (In the Linux kernel, the following vulnerability has been 
resolved:  m ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/fa92a77b0ed4d5f11a71665a232ac5a54a4b055d (7.1-rc1)
-CVE-2026-52997 [net/sched: sch_dualpi2: drain both C-queue and L-queue in 
dualpi2_change()]
+CVE-2026-52997 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/478ed6b7d2577439c610f91fa8759a4c878a4264 (7.1-rc1)
-CVE-2026-52996 [ksmbd: fix durable fd leak on ClientGUID mismatch in durable 
v2 open]
+CVE-2026-52996 (In the Linux kernel, the following vulnerability has been 
resolved:  k ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/804054d19886ac6628883d82410f6ee42a818664 (7.1-rc1)
-CVE-2026-52987 [drm/amdgpu: avoid double drm_exec_fini() in userq validate]
+CVE-2026-52987 (In the Linux kernel, the following vulnerability has been 
resolved:  d ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/508babf310365f1107a2e8831c267c292a286818 (7.1-rc2)
-CVE-2026-52980 [sched/fair: Clear rel_deadline when initializing forked 
entities]
+CVE-2026-52980 (In the Linux kernel, the following vulnerability has been 
resolved:  s ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/3da56dc063cd77b9c0b40add930767fab4e389f3 (7.1-rc2)
-CVE-2026-52979 [net: psp: check for device unregister when creating assoc]
+CVE-2026-52979 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/b89769f936a8fa9e66de72ddc1b71a9745a488e6 (7.1-rc2)
-CVE-2026-52978 [net: psp: require admin permission for dev-set and key-rotate]
+CVE-2026-52978 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/b718342a7fbaa2dff5fefc31988c07af8c6cbc21 (7.1-rc2)
-CVE-2026-52976 [drm/xe: Fix error cleanup in xe_exec_queue_create_ioctl()]
+CVE-2026-52976 (In the Linux kernel, the following vulnerability has been 
resolved:  d ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/f3cc22d4df3ed58439ea7e21daa54c3608e03b78 (7.1-rc2)
-CVE-2026-52973 [futex: Drop CLONE_THREAD requirement for private default hash 
alloc]
+CVE-2026-52973 (In the Linux kernel, the following vulnerability has been 
resolved:  f ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/ee9dce44362b2d8132c32964656ab6dff7dfbc6a (7.1-rc2)
-CVE-2026-52971 [net: ena: PHC: Fix potential use-after-free in get_timestamp]
+CVE-2026-52971 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/e42c755582f0960e684298762f0ab927b3778376 (7.1-rc4)
-CVE-2026-52966 [drm: Replace old pointer to new idr]
+CVE-2026-52966 (In the Linux kernel, the following vulnerability has been 
resolved:  d ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/dc366607c41c45fd0ae6f3db090f31dd611b644a (7.1-rc4)
-CVE-2026-52964 [ALSA: usb-audio: Bound MIDI 2.0 endpoint descriptor scans]
+CVE-2026-52964 (In the Linux kernel, the following vulnerability has been 
resolved:  A ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/918be519c7876329e1b6e2ea1c59f0b75e792dca (7.1-rc4)
-CVE-2026-52959 [virt: sev-guest: Do not use host-controlled page order in 
cleanup path]
+CVE-2026-52959 (In the Linux kernel, the following vulnerability has been 
resolved:  v ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/23e6a1ca04ae44806439a5a446e62e4d42e80bb4 (7.1-rc4)
-CVE-2026-52952 [iommu: Fix WARN_ON in __iommu_group_set_domain_nofail() due to 
reset]
+CVE-2026-52952 (In the Linux kernel, the following vulnerability has been 
resolved:  i ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/5474e6e17a262db45c60575c73f70210f5c7001f (7.1-rc4)
-CVE-2026-52951 [drm/xe/dma-buf: handle empty bo and UAF races]
+CVE-2026-52951 (In the Linux kernel, the following vulnerability has been 
resolved:  d ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/981bedbbe61364fcc3a3b87ebaf648a66cd07108 (7.1-rc4)
-CVE-2026-52950 [drm/xe/dma-buf: fix UAF with retry loop]
+CVE-2026-52950 (In the Linux kernel, the following vulnerability has been 
resolved:  d ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/155a372a1cc50fa93387c5d3cdfd614a61e1afd1 (7.1-rc4)
-CVE-2026-53130 [fs/omfs: reject s_sys_blocksize smaller than OMFS_DIR_START]
+CVE-2026-53130 (In the Linux kernel, the following vulnerability has been 
resolved:  f ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/0621c385fda1376e967f37ccd534c26c3e511d14 (7.1-rc1)
-CVE-2026-53129 [fs/mbcache: cancel shrink work before destroying the cache]
+CVE-2026-53129 (In the Linux kernel, the following vulnerability has been 
resolved:  f ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/d227786ab1119669df4dc333a61510c52047cce4 (7.1-rc1)
-CVE-2026-53128 [drbd: Balance RCU calls in drbd_adm_dump_devices()]
+CVE-2026-53128 (In the Linux kernel, the following vulnerability has been 
resolved:  d ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/2b31e86387e60b3689339f0f0fbb4d3623d9d494 (7.1-rc1)
-CVE-2026-53124 [ublk: reset per-IO canceled flag on each fetch]
+CVE-2026-53124 (In the Linux kernel, the following vulnerability has been 
resolved:  u ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/0842186d2c4e67d2f8c8c2d1d779e8acffd41b5b (7.1-rc1)
-CVE-2026-53122 [btrfs: fix deadlock between reflink and transaction commit 
when using flushoncommit]
+CVE-2026-53122 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/b48c980b6a7e409050bb3067165db31cc6205e3e (7.1-rc1)
-CVE-2026-53120 [PCI: use generic driver_override infrastructure]
+CVE-2026-53120 (In the Linux kernel, the following vulnerability has been 
resolved:  P ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/10a4206a24013be4d558d476010cbf2eb4c9fa64 (7.1-rc1)
-CVE-2026-53118 [vdpa: use generic driver_override infrastructure]
+CVE-2026-53118 (In the Linux kernel, the following vulnerability has been 
resolved:  v ...)
        - linux 7.0.10-1
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/85bb534ff12aab6916058897b39c748940a7a4c6 (7.1-rc1)
-CVE-2026-53117 [s390/cio: use generic driver_override infrastructure]
+CVE-2026-53117 (In the Linux kernel, the following vulnerability has been 
resolved:  s ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/ac4d8bb6e2e13e8684a76ea48d13ebaaaf5c24c4 (7.1-rc1)
-CVE-2026-53115 [bus: fsl-mc: use generic driver_override infrastructure]
+CVE-2026-53115 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/6c8dfb0362732bf1e4829867a2a5239fedc592d0 (7.1-rc1)
-CVE-2026-53113 [wifi: ath11k: fix memory leaks in beacon template setup]
+CVE-2026-53113 (In the Linux kernel, the following vulnerability has been 
resolved:  w ...)
        - linux 7.0.10-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/ff49eba595df500e4ddccc593088c8a4ab5f2c27 (7.1-rc1)
-CVE-2026-53112 [wifi: rtlwifi: pci: fix possible use-after-free caused by 
unfinished irq_prepare_bcn_tasklet]
+CVE-2026-53112 (In the Linux kernel, the following vulnerability has been 
resolved:  w ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/039cd522dc70151da13329a5e3ae19b1736f468a (7.1-rc1)
-CVE-2026-53111 [bpf: test_run: Fix the null pointer dereference issue in 
bpf_lwt_xmit_push_encap]
+CVE-2026-53111 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/972787479ee73006fddb5e59ab5c8e733810ff42 (7.1-rc1)
-CVE-2026-53109 [powerpc/pgtable-frag: Fix bad page state in pte_frag_destroy]
+CVE-2026-53109 (In the Linux kernel, the following vulnerability has been 
resolved:  p ...)
        - linux 7.0.10-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/fda4d71651f71c44b35829d13f3c8bf920032f77 (7.1-rc1)
-CVE-2026-53108 [powerpc/64s: Fix unmap race with PMD migration entries]
+CVE-2026-53108 (In the Linux kernel, the following vulnerability has been 
resolved:  p ...)
        - linux 7.0.10-1
        NOTE: 
https://git.kernel.org/linus/bbcbf045d6c778e82b47a35fc8728387708e9a3d (7.1-rc1)
-CVE-2026-53107 [wifi: libertas: don't kill URBs in interrupt context]
+CVE-2026-53107 (In the Linux kernel, the following vulnerability has been 
resolved:  w ...)
        - linux 7.0.10-1
        NOTE: 
https://git.kernel.org/linus/7c5c2b661bdb78c1472b8833265c9ed1ee880039 (7.1-rc1)
-CVE-2026-53106 [bpf: Do not allow deleting local storage in NMI]
+CVE-2026-53106 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.10-1
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/350de5b8a9befaa2a68861c51f671d4f5f751ca5 (7.1-rc1)
-CVE-2026-53104 [wifi: mt76: Fix memory leak destroying device]
+CVE-2026-53104 (In the Linux kernel, the following vulnerability has been 
resolved:  w ...)
        - linux 7.0.10-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/6b470f36616e3448d44b0ef4b1de2a3e3a31b5be (7.1-rc1)
-CVE-2026-53103 [wifi: mt76: mt7925: fix potential deadlock in 
mt7925_roc_abort_sync]
+CVE-2026-53103 (In the Linux kernel, the following vulnerability has been 
resolved:  w ...)
        - linux 7.0.10-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/dd08ca3f092f4185ece69ce2a835c23198b1628a (7.1-rc1)
-CVE-2026-53102 [wifi: mt76: Fix memory leak after 
mt76_connac_mcu_alloc_sta_req()]
+CVE-2026-53102 (In the Linux kernel, the following vulnerability has been 
resolved:  w ...)
        - linux 7.0.10-1
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/c41075ce8cf05ed8c0e7b7efef000dce548ffc42 (7.1-rc1)
-CVE-2026-53101 [wifi: mt76: mt7921: fix potential deadlock in 
mt7921_roc_abort_sync]
+CVE-2026-53101 (In the Linux kernel, the following vulnerability has been 
resolved:  w ...)
        - linux 7.0.10-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/d5059e52fd8bc624ec4255c9fa01a266513d126b (7.1-rc1)
-CVE-2026-53097 [wifi: mt76: mt7996: fix use-after-free bugs in 
mt7996_mac_dump_work()]
+CVE-2026-53097 (In the Linux kernel, the following vulnerability has been 
resolved:  w ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/c8f62f73bbced3a79894655bdb0b625462d956fc (7.1-rc1)
-CVE-2026-53096 [bpf: Use RCU-safe iteration in dev_map_redirect_multi() SKB 
path]
+CVE-2026-53096 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/8ed82f807bb09d2c8455aaa665f2c6cb17bc6a19 (7.1-rc1)
-CVE-2026-53093 [wifi: brcmfmac: Fix error pointer dereference]
+CVE-2026-53093 (In the Linux kernel, the following vulnerability has been 
resolved:  w ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/dd8592fc6007a451c3e4b9025de365e39de8178a (7.1-rc1)
-CVE-2026-53092 [bpf: Fix linked reg delta tracking when src_reg == dst_reg]
+CVE-2026-53092 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.10-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/d7f14173c0d5866c3cae759dee560ad1bed10d2e (7.1-rc1)
-CVE-2026-53091 [net: pull headers in qdisc_pkt_len_segs_init()]
+CVE-2026-53091 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        NOTE: 
https://git.kernel.org/linus/7fb4c19670110f052c04e1ec1d2b953b9f4f57e4 (7.1-rc1)
-CVE-2026-53090 [bpf: Fix ld_{abs,ind} failure path analysis in subprogs]
+CVE-2026-53090 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.10-1
        NOTE: 
https://git.kernel.org/linus/ee861486e377edc55361c08dcbceab3f6b6577bd (7.1-rc1)
-CVE-2026-53089 [bpf: Fix use-after-free in offloaded map/prog info fill]
+CVE-2026-53089 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.10-1
        NOTE: 
https://git.kernel.org/linus/a0c584fc18056709c8e047a82a6045d6c209f4ce (7.1-rc1)
-CVE-2026-53088 [net: bcmgenet: fix off-by-one in bcmgenet_put_txcb]
+CVE-2026-53088 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/57f3f53d2c9c5a9e133596e2f7bc1c50688a6d38 (7.1-rc1)
-CVE-2026-53086 [net: bcmgenet: fix racing timeout handler]
+CVE-2026-53086 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/5393b2b5bee2ac51a0043dc7f4ac3475f053d08d (7.1-rc1)
-CVE-2026-53083 [bpf: Fix RCU stall in bpf_fd_array_map_clear()]
+CVE-2026-53083 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/4406942e65ca128c56c67443832988873c21d2e9 (7.1-rc1)
-CVE-2026-53082 [net: hamradio: 6pack: fix uninit-value in sixpack_receive_buf]
+CVE-2026-53082 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/bf9a38803b2626b01cc769aaf13485d8650f576f (7.1-rc1)
-CVE-2026-53080 [net/sched: cls_fw: fix NULL dereference of "old" filters 
before change()]
+CVE-2026-53080 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/65782b2db7321d5f97c16718c4c7f6c7205a56be (7.1-rc1)
-CVE-2026-53078 [bpf: Fix same-register dst/src OOB read and pointer leak in 
sock_ops]
+CVE-2026-53078 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.10-1
        NOTE: 
https://git.kernel.org/linus/10f86a2a5c91fc4c4d001960f1c21abe52545ef6 (7.1-rc1)
-CVE-2026-53077 [net/rds: Restrict use of RDS/IB to the initial network 
namespace]
+CVE-2026-53077 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/ebf71dd4aff46e8e421d455db3e231ba43d2fa8a (7.1-rc1)
-CVE-2026-53076 [bpf: Fix OOB in pcpu_init_value]
+CVE-2026-53076 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/576afddfee8d1108ee299bf10f581593540d1a36 (7.1-rc1)
-CVE-2026-53075 [ppp: require CAP_NET_ADMIN in target netns for unattached 
ioctls]
+CVE-2026-53075 (In the Linux kernel, the following vulnerability has been 
resolved:  p ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/2bb6379416fd19f44c3423a00bfd8626259f6067 (7.1-rc1)
-CVE-2026-53074 [bpf: reject short IPv4/IPv6 inputs in bpf_prog_test_run_skb]
+CVE-2026-53074 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/12bec2bd4b76d81c5d3996bd14ec1b7f4d983747 (7.1-rc1)
-CVE-2026-53073 [Bluetooth: hci_ldisc: Clear HCI_UART_PROTO_INIT on error]
+CVE-2026-53073 (In the Linux kernel, the following vulnerability has been 
resolved:  B ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/68d39ea5e0adc9ecaea1ce8abd842ec972eb8718 (7.1-rc1)
-CVE-2026-53072 [Bluetooth: fix locking in hci_conn_request_evt() with 
HCI_PROTO_DEFER]
+CVE-2026-53072 (In the Linux kernel, the following vulnerability has been 
resolved:  B ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/5c7209a341ff2ac338b2b0375c34a307b37c9ac2 (7.1-rc1)
-CVE-2026-53071 [Bluetooth: l2cap: Add missing chan lock in 
l2cap_ecred_reconf_rsp]
+CVE-2026-53071 (In the Linux kernel, the following vulnerability has been 
resolved:  B ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/42776497cdbc9a665b384a6dcb85f0d4bd927eab (7.1-rc1)
-CVE-2026-53070 [sctp: disable BH before calling udp_tunnel_xmit_skb()]
+CVE-2026-53070 (In the Linux kernel, the following vulnerability has been 
resolved:  s ...)
        - linux 7.0.10-1
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/2cd7e6971fc2787408ceef17906ea152791448cf (7.1-rc1)
-CVE-2026-53069 [net, bpf: fix null-ptr-deref in xdp_master_redirect() for down 
master]
+CVE-2026-53069 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/1921f91298d1388a0bb9db8f83800c998b649cb3 (7.1-rc1)
-CVE-2026-53068 [drm/komeda: fix integer overflow in AFBC framebuffer size 
check]
+CVE-2026-53068 (In the Linux kernel, the following vulnerability has been 
resolved:  d ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/779ec12c85c9e4547519e3903a371a3b26a289de (7.1-rc1)
-CVE-2026-53066 [drm/sun4i: backend: fix error pointer dereference]
+CVE-2026-53066 (In the Linux kernel, the following vulnerability has been 
resolved:  d ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/06277983eca4a31d3c2114fa33d99a6e82484b11 (7.1-rc1)
-CVE-2026-53065 [ASoC: sti: use managed regmap_field allocations]
+CVE-2026-53065 (In the Linux kernel, the following vulnerability has been 
resolved:  A ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/1696fad8b259a2d46e51cd6e17e4bcdbe02279fa (7.1-rc1)
-CVE-2026-53064 [dm cache: fix null-deref with concurrent writes in passthrough 
mode]
+CVE-2026-53064 (In the Linux kernel, the following vulnerability has been 
resolved:  d ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/7d1f98d668ee34c1d15bdc0420fdd062f24a27c0 (7.1-rc1)
-CVE-2026-53063 [dm cache: fix write hang in passthrough mode]
+CVE-2026-53063 (In the Linux kernel, the following vulnerability has been 
resolved:  d ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/4ca8b8bd952df7c3ccdc68af9bd3419d0839a04b (7.1-rc1)
-CVE-2026-53062 [dm cache policy smq: fix missing locks in invalidating cache 
blocks]
+CVE-2026-53062 (In the Linux kernel, the following vulnerability has been 
resolved:  d ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/2d1f7b65f5deedd2e6b09fdc6ea27f8375f24b45 (7.1-rc1)
-CVE-2026-53061 [dm cache: fix dirty mapping checking in passthrough mode 
switching]
+CVE-2026-53061 (In the Linux kernel, the following vulnerability has been 
resolved:  d ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/322586745bd1a0e5f3559fd1635fdeb4dbd1d6b8 (7.1-rc1)
-CVE-2026-53060 [dm cache metadata: fix memory leak on metadata abort retry]
+CVE-2026-53060 (In the Linux kernel, the following vulnerability has been 
resolved:  d ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/044ca491d4086dc5bf233e9fcb71db52df32f633 (7.1-rc1)
-CVE-2026-53059 [dm log: fix out-of-bounds write due to region_count overflow]
+CVE-2026-53059 (In the Linux kernel, the following vulnerability has been 
resolved:  d ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/c20e36b7631d83e7535877f08af8b0af72c44b1a (7.1-rc1)
-CVE-2026-53056 [drm/msm/dpu: fix mismatch between power and frequency]
+CVE-2026-53056 (In the Linux kernel, the following vulnerability has been 
resolved:  d ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/bc1dccc518cc5ab5140fba06c27e7188e0ed342b (7.1-rc1)
-CVE-2026-53053 [iommu/amd: Fix clone_alias() to use the original device's 
devid]
+CVE-2026-53053 (In the Linux kernel, the following vulnerability has been 
resolved:  i ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/faad224fe0f0857a04ff2eb3c90f0de57f47d0f3 (7.1-rc1)
-CVE-2026-53052 [ASoC: qcom: qdsp6: topology: check widget type before 
accessing data]
+CVE-2026-53052 (In the Linux kernel, the following vulnerability has been 
resolved:  A ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/d5bfdd28e0cdd45043ae6e0ac168a451d59283dc (7.1-rc1)
-CVE-2026-53050 [quota: Fix race of dquot_scan_active() with quota deactivation]
+CVE-2026-53050 (In the Linux kernel, the following vulnerability has been 
resolved:  q ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/e93ab401da4b2e2c1b8ef2424de2f238d51c8b2d (7.1-rc1)
-CVE-2026-53049 [gfs2: add some missing log locking]
+CVE-2026-53049 (In the Linux kernel, the following vulnerability has been 
resolved:  g ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/fe2c8d051150b90b3ccb85f89e3b1d636cb88ec8 (7.1-rc1)
-CVE-2026-53048 [gfs2: prevent NULL pointer dereference during unmount]
+CVE-2026-53048 (In the Linux kernel, the following vulnerability has been 
resolved:  g ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/74b4dbb946060a3233604d91859a9abd3708141d (7.1-rc1)
-CVE-2026-53047 [efi/capsule-loader: fix incorrect sizeof in phys array 
reallocation]
+CVE-2026-53047 (In the Linux kernel, the following vulnerability has been 
resolved:  e ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/48a428215782321b56956974f23593e40ce84b7a (7.1-rc1)
-CVE-2026-53046 [ksmbd: fix use-after-free from async crypto on Qualcomm crypto 
engine]
+CVE-2026-53046 (In the Linux kernel, the following vulnerability has been 
resolved:  k ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/3e298897f41c61450c2e7a4f457e8b2485eb35b3 (7.1-rc1)
-CVE-2026-53045 [memory: tegra124-emc: Fix dll_change check]
+CVE-2026-53045 (In the Linux kernel, the following vulnerability has been 
resolved:  m ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/9597ab9a8296ab337e6820f8a717ff621078b632 (7.1-rc1)
-CVE-2026-53043 [ocfs2/dlm: validate qr_numregions in dlm_match_regions()]
+CVE-2026-53043 (In the Linux kernel, the following vulnerability has been 
resolved:  o ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/7ab3fbb01bc6d79091bc375e5235d360cd9b78be (7.1-rc1)
-CVE-2026-53041 [ocfs2: fix listxattr handling when the buffer is full]
+CVE-2026-53041 (In the Linux kernel, the following vulnerability has been 
resolved:  o ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/d12f558e6200b3f47dbef9331ed6d115d2410e59 (7.1-rc1)
-CVE-2026-53040 [ocfs2: validate bg_bits during freefrag scan]
+CVE-2026-53040 (In the Linux kernel, the following vulnerability has been 
resolved:  o ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/8f687eeed3da3012152b0f9473f578869de0cd7b (7.1-rc1)
-CVE-2026-53039 [ocfs2: validate group add input before caching]
+CVE-2026-53039 (In the Linux kernel, the following vulnerability has been 
resolved:  o ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/70b672833f4025341c11b22c7f83778a5cd611bc (7.1-rc1)
-CVE-2026-53037 [HID: usbhid: fix deadlock in hid_post_reset()]
+CVE-2026-53037 (In the Linux kernel, the following vulnerability has been 
resolved:  H ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/8df2c1b47ee3cd50fd454f75c7a7e2ae8a6adf72 (7.1-rc1)
-CVE-2026-53036 [bpf, arm64: Fix off-by-one in check_imm signed range check]
+CVE-2026-53036 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/1dd8be4ec722ce54e4cace59f3a4ba658111b3ec (7.1-rc1)
-CVE-2026-53035 [bpf, sockmap: Fix af_unix iter deadlock]
+CVE-2026-53035 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/4d328dd695383224aa750ddee6b4ad40c0f8d205 (7.1-rc1)
-CVE-2026-53034 [bpf, sockmap: Fix af_unix null-ptr-deref in proto update]
+CVE-2026-53034 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/dca38b7734d2ea00af4818ff3ae836fab33d5d5a (7.1-rc1)
-CVE-2026-53033 [bpf, sockmap: Take state lock for af_unix iter]
+CVE-2026-53033 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/64c2f93fc3254d3bf5de4445fb732ee5c451edb6 (7.1-rc1)
-CVE-2026-53027 [fs/ntfs3: fix missing run load for vcn0 in 
attr_data_get_block_locked()]
+CVE-2026-53027 (In the Linux kernel, the following vulnerability has been 
resolved:  f ...)
        - linux 7.0.10-1
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/d7ea8495fd307b58f8867acd81a1b40075b1d3ba (7.1-rc1)
-CVE-2026-53025 [greybus: raw: fix use-after-free on cdev close]
+CVE-2026-53025 (In the Linux kernel, the following vulnerability has been 
resolved:  g ...)
        - linux 7.0.10-1
        NOTE: 
https://git.kernel.org/linus/983cc2c7efbce04ecbf6328448d895044dd6ab31 (7.1-rc1)
-CVE-2026-53024 [greybus: raw: fix use-after-free if write is called after 
disconnect]
+CVE-2026-53024 (In the Linux kernel, the following vulnerability has been 
resolved:  g ...)
        - linux 7.0.10-1
        NOTE: 
https://git.kernel.org/linus/84265cbd96b97058ef67e3f8be3933667a000835 (7.1-rc1)
-CVE-2026-53023 [fs/ntfs3: terminate the cached volume label after UTF-8 
conversion]
+CVE-2026-53023 (In the Linux kernel, the following vulnerability has been 
resolved:  f ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/a6cd43fe9b083fa23fe1595666d5738856cb261a (7.1-rc1)
-CVE-2026-53022 [platform/x86: dell-wmi-sysman: bound enumeration string 
aggregation]
+CVE-2026-53022 (In the Linux kernel, the following vulnerability has been 
resolved:  p ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/3c34471c26abc52a37f5ad90949e2e4b8027eb14 (7.1-rc1)
-CVE-2026-53021 [scsi: target: core: Fix integer overflow in UNMAP bounds check]
+CVE-2026-53021 (In the Linux kernel, the following vulnerability has been 
resolved:  s ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/2bf2d65f76697820dbc4227d13866293576dd90a (7.1-rc1)
-CVE-2026-53018 [f2fs: avoid reading already updated pages during GC]
+CVE-2026-53018 (In the Linux kernel, the following vulnerability has been 
resolved:  f ...)
        - linux 7.0.10-1
        NOTE: 
https://git.kernel.org/linus/570e2ccc7cb35fe720106964e65060602d3d2ac4 (7.1-rc1)
-CVE-2026-53017 [f2fs: fix data loss caused by incorrect use of nat_entry flag]
+CVE-2026-53017 (In the Linux kernel, the following vulnerability has been 
resolved:  f ...)
        - linux 7.0.10-1
        NOTE: 
https://git.kernel.org/linus/238e14eb7226f883b72caccd2d37bf5707df066b (7.1-rc1)
-CVE-2026-53016 [crypto: ccp - copy IV using skcipher ivsize]
+CVE-2026-53016 (In the Linux kernel, the following vulnerability has been 
resolved:  c ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/a7a1f3cdd64d8a165d9b8c9e9ad7fb46ac19dfc4 (7.1-rc1)
-CVE-2026-53015 [erofs: unify lcn as u64 for 32-bit platforms]
+CVE-2026-53015 (In the Linux kernel, the following vulnerability has been 
resolved:  e ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/2d8c7edcb661812249469f4a5b62e9339118846f (7.1-rc1)
-CVE-2026-53012 [nexthop: fix IPv6 route referencing IPv4 nexthop]
+CVE-2026-53012 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/29c95185ba32b621fbc3800fb86e7dc3edf5c2be (7.1-rc1)
-CVE-2026-53011 [net/sched: taprio: fix use-after-free in advance_sched() on 
schedule switch]
+CVE-2026-53011 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/105425b1969c5affe532713cfac1c0b320d7ac2b (7.1-rc1)
-CVE-2026-53010 [ksmbd: fix use-after-free in smb2_open during durable 
reconnect]
+CVE-2026-53010 (In the Linux kernel, the following vulnerability has been 
resolved:  k ...)
        - linux 7.0.10-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/1baff47b81f94f9231c91236aa511420d0e266b9 (7.1-rc1)
-CVE-2026-53009 [ice: fix double-free of tx_buf skb]
+CVE-2026-53009 (In the Linux kernel, the following vulnerability has been 
resolved:  i ...)
        - linux 7.0.10-1
        NOTE: 
https://git.kernel.org/linus/1a303baa715e6b78d6a406aaf335f87ff35acfcd (7.1-rc1)
-CVE-2026-53008 [ice: fix race condition in TX timestamp ring cleanup]
+CVE-2026-53008 (In the Linux kernel, the following vulnerability has been 
resolved:  i ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/7c72ec18c2a4111204c2e915f8e4f6d849ce9398 (7.1-rc1)
-CVE-2026-53007 [ice: fix potential NULL pointer deref in error path of 
ice_set_ringparam()]
+CVE-2026-53007 (In the Linux kernel, the following vulnerability has been 
resolved:  i ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/fa28351f970fa5138c7c5dedfe5dea480a0ee065 (7.1-rc1)
-CVE-2026-53006 [ipv6: fix possible UAF in icmpv6_rcv()]
+CVE-2026-53006 (In the Linux kernel, the following vulnerability has been 
resolved:  i ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/f996edd7615e686ada141b7f3395025729ff8ccb (7.1-rc1)
-CVE-2026-53005 [af_unix: Drop all SCM attributes for SOCKMAP.]
+CVE-2026-53005 (In the Linux kernel, the following vulnerability has been 
resolved:  a ...)
        - linux 7.0.10-1
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/965dc93481d1b80d341bdd16c27b16fe197175ee (7.1-rc1)
-CVE-2026-53004 [sctp: fix OOB write to userspace in 
sctp_getsockopt_peer_auth_chunks]
+CVE-2026-53004 (In the Linux kernel, the following vulnerability has been 
resolved:  s ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/0cf004ffb61cd32d140531c3a84afe975f9fc7ea (7.1-rc1)
-CVE-2026-53003 [pppoe: drop PFC frames]
+CVE-2026-53003 (In the Linux kernel, the following vulnerability has been 
resolved:  p ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/cc1ff87bce1ccd38410ab10960f576dcd17db679 (7.1-rc1)
-CVE-2026-53002 [netfilter: conntrack: remove sprintf usage]
+CVE-2026-53002 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/6e7066bdb481a87fe88c4fa563e348c03b2d373d (7.1-rc1)
-CVE-2026-53001 [netfilter: xtables: restrict several matches to inet family]
+CVE-2026-53001 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/b6fe26f86a1649f84e057f3f15605b08eda15497 (7.1-rc1)
-CVE-2026-53000 [netfilter: nat: use kfree_rcu to release ops]
+CVE-2026-53000 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/6eda0d771f94267f73f57c94630aa47e90957915 (7.1-rc1)
-CVE-2026-52999 [netfilter: nfnetlink_osf: fix out-of-bounds read on option 
matching]
+CVE-2026-52999 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/f5ca450087c3baf3651055e7a6de92600f827af3 (7.1-rc1)
-CVE-2026-52998 [netfilter: nfnetlink_osf: fix potential NULL dereference in 
ttl check]
+CVE-2026-52998 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/711987ba281fd806322a7cd244e98e2a81903114 (7.1-rc1)
-CVE-2026-52995 [net/rds: zero per-item info buffer before handing it to 
visitors]
+CVE-2026-52995 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/c88eb7e8d8397a8c1db59c425332c5a30b2a1682 (7.1-rc1)
-CVE-2026-52994 [vsock/virtio: fix MSG_ZEROCOPY pinned-pages accounting]
+CVE-2026-52994 (In the Linux kernel, the following vulnerability has been 
resolved:  v ...)
        - linux 7.0.10-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/1cb36e252211506f51095fe7ced8286cc77b4c80 (7.1-rc1)
-CVE-2026-52993 [tipc: fix double-free in tipc_buf_append()]
+CVE-2026-52993 (In the Linux kernel, the following vulnerability has been 
resolved:  t ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/d293ca716e7d5dffdaecaf6b9b2f857a33dc3d3a (7.1-rc1)
-CVE-2026-52992 [fs/adfs: validate nzones in adfs_validate_bblk()]
+CVE-2026-52992 (In the Linux kernel, the following vulnerability has been 
resolved:  f ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/dd9d3e16c2d5fa166e13dce07413be51f42c8f5d (7.1-rc1)
-CVE-2026-52991 [sched/psi: fix race between file release and pressure write]
+CVE-2026-52991 (In the Linux kernel, the following vulnerability has been 
resolved:  s ...)
        - linux 7.0.10-1
        NOTE: 
https://git.kernel.org/linus/a5b98009f16d8a5fb4a8ff9a193f5735515c38fa (7.1-rc2)
-CVE-2026-52990 [fsnotify: fix inode reference leak in fsnotify_recalc_mask()]
+CVE-2026-52990 (In the Linux kernel, the following vulnerability has been 
resolved:  f ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/4aca914ac152f5d055ddcb36704d1e539ac08977 (7.1-rc2)
-CVE-2026-52989 [nvmet-tcp: propagate nvmet_tcp_build_pdu_iovec() errors to its 
callers]
+CVE-2026-52989 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/ea8e356acb165cb1fd75537a52e1f66e5e76c538 (7.1-rc2)
-CVE-2026-52988 [netfilter: nf_tables: join hook list via splice_list_rcu() in 
commit phase]
+CVE-2026-52988 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        NOTE: 
https://git.kernel.org/linus/a6134e62dba2ea4f760b29d5226907f447c92400 (7.1-rc2)
-CVE-2026-52986 [netfilter: nf_conntrack_sip: don't use simple_strtoul]
+CVE-2026-52986 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/8cf6809cddcbe301aedfc6b51bcd4944d45795f6 (7.1-rc2)
-CVE-2026-52985 [netdevsim: zero initialize struct iphdr in dummy sk_buff]
+CVE-2026-52985 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/35eaa6d8d6c2ee65e96f507add856e0eacf24591 (7.1-rc2)
-CVE-2026-52984 [net/sched: netem: fix queue limit check to include reordered 
packets]
+CVE-2026-52984 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/4185701fcce6b426b6c3630b25330dddd9c47b0d (7.1-rc2)
-CVE-2026-52983 [net: airoha: fix BQL imbalance in TX path]
+CVE-2026-52983 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/2d9f5a118205da2683ffcec78b9347f1f01a820e (7.1-rc2)
-CVE-2026-52982 [net: usb: rtl8150: fix use-after-free in rtl8150_start_xmit()]
+CVE-2026-52982 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/23f0e34c64acba15cad4d23e50f41f533da195fa (7.1-rc2)
-CVE-2026-52981 [neigh: let neigh_xmit take skb ownership]
+CVE-2026-52981 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/4438113be604ee67a7bf4f81da6e1cca41332ce4 (7.1-rc2)
-CVE-2026-52977 [futex: Prevent lockup in requeue-PI during signal/ timeout 
wakeup]
+CVE-2026-52977 (In the Linux kernel, the following vulnerability has been 
resolved:  f ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/bc7304f3ae20972d11db6e0b1b541c63feda5f05 (7.1-rc2)
-CVE-2026-52975 [bonding: 3ad: implement proper RCU rules for port->aggregator]
+CVE-2026-52975 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.10-1
        NOTE: 
https://git.kernel.org/linus/c4f050ce06c56cfb5993268af4a5cb66ed1cd04e (7.1-rc2)
-CVE-2026-52974 [net: tls: fix strparser anchor skb leak on offload RX setup 
failure]
+CVE-2026-52974 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/58689498ca3384851145a754dbb1d8ed1cf9fb54 (7.1-rc2)
-CVE-2026-52972 [crypto: af_alg - Cap AEAD AD length to 0x80000000]
+CVE-2026-52972 (In the Linux kernel, the following vulnerability has been 
resolved:  c ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: https://git.kernel.org/linus/
-CVE-2026-52970 [netfilter: nft_ct: fix missing expect put in obj eval]
+CVE-2026-52970 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/19f94b6fee75b3ef7fbc06f3745b9a771a8a19a4 (7.1-rc4)
-CVE-2026-52969 [KVM: Reject wrapped offset in kvm_reset_dirty_gfn()]
+CVE-2026-52969 (In the Linux kernel, the following vulnerability has been 
resolved:  K ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/577a8d3bae0531f0e5ccfac919cd8192f920a804 (7.1-rc4)
-CVE-2026-52968 [KVM: s390: pci: fix GAIT table indexing due to double-scaling 
pointer arithmetic]
+CVE-2026-52968 (In the Linux kernel, the following vulnerability has been 
resolved:  K ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/16d990a15491cf76cd6eef0846e1b4100e63261a (7.1-rc4)
-CVE-2026-52967 [smb/client: fix possible infinite loop and oob read in 
symlink_data()]
+CVE-2026-52967 (In the Linux kernel, the following vulnerability has been 
resolved:  s ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/7d9a7f1f96cd617ee9e75bb22217c709038e26b8 (7.1-rc4)
-CVE-2026-52965 [drm/ttm: Fix ttm_bo_swapout() infinite LRU walk on swapout 
failure]
+CVE-2026-52965 (In the Linux kernel, the following vulnerability has been 
resolved:  d ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/b2ed01e7ad3de80333e9b962a44024b094bc0b2b (7.1-rc4)
-CVE-2026-52963 [ALSA: usb-audio: Bound MIDI endpoint descriptor scans]
+CVE-2026-52963 (In the Linux kernel, the following vulnerability has been 
resolved:  A ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/d6854daa67be623860f4e1873fd3d3c275aba4ed (7.1-rc4)
-CVE-2026-52962 [ceph: fix a buffer leak in __ceph_setxattr()]
+CVE-2026-52962 (In the Linux kernel, the following vulnerability has been 
resolved:  c ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/5d3cc36b4e77a27ce7b686b7c59c7072bcb3fa8e (7.1-rc4)
-CVE-2026-52961 [ceph: fix BUG_ON in __ceph_build_xattrs_blob() due to stale 
blob size]
+CVE-2026-52961 (In the Linux kernel, the following vulnerability has been 
resolved:  c ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/0c22d9511cbde746622f8e4c11aaa63fe76d45f9 (7.1-rc4)
-CVE-2026-52960 [ceph: put folios not suitable for writeback]
+CVE-2026-52960 (In the Linux kernel, the following vulnerability has been 
resolved:  c ...)
        - linux 7.0.10-1
        NOTE: 
https://git.kernel.org/linus/544576f0f05c4a759806acddfaaeb686f14fb4b0 (7.1-rc4)
-CVE-2026-52958 [libceph: Fix potential out-of-bounds access in osdmap_decode()]
+CVE-2026-52958 (In the Linux kernel, the following vulnerability has been 
resolved:  l ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/35d0ed82d03e5ee77ea4f31f20e29562a7721649 (7.1-rc4)
-CVE-2026-52957 [libceph: Fix potential null-ptr-deref in decode_choose_args()]
+CVE-2026-52957 (In the Linux kernel, the following vulnerability has been 
resolved:  l ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/28b0a2ab8c82d0bbdeb8013029c67c978ce6e4bf (7.1-rc4)
-CVE-2026-52956 [libceph: Fix potential out-of-bounds access in 
__ceph_x_decrypt()]
+CVE-2026-52956 (In the Linux kernel, the following vulnerability has been 
resolved:  l ...)
        - linux 7.0.10-1
        NOTE: 
https://git.kernel.org/linus/821365487aa58d06bda65c676ba215d506ba9768 (7.1-rc4)
-CVE-2026-52955 [libceph: Fix potential out-of-bounds access in crush_decode()]
+CVE-2026-52955 (In the Linux kernel, the following vulnerability has been 
resolved:  l ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/4c79fc2d598694bda845b46229c9d48b65042970 (7.1-rc4)
-CVE-2026-52954 [libceph: handle rbtree insertion error in decode_choose_args()]
+CVE-2026-52954 (In the Linux kernel, the following vulnerability has been 
resolved:  l ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/d289478cfc0bcf81c7914200d6abdcb78bd04ded (7.1-rc4)
-CVE-2026-52953 [iommu/vt-d: Fix oops due to out of scope access]
+CVE-2026-52953 (In the Linux kernel, the following vulnerability has been 
resolved:  i ...)
        - linux 7.0.10-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/a6dea58d8625c06b9654c0555f101742481335c3 (7.1-rc4)
-CVE-2026-52949 [drm/ttm: Fix ttm_bo_shrink() infinite LRU walk on backup 
failure]
+CVE-2026-52949 (In the Linux kernel, the following vulnerability has been 
resolved:  d ...)
        - linux 7.0.10-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/1d59f36e95f7f7134db0e313c9d787cb0adb2153 (7.1-rc4)
-CVE-2026-52948 [i2c: dev: prevent integer overflow in I2C_TIMEOUT ioctl]
+CVE-2026-52948 (In the Linux kernel, the following vulnerability has been 
resolved:  i ...)
        - linux 7.0.13-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/617eb7c0961a8dfcfc811844a6396e406b2923ea (7.1-rc3)
-CVE-2026-52947 [net: qrtr: fix refcount saturation and potential UAF in 
qrtr_port_remove]
+CVE-2026-52947 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.13-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/a2171131ecda1ed61a594a1eb715e75fdad0fef5 (7.1)
-CVE-2026-52946 [fs/fcntl: fix SOFTIRQ-unsafe lock order in fasync signaling]
+CVE-2026-52946 (In the Linux kernel, the following vulnerability has been 
resolved:  f ...)
        - linux 7.0.13-1
        [trixie] - linux 6.12.94-1
        NOTE: https://git.kernel.org/linus/
-CVE-2026-52945 [Revert "wireguard: device: enable threaded NAPI"]
+CVE-2026-52945 (In the Linux kernel, the following vulnerability has been 
resolved:  R ...)
        - linux <not-affected> (Vulnerable code not present)
        [trixie] - linux 6.12.74-1
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: https://git.kernel.org/linus/
-CVE-2026-52940 [tun: zero the whole vnet header in tun_put_user()]
+CVE-2026-52940 (In the Linux kernel, the following vulnerability has been 
resolved:  t ...)
        - linux 7.0.13-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/7f2fcff15e99bb852f6967396ed12b38376e2c8d (7.1)
-CVE-2026-52932 [xfrm: ipcomp: Free destination pages on acomp errors]
+CVE-2026-52932 (In the Linux kernel, the following vulnerability has been 
resolved:  x ...)
        - linux 7.0.12-1
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/7dbac7680eb629b3b4dc7e98c34f943b8814c0c8 (7.1-rc6)
-CVE-2026-52944 [ksmbd: fix FSCTL permission bypass by adding a permission 
check for FSCTL_SET_SPARSE]
+CVE-2026-52944 (In the Linux kernel, the following vulnerability has been 
resolved:  k ...)
        - linux 7.0.12-1
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/cc57232cae23c0df91b4a59d0f519141ce9b5b02 (7.1-rc6)
-CVE-2026-52943 [net: skbuff: fix missing zerocopy reference in pskb_carve 
helpers]
+CVE-2026-52943 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.12-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/98d0912e9f841e5529a5b89a972805f34cb1c69d (7.1-rc6)
-CVE-2026-52942 [netfilter: nf_log: validate MAC header was set before dumping 
it]
+CVE-2026-52942 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.13-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/a84b6fedbc97078788be78dbdd7517d143ad1a77 (7.1)
-CVE-2026-52941 [net/smc: avoid NULL deref of conn->lnk in smc_msg_event 
tracepoint]
+CVE-2026-52941 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.12-1
        [trixie] - linux 6.12.94-1
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/7bf563badd37cb796df5477d2b78bb64148a1268 (7.1-rc4)
-CVE-2026-52939 [net/rds: fix NULL deref in rds_ib_send_cqe_handler() on masked 
atomic completion]
+CVE-2026-52939 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.13-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/34080db3e70ddf94c38512ad2331e3c3afca6cc1 (7.1)
-CVE-2026-52938 [bpf: Fix NULL pointer dereference in bpf_sk_storage_clone and 
diag paths]
+CVE-2026-52938 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux <unfixed>
        [trixie] - linux <not-affected> (Vulnerable code not present)
        [bookworm] - linux <not-affected> (Vulnerable code not present)
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/375e4e33c18dfa05c5dfd5f3dfffeb29343dd4c7 (7.1-rc3)
-CVE-2026-52937 [tap: fix stack info leak in tap_ioctl() SIOCGIFHWADDR]
+CVE-2026-52937 (In the Linux kernel, the following vulnerability has been 
resolved:  t ...)
        - linux 7.0.12-1
        NOTE: 
https://git.kernel.org/linus/bddc09212c24934643bd44fc794748d2bbb3b6cd (7.1-rc5)
-CVE-2026-52936 [crypto: jitterentropy - replace long-held spinlock with mutex]
+CVE-2026-52936 (In the Linux kernel, the following vulnerability has been 
resolved:  c ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/01d798e9feb30212952d4e992801ba6bd6a82351 (7.1-rc1)
-CVE-2026-52935 [xfrm: espintcp: do not reuse an in-progress partial send]
+CVE-2026-52935 (In the Linux kernel, the following vulnerability has been 
resolved:  x ...)
        - linux 7.0.13-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/c381039ade2e161ab08c0eda73c4f8b9a7115928 (7.1)
-CVE-2026-52934 [batman-adv: tvlv: reject oversized TVLV packets]
+CVE-2026-52934 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.12-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/f50487e3566358b2b982b7801945e858c78ad9ab (7.1-rc5)
-CVE-2026-52933 [io_uring/poll: fix signed comparison in 
io_poll_get_ownership()]
+CVE-2026-52933 (In the Linux kernel, the following vulnerability has been 
resolved:  i ...)
        - linux 7.0.4-1
        [trixie] - linux 6.12.86-1
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/326941b22806cbf2df1fbfe902b7908b368cce42 (7.1-rc1)
-CVE-2026-52931 [batman-adv: tp_meter: avoid use of uninit sender vars]
+CVE-2026-52931 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.12-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/6c65cf23d4c6170fcf5714c32aa64689718cb142 (7.1-rc5)
-CVE-2026-52930 [ipc/shm: serialize orphan cleanup with shm_nattch updates]
+CVE-2026-52930 (In the Linux kernel, the following vulnerability has been 
resolved:  i ...)
        - linux 7.0.13-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/2e5c6f4fd4001562781e99bbfc7f1f0127187542 (7.1)
-CVE-2026-52929 [sctp: stream: fully roll back denied add-stream state]
+CVE-2026-52929 (In the Linux kernel, the following vulnerability has been 
resolved:  s ...)
        - linux 7.0.13-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/a5f8a90ac9f77c678a9781c0a464b635e0d63e49 (7.1)
-CVE-2026-52928 [af_unix: Reject SIOCATMARK on non-stream sockets]
+CVE-2026-52928 (In the Linux kernel, the following vulnerability has been 
resolved:  a ...)
        - linux 7.0.7-1
        [trixie] - linux 6.12.88-1
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://git.kernel.org/linus/d119775f2bad827edc28071c061fdd4a91f889a5 (7.1-rc3)
-CVE-2026-52927 [netfilter: ebtables: fix OOB read in compat_mtw_from_user]
+CVE-2026-52927 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.12-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/f438d1786d657d57790c5d138d6db3fc9fdac392 (7.1-rc6)
-CVE-2026-52926 [batman-adv: clear current gateway during teardown]
+CVE-2026-52926 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.12-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/a340a51ed801eab7bb454150c226323b865263cc (7.1-rc5)
-CVE-2026-52925 [vrf: Fix a potential NPD when removing a port from a VRF]
+CVE-2026-52925 (In the Linux kernel, the following vulnerability has been 
resolved:  v ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/2674d603a9e6970463b2b9ebcf8e31e90beae169 (7.1-rc2)
-CVE-2026-52924 [sctp: purge outqueue on stale COOKIE-ECHO handling]
+CVE-2026-52924 (In the Linux kernel, the following vulnerability has been 
resolved:  s ...)
        - linux 7.0.13-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/e374b22e9b07b72a25909621464ff74096151bfb (7.1-rc7)
-CVE-2026-52923 [ipc: limit next_id allocation to the valid ID range]
+CVE-2026-52923 (In the Linux kernel, the following vulnerability has been 
resolved:  i ...)
        - linux 7.0.12-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/fa0b9b2b7ae3539908d69c2b9ac0d144d9bc5139 (7.1-rc6)
-CVE-2026-52922 [batman-adv: dat: handle forward allocation error]
+CVE-2026-52922 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.12-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/2d8826a2d3657cea66fb0370f9e521575a673871 (7.1-rc5)
-CVE-2026-52921 [netfilter: ipset: stop hash:* range iteration at end]
+CVE-2026-52921 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.12-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/0d3a282ab5f165fc207ff49ea5b6ad8f54616bd6 (7.1-rc5)
-CVE-2026-52920 [netfilter: xt_policy: fix strict mode inbound policy matching]
+CVE-2026-52920 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.10-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/4b2b4d7d4e203c92db8966b163edfacb1f0e1e29 (7.1-rc2)
-CVE-2026-52919 [batman-adv: fix tp_meter counter underflow during shutdown]
+CVE-2026-52919 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.12-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/94f3b133168d1c49895e7cc6afbcf1cc0b354602 (7.1-rc5)
-CVE-2026-52918 [Bluetooth: serialize accept_q access]
+CVE-2026-52918 (In the Linux kernel, the following vulnerability has been 
resolved:  B ...)
        - linux 7.0.12-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/e83f5e24da741fa9405aeeff00b08c5ee7c37b88 (7.1-rc5)
-CVE-2026-52917 [sctp: diag: reject stale associations in dump_one path]
+CVE-2026-52917 (In the Linux kernel, the following vulnerability has been 
resolved:  s ...)
        - linux 7.0.13-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/5eba3e48d78edd7551b992cb7ba687019b3a78da (7.1-rc7)
-CVE-2026-52916 [batman-adv: frag: disallow unicast fragment in fragment]
+CVE-2026-52916 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.12-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/bc62216dc8e221e3781afa14430f45208bfa9af9 (7.1-rc5)
-CVE-2026-52915 [netfilter: ip6t_hbh: reject oversized option lists]
+CVE-2026-52915 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.12-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/4322dcde6b4173c2d8e8e6118ed290794263bcc8 (7.1-rc5)
-CVE-2026-52914 [batman-adv: fix fragment reassembly length accounting]
+CVE-2026-52914 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.12-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/9cd3f16c320bfdadd4509358122368deb56a5741 (7.1-rc5)
-CVE-2026-52913 [batman-adv: v: stop OGMv2 on disabled interface]
+CVE-2026-52913 (In the Linux kernel, the following vulnerability has been 
resolved:  b ...)
        - linux 7.0.12-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/f8ce8b8331a1bc44ad4905886a482214d428b253 (7.1-rc5)
-CVE-2026-52912 [netfilter: nf_queue: hold bridge skb->dev while queued]
+CVE-2026-52912 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux 7.0.12-1
        [trixie] - linux 6.12.94-1
        NOTE: 
https://git.kernel.org/linus/e196115ec330a18de415bdb9f5071aa9f08e53ce (7.1-rc5)
@@ -1080,7 +1322,7 @@ CVE-2026-6292 (The MP Customize Login Page plugin for 
WordPress is vulnerable to
        NOT-FOR-US: WordPress plugin
 CVE-2026-5818 (Incorrect check of function return value in Caliptra Core 
Runtime Firm ...)
        NOT-FOR-US: Caliptra Core Firmware
-CVE-2026-56785 (FlatPress versions prior to commit 10be83c, contains a stored 
cross-si ...)
+CVE-2026-56785 (FlatPress contains a stored cross-site scripting vulnerability 
in comm ...)
        - flatpress <itp> (bug #466297)
 CVE-2026-56120
        REJECTED
@@ -1988,7 +2230,7 @@ CVE-2026-12866 (All versions of the package expr-eval are 
vulnerable to Code Exe
        TODO: check
 CVE-2026-11833 (Overview:  A vulnerability has been found in FAST/TOOLS and CI 
Server. ...)
        NOT-FOR-US: Yokogawa
-CVE-2026-10852 (IBM i 7.6, 7.5, 7.4, and 7.3, IBM WebSphere Application 
Server, and IB ...)
+CVE-2026-10852 (IBM WebSphere Application Server and IBM WebSphere Application 
Server  ...)
        NOT-FOR-US: IBM
 CVE-2026-10658 (A missing length validation in the Zephyr Bluetooth Host ISO 
receive p ...)
        NOT-FOR-US: Zephyr, different from src:zephyr
@@ -2010,7 +2252,7 @@ CVE-2026-9320 (IBM WebSphere Application Server 9.0, and 
8.5 and IBM WebSphere A
        NOT-FOR-US: IBM
 CVE-2026-9162 (Mattermost versions 11.7.x <= 11.7.0, 11.6.x <= 11.6.2, 11.5.x 
<= 11.5 ...)
        - mattermost-server <itp> (bug #823556)
-CVE-2026-9072 (IBM i 7.6, 7.5, 7.4, and 7.3, IBM WebSphere Application Server, 
and IB ...)
+CVE-2026-9072 (IBM WebSphere Application Server and IBM WebSphere Application 
Server  ...)
        NOT-FOR-US: IBM
 CVE-2026-9071 (IBM WebSphere Application Server 9.0, and 8.5 and IBM WebSphere 
Applic ...)
        NOT-FOR-US: IBM
@@ -2020,7 +2262,7 @@ CVE-2026-9006 (IBM WebSphere Application Server 9.0, and 
8.5 is vulnerable to se
        NOT-FOR-US: IBM
 CVE-2026-8934 (A Missing Authorization vulnerability in a GraphQL private API 
operati ...)
        NOT-FOR-US: Google App Engine
-CVE-2026-8858 (IBM i 7.6, 7.5, 7.4, and 7.3, IBM WebSphere Application Server 
and IBM ...)
+CVE-2026-8858 (IBM WebSphere Application Server and IBM WebSphere Application 
Server  ...)
        NOT-FOR-US: IBM
 CVE-2026-8823 (Mattermost versions 11.7.x <= 11.7.0, 10.11.x <= 10.11.17 fail 
to vali ...)
        - mattermost-server <itp> (bug #823556)
@@ -26905,14 +27147,14 @@ CVE-2025-12008 (Authorization bypass through 
User-Controlled key vulnerability i
 CVE-2025-11024 (Improper neutralization of special elements used in an SQL 
command ('S ...)
        NOT-FOR-US: Akili
 CVE-2026-6479 (Uncontrolled recursion in PostgreSQL SSL and GSS negotiation 
allows an ...)
-       {DSA-6270-1 DSA-6269-1}
+       {DSA-6270-1 DSA-6269-1 DLA-4646-1}
        - postgresql-18 18.4-1
        - postgresql-17 <removed>
        - postgresql-15 <removed>
        - postgresql-13 <removed>
        NOTE: 
https://www.postgresql.org/about/news/postgresql-184-1710-1614-1518-and-1423-released-3297/
 CVE-2026-6473 (Integer wraparound in multiple PostgreSQL server features 
allows an un ...)
-       {DSA-6270-1 DSA-6269-1}
+       {DSA-6270-1 DSA-6269-1 DLA-4646-1}
        - postgresql-18 18.4-1
        - postgresql-17 <removed>
        - postgresql-15 <removed>
@@ -26932,7 +27174,7 @@ CVE-2026-6575 (Buffer over-read in PostgreSQL function 
pg_restore_attribute_stat
        - postgresql-18 18.4-1
        NOTE: 
https://www.postgresql.org/about/news/postgresql-184-1710-1614-1518-and-1423-released-3297/
 CVE-2026-6474 (Externally-controlled format string in PostgreSQL timeofday() 
function ...)
-       {DSA-6270-1 DSA-6269-1}
+       {DSA-6270-1 DSA-6269-1 DLA-4646-1}
        - postgresql-18 18.4-1
        - postgresql-17 <removed>
        - postgresql-15 <removed>
@@ -26946,28 +27188,28 @@ CVE-2026-6472 (Missing authorization in PostgreSQL 
CREATE TYPE allows an object
        - postgresql-13 <removed>
        NOTE: 
https://www.postgresql.org/about/news/postgresql-184-1710-1614-1518-and-1423-released-3297/
 CVE-2026-6478 (Covert timing channel in comparison of MD5-hashed password in 
PostgreS ...)
-       {DSA-6270-1 DSA-6269-1}
+       {DSA-6270-1 DSA-6269-1 DLA-4646-1}
        - postgresql-18 18.4-1
        - postgresql-17 <removed>
        - postgresql-15 <removed>
        - postgresql-13 <removed>
        NOTE: 
https://www.postgresql.org/about/news/postgresql-184-1710-1614-1518-and-1423-released-3297/
 CVE-2026-6477 (Use of inherently dangerous function PQfn(..., result_is_int=0, 
...) i ...)
-       {DSA-6270-1 DSA-6269-1}
+       {DSA-6270-1 DSA-6269-1 DLA-4646-1}
        - postgresql-18 18.4-1
        - postgresql-17 <removed>
        - postgresql-15 <removed>
        - postgresql-13 <removed>
        NOTE: 
https://www.postgresql.org/about/news/postgresql-184-1710-1614-1518-and-1423-released-3297/
 CVE-2026-6475 (Symlink following in PostgreSQL pg_basebackup plain format and 
in pg_r ...)
-       {DSA-6270-1 DSA-6269-1}
+       {DSA-6270-1 DSA-6269-1 DLA-4646-1}
        - postgresql-18 18.4-1
        - postgresql-17 <removed>
        - postgresql-15 <removed>
        - postgresql-13 <removed>
        NOTE: 
https://www.postgresql.org/about/news/postgresql-184-1710-1614-1518-and-1423-released-3297/
 CVE-2026-6637 (Stack buffer overflow in PostgreSQL module "refint" allows an 
unprivil ...)
-       {DSA-6270-1 DSA-6269-1}
+       {DSA-6270-1 DSA-6269-1 DLA-4646-1}
        - postgresql-18 18.4-1
        - postgresql-17 <removed>
        - postgresql-15 <removed>
@@ -95246,7 +95488,7 @@ CVE-2025-56332 (Authentication Bypass in fosrl/pangolin 
v1.6.2 and before allows
 CVE-2025-52835 (Cross-Site Request Forgery (CSRF) vulnerability in ConoHa by 
GMO WING  ...)
        NOT-FOR-US: WordPress plugin or theme
 CVE-2025-50343 (An issue was discovered in matio 1.5.28. A heap-based memory 
corruptio ...)
-       {DLA-4459-1}
+       {DLA-4644-1 DLA-4459-1}
        [experimental] - libmatio 1.5.30-1
        - libmatio 1.5.30-2 (bug #1124797)
        [trixie] - libmatio <no-dsa> (Minor issue, revisit when fixed upstream)
@@ -194765,12 +195007,13 @@ CVE-2025-2340 (A vulnerability was found in otale 
Tale Blog 2.0.5. It has been d
 CVE-2025-2339 (A vulnerability was found in otale Tale Blog 2.0.5. It has been 
classi ...)
        NOT-FOR-US: Tale Blog
 CVE-2025-2338 (A vulnerability, which was classified as critical, was found in 
tbeu m ...)
-       {DLA-4459-1}
+       {DLA-4644-1 DLA-4459-1}
        - libmatio 1.5.29-1 (bug #1104247)
        [trixie] - libmatio <no-dsa> (Minor issue)
        NOTE: https://github.com/tbeu/matio/issues/269
        NOTE: Fixed by: 
https://github.com/tbeu/matio/commit/7b31881ea1da30b075658502961dfcc95353d9ae 
(v1.5.29)
 CVE-2025-2337 (A vulnerability, which was classified as critical, has been 
found in t ...)
+       {DLA-4644-1}
        - libmatio 1.5.28-2 (bug #1100992)
        [bullseye] - libmatio <not-affected> (Vulnerable code introduced in 
v1.5.20, commit 67a922f83467d694fa6e)
        NOTE: https://github.com/tbeu/matio/issues/267



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ea718452f88b76e9a5585a55a587d7b64d8347eb

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ea718452f88b76e9a5585a55a587d7b64d8347eb
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help


_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to