Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
89cfe1dd by Salvatore Bonaccorso at 2026-07-07T19:05:40+02:00
Add new django issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,15 @@
+CVE-2026-53878 [Header injection possibility since DomainNameValidator 
accepted newlines in input]
+       - python-django <unfixed> (bug #1141629)
+       NOTE: 
https://www.djangoproject.com/weblog/2026/jul/07/security-releases/
+       NOTE: Fixed by: 
https://github.com/django/django/commit/d5d60ed0323cddaa0ce0237a26a3d49ac21ee05e
 (5.2.16)
+CVE-2026-53877 [Heap buffer over-read in GDALRaster]
+       - python-django <unfixed> (bug #1141629)
+       NOTE: 
https://www.djangoproject.com/weblog/2026/jul/07/security-releases/
+       NOTE: Fixed by: 
https://github.com/django/django/commit/6c66eb8cec52b303af85c2c6e4dd00aa37654dbc
 (5.2.16)
+CVE-2026-48588 [Potential exposure of private data via cached Set-Cookie 
response]
+       - python-django <unfixed> (bug #1141629)
+       NOTE: 
https://www.djangoproject.com/weblog/2026/jul/07/security-releases/
+       NOTE: Fixed by: 
https://github.com/django/django/commit/721685aa7799cc9327bd202cd1f70bd012ca95a7
 (5.2.16)
 CVE-2026-XXXX [InspIRCd Security Advisory 2026-01]
        - inspircd <unfixed> (bug #1141625)
        NOTE: https://docs.inspircd.org/security/2026-01/



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/89cfe1dd495b7170c61f9805c311c43cb7ae7564

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/89cfe1dd495b7170c61f9805c311c43cb7ae7564
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help


_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to