Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5a3f0214 by Moritz Muehlenhoff at 2026-07-03T23:47:42+02:00
new ruby-puppet-resource-api issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5,7 +5,9 @@ CVE-2026-9230 (The Quiz and Survey Master (QSM) \u2013 Easy
Quiz and Survey Make
CVE-2026-9148 (The Comments \u2013 wpDiscuz plugin for WordPress is vulnerable
to Sto ...)
NOT-FOR-US: WordPress plugin
CVE-2026-8804 (Puppet resource_api (shipped in Puppet Core 8.x and Puppet
Enterprise ...)
- TODO: check
+ - ruby-puppet-resource-api <unfixed>
+ NOTE:
https://github.com/puppetlabs/puppet-resource_api/commit/74fc83412407888efb88f28f21c78ff7e6b11888
(v1.9.2)
+ NOTE: https://github.com/puppetlabs/puppet-resource_api/pull/384
CVE-2026-8351 (The RTMKit plugin for WordPress is vulnerable to Stored
Cross-Site Scr ...)
NOT-FOR-US: WordPress plugin
CVE-2026-5137 (The RTMKit (rometheme-for-elementor) plugin for WordPress is
vulnerabl ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5a3f0214ebdee28583ff5716a650e4ebdac12a57
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5a3f0214ebdee28583ff5716a650e4ebdac12a57
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits