Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
863142a6 by Salvatore Bonaccorso at 2026-07-04T11:11:06+02:00
Add entry fo DLA-4667-1/nginx
- - - - -
2 changed files:
- data/CVE/list
- data/DLA/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -12044,7 +12044,7 @@ CVE-2026-48818 (Starlette is a lightweight ASGI
framework/toolkit. In versions 1
CVE-2026-48591 (Improper Neutralization of Script in Attributes in a Web Page
vulnerab ...)
NOT-FOR-US: pragdave earmark
CVE-2026-48142 (NGINX Plus and NGINX Open Source have a vulnerability in the
ngx_http_ ...)
- {DSA-6374-1 DLA-4660-1}
+ {DSA-6374-1 DLA-4667-1 DLA-4660-1}
- nginx 1.30.1-5 (bug #1140361)
NOTE: https://my.f5.com/manage/s/article/K000161585
NOTE:
https://github.com/nginx/nginx/commit/319a0bff157b15d9061f4712b2edbe6fdd2dee66
(release-1.31.2)
@@ -12070,7 +12070,7 @@ CVE-2026-42380 (Unauthenticated PHP Object Injection in
AI Lab < 5.4.2 versions.
CVE-2026-42357 (Incorrect Authorization vulnerability allows users to access
workflow ...)
NOT-FOR-US: Apache software not packaged in Debian
CVE-2026-42055 (NGINX Plus and NGINX Open Source have a vulnerability in the
ngx_http_ ...)
- {DSA-6374-1 DLA-4660-1}
+ {DSA-6374-1 DLA-4667-1 DLA-4660-1}
- nginx 1.30.1-5 (bug #1140359)
NOTE: https://my.f5.com/manage/s/article/K000161584
NOTE:
https://github.com/nginx/nginx/commit/58a7bc3406ac8b9dc0e0afafc69ba42df56009e3
(master)
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[03 Jul 2026] DLA-4667-1 nginx - security update
+ {CVE-2026-42055 CVE-2026-48142}
+ [bookworm] - nginx 1.22.1-9+deb12u9
[04 Jul 2026] DLA-4666-1 openvpn - security update
{CVE-2026-11771 CVE-2026-12932 CVE-2026-12996 CVE-2026-13117
CVE-2026-13122 CVE-2026-13698}
[bookworm] - openvpn 2.6.14-0+deb12u2
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/863142a69ff262a826e3626e07635ad280caca30
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/863142a69ff262a826e3626e07635ad280caca30
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits