Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a51f5e31 by Salvatore Bonaccorso at 2026-07-02T08:23:47+02:00
Add references for icinga2 issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,12 +1,25 @@
CVE-2026-XXXX [GHSA-jgqj-x5j9-vgcm: Icinga 2 DSL Injection via Unescaped
Import Template Name]
- icinga2 2.16.2-1
NOTE:
https://github.com/Icinga/icinga2/security/advisories/GHSA-jgqj-x5j9-vgcm
+ NOTE: https://icinga.com/blog/icinga2-security-release-v2-16-2/
+ NOTE: Fixed by:
https://github.com/Icinga/icinga2/commit/af4b36e6464b9b214bed270a53d6474cf91eb441
(v2.16.2)
CVE-2026-XXXX [GHSA-wh38-wg57-5w7g: Stack overflow via deeply nested JSON
objects]
- icinga2 2.16.2-1
NOTE:
https://github.com/Icinga/icinga2/security/advisories/GHSA-wh38-wg57-5w7g
+ NOTE: https://icinga.com/blog/icinga2-security-release-v2-16-2/
+ NOTE: Fixed by:
https://github.com/Icinga/icinga2/commit/ed163a8aa9d296820dd2ad14c47bf3f6a3fcce7d
(v2.16.2)
+ NOTE: Fixed by:
https://github.com/Icinga/icinga2/commit/b80132db87f0ead29d9061cf63d38ff69d92a616
(v2.16.2)
+ NOTE: Fixed by:
https://github.com/Icinga/icinga2/commit/5ff0e61ad85cac5554b9560a4cee328512890e07
(v2.16.2)
+ NOTE: Fixed by:
https://github.com/Icinga/icinga2/commit/547b55031a531c5579a966af8d7bc3675a7b1633
(v2.16.2)
+ NOTE: Fixed by:
https://github.com/Icinga/icinga2/commit/dfda80415d41dabd0b04a350f1e7d2424b63fabd
(v2.16.2)
+ NOTE: Fixed by:
https://github.com/Icinga/icinga2/commit/77effd5bbbbf4e4b376b8a642ba5869ddd0bd416
(v2.16.2)
+ NOTE: Fixed by:
https://github.com/Icinga/icinga2/commit/5288e833419d339c49c9f4f53ea41a008ae6c771
(v2.16.2)
+ NOTE: Fixed by:
https://github.com/Icinga/icinga2/commit/f5b02b4885ff075b1ae5f8c0896878491fce1e10
(v2.16.2)
CVE-2026-XXXX [GHSA-vj39-ww8j-vvx5: Improper access control for JSON-RPC
update certificate messages]
- icinga2 2.16.2-1
NOTE:
https://github.com/Icinga/icinga2/security/advisories/GHSA-vj39-ww8j-vvx5
+ NOTE: https://icinga.com/blog/icinga2-security-release-v2-16-2/
+ NOTE: Fixed by:
https://github.com/Icinga/icinga2/commit/a6f7cc7a4ef8beed023b24416106822d6940c4c0
(v2.16.2)
CVE-2026-8857 (A vulnerability in Wikimedia Foundation timeline. This
vulnerability ...)
NOT-FOR-US: MediaWiki extensions/skins not packaged in Debian
CVE-2026-8480 (A vulnerability was discovered on Stormshield Network Security
4.3.0 t ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a51f5e315207c72ae2a4af786628deaf175d21c6
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a51f5e315207c72ae2a4af786628deaf175d21c6
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
