Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
1a70eea7 by Salvatore Bonaccorso at 2026-07-08T22:14:16+02:00
Add new mistune issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -51,23 +51,42 @@ CVE-2026-59937 (pypdf is a free and open-source pure-python 
PDF library. Prior t
        NOTE: https://github.com/py-pdf/pypdf/pull/3887
        NOTE: Fixed by: 
https://github.com/py-pdf/pypdf/commit/b5fc5aa714f4b696fb9b1deaa35a9e4a4eb50dae 
(6.14.0)
 CVE-2026-59930 (Mistune is a Python Markdown parser with renderers and 
plugins. Prior  ...)
-       TODO: check
+       - mistune <unfixed>
+       NOTE: 
https://github.com/lepture/mistune/security/advisories/GHSA-2hm2-hc3v-44h9
+       NOTE: Fixed by: 
https://github.com/lepture/mistune/commit/c4093c4742ed0d10d9332fb8edb455869b7b581b
 (v3.3.0)
 CVE-2026-59929 (Mistune is a Python Markdown parser with renderers and 
plugins. Prior  ...)
-       TODO: check
+       - mistune <unfixed>
+       NOTE: 
https://github.com/lepture/mistune/security/advisories/GHSA-qfrw-5rxm-mhh2
+       NOTE: Fixed by: 
https://github.com/lepture/mistune/commit/c7101fcbb6e8790e8e39157c5ca2238fc6dd6cbc
 (v3.3.0)
 CVE-2026-59928 (Mistune is a Python Markdown parser with renderers and 
plugins. Prior  ...)
-       TODO: check
+       - mistune <unfixed>
+       NOTE: 
https://github.com/lepture/mistune/security/advisories/GHSA-ffq3-xpv3-j92q
+       NOTE: Fixed by: 
https://github.com/lepture/mistune/commit/2b04d7ba341c16ac78fe82d3076bdd5c3de87c69
 (v3.3.0)
 CVE-2026-59927 (Mistune is a Python Markdown parser with renderers and 
plugins. Prior  ...)
-       TODO: check
+       - mistune <unfixed>
+       NOTE: 
https://github.com/lepture/mistune/security/advisories/GHSA-8mpj-m6qm-5qr8
+       NOTE: Fixed by: 
https://github.com/lepture/mistune/commit/1bef343ade163fc3bb95572b15be720084cdb993
 (v3.3.0)
 CVE-2026-59926 (Mistune is a Python Markdown parser with renderers and 
plugins. Prior  ...)
-       TODO: check
+       - mistune <unfixed>
+       NOTE: 
https://github.com/lepture/mistune/security/advisories/GHSA-g97x-gvcm-x72h
+       NOTE: Fixed by: 
https://github.com/lepture/mistune/commit/a3cb6e5655308797e8be021d6c7b5bab13cbace2
 (v3.2.1)
 CVE-2026-59925 (Mistune is a Python Markdown parser with renderers and 
plugins. Prior  ...)
-       TODO: check
+       - mistune <unfixed>
+       NOTE: 
https://github.com/lepture/mistune/security/advisories/GHSA-4j32-57v6-6g45
+       NOTE: Fixed by: 
https://github.com/lepture/mistune/commit/5de41fb8e527004dbc363e047a3c380c9288c74f
 (v3.3.0)
 CVE-2026-59924 (Mistune is a Python Markdown parser with renderers and 
plugins. Prior  ...)
-       TODO: check
+       - mistune <unfixed>
+       NOTE: 
https://github.com/lepture/mistune/security/advisories/GHSA-r4rv-85jg-w4mf
+       NOTE: 
https://github.com/lepture/mistune/security/advisories/GHSA-r4rv-85jg-w4mf
+       NOTE: Fixed by: 
https://github.com/lepture/mistune/commit/1bef343ade163fc3bb95572b15be720084cdb993
 (v3.3.0)
 CVE-2026-59923 (Mistune is a Python Markdown parser with renderers and 
plugins. Prior  ...)
-       TODO: check
+       - mistune <unfixed>
+       NOTE: 
https://github.com/lepture/mistune/security/advisories/GHSA-8c25-4j27-2rv3
+       NOTE: Fixed by: 
https://github.com/lepture/mistune/commit/c7101fcbb6e8790e8e39157c5ca2238fc6dd6cbc
 (v3.3.0)
 CVE-2026-59922 (Mistune is a Python Markdown parser with renderers and 
plugins. Prior  ...)
-       TODO: check
+       - mistune <unfixed>
+       NOTE: 
https://github.com/lepture/mistune/security/advisories/GHSA-c8j7-8cv4-2xmq
+       NOTE: Fixed by: 
https://github.com/lepture/mistune/commit/96d0f57f8fe9eeb06bb4cff521962a27d7c402e7
 (v3.3.0)
 CVE-2026-59897 (Hono is a Web application framework that provides support for 
any Java ...)
        TODO: check
 CVE-2026-59896 (Hono is a Web application framework that provides support for 
any Java ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1a70eea7f0197ea9dc5412ada5b7faee7dbf86cc

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1a70eea7f0197ea9dc5412ada5b7faee7dbf86cc
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help


_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to