Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 89cfe1dd by Salvatore Bonaccorso at 2026-07-07T19:05:40+02:00 Add new django issues - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,3 +1,15 @@ +CVE-2026-53878 [Header injection possibility since DomainNameValidator accepted newlines in input] + - python-django <unfixed> (bug #1141629) + NOTE: https://www.djangoproject.com/weblog/2026/jul/07/security-releases/ + NOTE: Fixed by: https://github.com/django/django/commit/d5d60ed0323cddaa0ce0237a26a3d49ac21ee05e (5.2.16) +CVE-2026-53877 [Heap buffer over-read in GDALRaster] + - python-django <unfixed> (bug #1141629) + NOTE: https://www.djangoproject.com/weblog/2026/jul/07/security-releases/ + NOTE: Fixed by: https://github.com/django/django/commit/6c66eb8cec52b303af85c2c6e4dd00aa37654dbc (5.2.16) +CVE-2026-48588 [Potential exposure of private data via cached Set-Cookie response] + - python-django <unfixed> (bug #1141629) + NOTE: https://www.djangoproject.com/weblog/2026/jul/07/security-releases/ + NOTE: Fixed by: https://github.com/django/django/commit/721685aa7799cc9327bd202cd1f70bd012ca95a7 (5.2.16) CVE-2026-XXXX [InspIRCd Security Advisory 2026-01] - inspircd <unfixed> (bug #1141625) NOTE: https://docs.inspircd.org/security/2026-01/ View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/89cfe1dd495b7170c61f9805c311c43cb7ae7564 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/89cfe1dd495b7170c61f9805c311c43cb7ae7564 You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
