Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
1acdb8b1 by Salvatore Bonaccorso at 2026-07-02T22:34:01+02:00
Add CVE-2026-55952/erlang
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -200,7 +200,12 @@ CVE-2026-56037 (Deserialization of Untrusted Data
vulnerability in Themify Themi
CVE-2026-56004 (A shellcode injection in the mercurial handler of the obs
tar_scm sour ...)
TODO: check
CVE-2026-55952 (The Erlang/OTP ssl application does not validate that the PSK
identity ...)
- TODO: check
+ - erlang <unfixed>
+ NOTE: https://osv.dev/vulnerability/EEF-CVE-2026-55952
+ NOTE: https://cna.erlef.org/cves/CVE-2026-55952.html
+ NOTE:
https://github.com/erlang/otp/commit/095f744713c325acdbd18c23e397f04593c06275
(OTP-29.0.3)
+ NOTE:
https://github.com/erlang/otp/commit/2c3e599797644310e5d4aa39c7193420e59dadff
(OTP-28.5.0.3)
+ NOTE:
https://github.com/erlang/otp/commit/9b5437c72fa3403a75c1aba28e5c532bc191c662
(OTP-27.3.4.14)
CVE-2026-55950 (Time-of-check Time-of-use (TOCTOU) race condition
vulnerability in Erl ...)
TODO: check
CVE-2026-55119 (A malicious actor with access to the network and low
privileges could ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1acdb8b156894d113a0b34fd859f30b3cb86862e
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1acdb8b156894d113a0b34fd859f30b3cb86862e
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits