Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
91949ff2 by Salvatore Bonaccorso at 2026-07-04T17:05:04+02:00
Directly link the commit from merge for CVE-2026-8804

- - - - -
db06bf63 by Salvatore Bonaccorso at 2026-07-04T17:10:23+02:00
Add Debian bug reference for CVE-2026-8804

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -309,9 +309,9 @@ CVE-2026-9230 (The Quiz and Survey Master (QSM) \u2013 Easy 
Quiz and Survey Make
 CVE-2026-9148 (The Comments \u2013 wpDiscuz plugin for WordPress is vulnerable 
to Sto ...)
        NOT-FOR-US: WordPress plugin
 CVE-2026-8804 (Puppet resource_api (shipped in Puppet Core 8.x and Puppet 
Enterprise  ...)
-       - ruby-puppet-resource-api <unfixed>
-       NOTE: 
https://github.com/puppetlabs/puppet-resource_api/commit/74fc83412407888efb88f28f21c78ff7e6b11888
 (v1.9.2)
+       - ruby-puppet-resource-api <unfixed> (bug #1141432)
        NOTE: https://github.com/puppetlabs/puppet-resource_api/pull/384
+       NOTE: Fixed by: 
https://github.com/puppetlabs/puppet-resource_api/commit/87737def98e5b299fcd78b198159bca88be991e7
 (v1.9.2)
 CVE-2026-8351 (The RTMKit plugin for WordPress is vulnerable to Stored 
Cross-Site Scr ...)
        NOT-FOR-US: WordPress plugin
 CVE-2026-5137 (The RTMKit (rometheme-for-elementor) plugin for WordPress is 
vulnerabl ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/c996873a2ea0880aa7fdc60e14ab55ec671bb837...db06bf63e00d7eff4fd34ebf6cafeeab37a53f14

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/c996873a2ea0880aa7fdc60e14ab55ec671bb837...db06bf63e00d7eff4fd34ebf6cafeeab37a53f14
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help


_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to