Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
945a7319 by Salvatore Bonaccorso at 2026-07-02T05:43:33+02:00
Track fixed version for CVE-2026-3888 via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -69409,10 +69409,10 @@ CVE-2026-4064 (Missing authorization checks on
multiple gRPC service endpoints i
NOT-FOR-US: Devolutions
CVE-2026-3888 (Local privilege escalation in snapd on Linux allows local
attackers to ...)
{DSA-6170-1}
- - snapd <unfixed> (bug #1131120)
+ - snapd 2.76-1 (bug #1131120)
NOTE: https://www.openwall.com/lists/oss-security/2026/03/17/8
NOTE:
https://cdn2.qualys.com/advisory/2026/03/17/snap-confine-systemd-tmpfiles.txt
- NOTE: Fixed by:
https://github.com/canonical/snapd/commit/5400bfdf1e4c3f861826a215417234420470cb25
+ NOTE: Fixed by:
https://github.com/canonical/snapd/commit/5400bfdf1e4c3f861826a215417234420470cb25
(2.76)
CVE-2026-3564 (A condition in ScreenConnect may allow an actor with access to
server- ...)
NOT-FOR-US: ScreenConnect
CVE-2026-3563 (Improper input validation in the apps and endpoints
configuration in P ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/945a73199cc0fb03ee4d73a95419f53d86b8c5b9
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/945a73199cc0fb03ee4d73a95419f53d86b8c5b9
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits