Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
2031b4bc by security tracker role at 2026-07-13T19:13:13+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,463 @@
+CVE-2026-9824 (Mattermost versions 11.7.x <= 11.7.2, 11.6.x <= 11.6.4, 10.11.x
<= 10. ...)
+ TODO: check
+CVE-2026-9820 (Mattermost versions 11.7.x <= 11.7.2, 10.11.x <= 10.11.19 fail
to sani ...)
+ TODO: check
+CVE-2026-9708 (Mattermost versions 11.7.x <= 11.7.2, 11.6.x <= 11.6.4, 10.11.x
<= 10. ...)
+ TODO: check
+CVE-2026-9597 (Mattermost versions 11.7.x <= 11.7.2, 11.6.x <= 11.6.4 fail to
verify ...)
+ TODO: check
+CVE-2026-9571 (Mattermost versions 11.7.x <= 11.7.2, 11.6.x <= 11.6.4, 10.11.x
<= 10. ...)
+ TODO: check
+CVE-2026-6875 (ServiceNow has addressed a remote code execution vulnerability
that wa ...)
+ TODO: check
+CVE-2026-6850 (Mattermost versions 11.7.x <= 11.7.2, 11.6.x <= 11.6.4, 10.11.x
<= 10. ...)
+ TODO: check
+CVE-2026-6847 (Remote Code Execution vulnerability exists in ThemisNETPanel
due to mi ...)
+ TODO: check
+CVE-2026-6541 (Mattermost versions 11.7.x <= 11.7.1, 11.6.x <= 11.6.4, 10.11.x
<= 10. ...)
+ TODO: check
+CVE-2026-62147 (The Tempo Operator's gateway component failed to consistently
apply na ...)
+ TODO: check
+CVE-2026-62143 (A Server-Side Request Forgery (SSRF) protection bypass existed
in the ...)
+ TODO: check
+CVE-2026-61985 (Missing Authorization vulnerability in magepeopleteam Car
Rental Manag ...)
+ TODO: check
+CVE-2026-61983 (Missing Authorization vulnerability in andy_moyle Church Admin
church- ...)
+ TODO: check
+CVE-2026-61977 (Exposure of Sensitive System Information to an Unauthorized
Control Sp ...)
+ TODO: check
+CVE-2026-61976 (Exposure of Sensitive System Information to an Unauthorized
Control Sp ...)
+ TODO: check
+CVE-2026-61975 (Exposure of Sensitive System Information to an Unauthorized
Control Sp ...)
+ TODO: check
+CVE-2026-61971 (Authorization Bypass Through User-Controlled Key vulnerability
in Cozm ...)
+ TODO: check
+CVE-2026-61970 (Server-Side Request Forgery (SSRF) vulnerability in Themeisle
Auto Fea ...)
+ TODO: check
+CVE-2026-61968 (Missing Authorization vulnerability in Saad Iqbal myCred
mycred allows ...)
+ TODO: check
+CVE-2026-61958 (Missing Authorization vulnerability in Saad Iqbal License
Manager for ...)
+ TODO: check
+CVE-2026-61956 (Cross-Site Request Forgery (CSRF) vulnerability in hamsalam
\u0648\u06 ...)
+ TODO: check
+CVE-2026-61955 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2026-61952 (Missing Authorization vulnerability in Jose Vega WooCommerce
Bulk Edit ...)
+ TODO: check
+CVE-2026-61692
+ REJECTED
+CVE-2026-61505 (Rejetto HFS 3.0.0 through 3.2.0 allows path traversal through
the lang ...)
+ TODO: check
+CVE-2026-61504 (Rejetto HFS 3.0.0 through 3.2.0 does not escape file names in
its fall ...)
+ TODO: check
+CVE-2026-61503 (Rejetto HFS 3.0.0 through 3.2.0 returns observably different
responses ...)
+ TODO: check
+CVE-2026-61502 (Rejetto HFS 3.0.0 through 3.2.0 accepts state-changing API
requests vi ...)
+ TODO: check
+CVE-2026-61501 (Rejetto HFS 3.0.0 through 3.2.0 renders log entries in the
administrat ...)
+ TODO: check
+CVE-2026-61500 (Rejetto HFS 3.0.0 through 3.2.0 derives its session-cookie
signing key ...)
+ TODO: check
+CVE-2026-61498 (Vitec Flamingo 4.12.2 contains an unauthenticated OS command
injection ...)
+ TODO: check
+CVE-2026-61463 (Shiori contains a privilege escalation vulnerability in the
account up ...)
+ TODO: check
+CVE-2026-61462 (mcp-gitlab contains a path traversal vulnerability in the
job_id param ...)
+ TODO: check
+CVE-2026-60121 (Vitec Flamingo 4.12.2 contains an unauthenticated OS command
injection ...)
+ TODO: check
+CVE-2026-60103 (Blender 3.0.0 through 5.1.2 contains an out-of-bounds read
vulnerabili ...)
+ TODO: check
+CVE-2026-59523 (Missing Authorization vulnerability in NSquared Simply
Schedule Appoin ...)
+ TODO: check
+CVE-2026-59521 (Deserialization of Untrusted Data vulnerability in
ShapedPlugin LLC Re ...)
+ TODO: check
+CVE-2026-59518 (Deserialization of Untrusted Data vulnerability in wpWax
Directorist d ...)
+ TODO: check
+CVE-2026-59516 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-59515 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2026-59245 (In the Apache Airflow FAB auth manager, a DAG whose `dag_id`
is `DAGs` ...)
+ TODO: check
+CVE-2026-58228 (Cross-site scripting vulnerability in phoenixframework
phoenix_live_vi ...)
+ TODO: check
+CVE-2026-58065 (The Apache Airflow Git provider runs its git-over-SSH
operations with ...)
+ TODO: check
+CVE-2026-57830 (The Joomla extension Helix Ultimate is vulnerable to an
unauthenticate ...)
+ TODO: check
+CVE-2026-57829 (The Joomla extension Helix Ultimate is vulnerable to an
unauthenticate ...)
+ TODO: check
+CVE-2026-57816 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57815 (Improper Limitation of a Pathname to a Restricted Directory
('Path Tra ...)
+ TODO: check
+CVE-2026-57814 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57813 (Incorrect Privilege Assignment vulnerability in properfraction
MailOpt ...)
+ TODO: check
+CVE-2026-57812 (Missing Authorization vulnerability in NSquared Simply
Schedule Appoin ...)
+ TODO: check
+CVE-2026-57811 (Improper Control of Generation of Code ('Code Injection')
vulnerabilit ...)
+ TODO: check
+CVE-2026-57810 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2026-57805 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2026-57804 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2026-57803 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2026-57802 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2026-57801 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2026-57800 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2026-57799 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2026-57798 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2026-57797 (Missing Authorization vulnerability in ThemeMove EduMall
edumall allow ...)
+ TODO: check
+CVE-2026-57796 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2026-57795 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2026-57794 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2026-57793 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2026-57792 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2026-57791 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2026-57790 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2026-57789 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2026-57788 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2026-57787 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2026-57786 (Cross-Site Request Forgery (CSRF) vulnerability in purethemes
WorkScou ...)
+ TODO: check
+CVE-2026-57783 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57782 (Missing Authorization vulnerability in PressTigers Universal
Clocks un ...)
+ TODO: check
+CVE-2026-57781 (Missing Authorization vulnerability in Sovlix MeetingHub
meetinghub al ...)
+ TODO: check
+CVE-2026-57780 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57779 (Missing Authorization vulnerability in themebeez Fascinate
fascinate a ...)
+ TODO: check
+CVE-2026-57778 (Missing Authorization vulnerability in wpdevart Booking
calendar, Appo ...)
+ TODO: check
+CVE-2026-57776 (Missing Authorization vulnerability in vowelweb VW Wedding
vw-wedding ...)
+ TODO: check
+CVE-2026-57774 (Missing Authorization vulnerability in vowelweb VW Food Corner
vw-food ...)
+ TODO: check
+CVE-2026-57773 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2026-57772 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2026-57771 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2026-57770 (Deserialization of Untrusted Data vulnerability in ThemeGoods
Grand Ph ...)
+ TODO: check
+CVE-2026-57768 (Incorrect Privilege Assignment vulnerability in favethemes
Houzez Logi ...)
+ TODO: check
+CVE-2026-57745 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57744 (Deserialization of Untrusted Data vulnerability in stmcan
RT-Theme 18 ...)
+ TODO: check
+CVE-2026-57743 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2026-57741 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57740 (Missing Authorization vulnerability in AcyMailing Newsletter
Team AcyM ...)
+ TODO: check
+CVE-2026-57739 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2026-57738 (Deserialization of Untrusted Data vulnerability in axiomthemes
777 tri ...)
+ TODO: check
+CVE-2026-57734 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57733 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57732 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57729 (Missing Authorization vulnerability in UX-themes Flatsome
flatsome all ...)
+ TODO: check
+CVE-2026-57728 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57727 (Missing Authorization vulnerability in Themeum Kirki kirki
allows Expl ...)
+ TODO: check
+CVE-2026-57726 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2026-57725 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57724 (Deserialization of Untrusted Data vulnerability in Themeum
Kirki kirki ...)
+ TODO: check
+CVE-2026-57719 (Unrestricted Upload of File with Dangerous Type vulnerability
in CodeR ...)
+ TODO: check
+CVE-2026-57718 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57715 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57714 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2026-57713 (Deserialization of Untrusted Data vulnerability in Marcus (aka
@msykes ...)
+ TODO: check
+CVE-2026-57712 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57711 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57710 (Unrestricted Upload of File with Dangerous Type vulnerability
in quant ...)
+ TODO: check
+CVE-2026-57709 (Improper Limitation of a Pathname to a Restricted Directory
('Path Tra ...)
+ TODO: check
+CVE-2026-57708 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57707 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2026-57706 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57705 (Missing Authorization vulnerability in Nexcess Event Tickets
event-tic ...)
+ TODO: check
+CVE-2026-57702 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2026-57698 (Authentication Bypass Using an Alternate Path or Channel
vulnerability ...)
+ TODO: check
+CVE-2026-57697 (Authentication Bypass Using an Alternate Path or Channel
vulnerability ...)
+ TODO: check
+CVE-2026-57695 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57694 (Authorization Bypass Through User-Controlled Key vulnerability
in Them ...)
+ TODO: check
+CVE-2026-57693 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57691 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57668 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57433 (Storable versions before 3.41 for Perl have a signed integer
overflow ...)
+ TODO: check
+CVE-2026-57432 (Perl versions through 5.43.10 have an integer overflow in
S_measure_st ...)
+ TODO: check
+CVE-2026-57424 (Missing Authorization vulnerability in knitpay Razorpay
Payment Links ...)
+ TODO: check
+CVE-2026-57423 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57422 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57421 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57420 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57419 (Missing Authorization vulnerability in Fahad Mahmood Stock
Locations f ...)
+ TODO: check
+CVE-2026-57418 (Missing Authorization vulnerability in BoldGrid Client
Invoicing by Sp ...)
+ TODO: check
+CVE-2026-57417 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57416 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57415 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57414 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57413 (Server-Side Request Forgery (SSRF) vulnerability in bdthemes
Instant I ...)
+ TODO: check
+CVE-2026-57412 (Missing Authorization vulnerability in Codemenschen Gift
Vouchers gift ...)
+ TODO: check
+CVE-2026-57411 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57410 (Incorrect Privilege Assignment vulnerability in MailerPress
Team Maile ...)
+ TODO: check
+CVE-2026-57409 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57408 (Missing Authorization vulnerability in peachpayments Peach
Payments Ga ...)
+ TODO: check
+CVE-2026-57407 (Server-Side Request Forgery (SSRF) vulnerability in WP Swings
PDF Gene ...)
+ TODO: check
+CVE-2026-57406 (Missing Authorization vulnerability in Roxnor FundEngine
wp-fundraisin ...)
+ TODO: check
+CVE-2026-57405 (Missing Authorization vulnerability in themehunk Open Shop
open-shop a ...)
+ TODO: check
+CVE-2026-57404 (Missing Authorization vulnerability in magepeopleteam Booking
and Rent ...)
+ TODO: check
+CVE-2026-57403 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57402 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57401 (Improper Limitation of a Pathname to a Restricted Directory
('Path Tra ...)
+ TODO: check
+CVE-2026-57400 (Missing Authorization vulnerability in WP Swings Event Tickets
Manager ...)
+ TODO: check
+CVE-2026-57399 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57398 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57396 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57395 (Missing Authorization vulnerability in Themefic Tourfic
tourfic allows ...)
+ TODO: check
+CVE-2026-57394 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57393 (Exposure of Sensitive System Information to an Unauthorized
Control Sp ...)
+ TODO: check
+CVE-2026-57392 (Missing Authorization vulnerability in Themefic Tourfic
tourfic allows ...)
+ TODO: check
+CVE-2026-57391 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57390 (Missing Authorization vulnerability in EDGARROJAS Extra
Product Option ...)
+ TODO: check
+CVE-2026-57389 (Improper Limitation of a Pathname to a Restricted Directory
('Path Tra ...)
+ TODO: check
+CVE-2026-57388 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57387 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57386 (Incorrect Privilege Assignment vulnerability in Kodezen LLC
aBlocks ab ...)
+ TODO: check
+CVE-2026-57385 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2026-57383 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57382 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57381 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57380 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57379 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57378 (Missing Authorization vulnerability in Phil Kurth Advanced
Forms advan ...)
+ TODO: check
+CVE-2026-57377 (Missing Authorization vulnerability in WPXPO WowAddons
product-addons ...)
+ TODO: check
+CVE-2026-57376 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57375 (Missing Authorization vulnerability in FluxBuilder MStore API
mstore-a ...)
+ TODO: check
+CVE-2026-57372 (Server-Side Request Forgery (SSRF) vulnerability in denishua
WPJAM Bas ...)
+ TODO: check
+CVE-2026-57371 (Deserialization of Untrusted Data vulnerability in denishua
WPJAM Basi ...)
+ TODO: check
+CVE-2026-57369 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57368 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57365 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-57364 (Improper Validation of Specified Quantity in Input
vulnerability in WP ...)
+ TODO: check
+CVE-2026-57363 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2026-55772 (CedarJava is an open source Java implementation of the Cedar
policy la ...)
+ TODO: check
+CVE-2026-53365 (In the Linux kernel, the following vulnerability has been
resolved: v ...)
+ TODO: check
+CVE-2026-53364 (In the Linux kernel, the following vulnerability has been
resolved: B ...)
+ TODO: check
+CVE-2026-4769 (Certain devices in the WAGO System I/O Field series activate an
intern ...)
+ TODO: check
+CVE-2026-4765 (Stored Cross-Site Scripting (XSS) vulnerability in the RD
Station Conv ...)
+ TODO: check
+CVE-2026-49972 (Laravel-Mediable before 7.0.0 contains a file upload
vulnerability tha ...)
+ TODO: check
+CVE-2026-49971 (Laravel-Mediable before 7.0.0 contains a stored cross-site
scripting v ...)
+ TODO: check
+CVE-2026-49970 (Laravel-Mediable before 7.0.0 contains a path traversal
vulnerability ...)
+ TODO: check
+CVE-2026-49969 (Laravel-Mediable before 7.0.0 contains a server-side request
forgery v ...)
+ TODO: check
+CVE-2026-49876 (Authenticated SSRF in Gravitino JobManager allows server-side
HTTP req ...)
+ TODO: check
+CVE-2026-41041 (URL path injection via unencoded user-supplied identifiers
vulnerabili ...)
+ TODO: check
+CVE-2026-40553 (Buffer overflow vulnerability has been found in
"extension/readdir.c" ...)
+ TODO: check
+CVE-2026-40469 (Integer overflow vulnerability has been found in "builtin.c"
program f ...)
+ TODO: check
+CVE-2026-40468 (Integer overflow vulnerability has been found in "builtin.c"
program f ...)
+ TODO: check
+CVE-2026-40467 (Use After Free vulnerability has been found in "io.c" program
file of ...)
+ TODO: check
+CVE-2026-26396 (OpenBMB XAgent v1.0.0 and before is vulnerable to path
traversal in th ...)
+ TODO: check
+CVE-2026-22103 (The NPC start endpoint on the web server at port 8090 is
vulnerable to ...)
+ TODO: check
+CVE-2026-22102 (A POST request sent to a specific webserver endpoint can be
used to wr ...)
+ TODO: check
+CVE-2026-22100 (The OCPP DataTransfer message `ReserveLogin` is vulnerable to
command ...)
+ TODO: check
+CVE-2026-22099 (The charging station does not require authentication for
Bluetooth com ...)
+ TODO: check
+CVE-2026-22098 (Various sensitive information such as passwords and charging
card UIDs ...)
+ TODO: check
+CVE-2026-22097 (The firmware update mechanism does not include cryptographic
signature ...)
+ TODO: check
+CVE-2026-22096 (The webserver running on port 8090 does not require
authentication. Th ...)
+ TODO: check
+CVE-2026-22095 (The network diagnosis endpoint on the web server at port 8090
is vulne ...)
+ TODO: check
+CVE-2026-22093 (The EVbee Service Android app uses TLS encrypted communication
(HTTPS) ...)
+ TODO: check
+CVE-2026-15584 (A privilege escalation vulnerability was found in the
incluster-checks ...)
+ TODO: check
+CVE-2026-15574 (A flaw was found in the vllm-orchestrator-gateway component.
The syste ...)
+ TODO: check
+CVE-2026-15559 (A vulnerability was detected in CodeAstro Simple Online Leave
Manageme ...)
+ TODO: check
+CVE-2026-15558 (A security vulnerability has been detected in CodeAstro Simple
Online ...)
+ TODO: check
+CVE-2026-15557 (A weakness has been identified in waooAI waoowaoo up to 0.4.1.
Affecte ...)
+ TODO: check
+CVE-2026-15548 (A security vulnerability has been detected in Shibby Tomato up
to 1.28 ...)
+ TODO: check
+CVE-2026-15547 (A weakness has been identified in Shibby Tomato up to
1.28.0000. This ...)
+ TODO: check
+CVE-2026-15546 (A security flaw has been discovered in Shibby Tomato up to
1.28.0000. ...)
+ TODO: check
+CVE-2026-15545 (A vulnerability was identified in Shibby Tomato up to
1.28.0000. Affec ...)
+ TODO: check
+CVE-2026-15544 (A vulnerability was determined in Shibby Tomato up to
1.28.0000. Affec ...)
+ TODO: check
+CVE-2026-15543 (A vulnerability was found in Tenda CH22 1.0.0.1. This impacts
the func ...)
+ TODO: check
+CVE-2026-15542 (A vulnerability has been found in will-moss Isaiah up to
1.36.9. This ...)
+ TODO: check
+CVE-2026-15541 (A flaw has been found in will-moss Isaiah up to 1.36.9. The
impacted e ...)
+ TODO: check
+CVE-2026-15540 (A vulnerability was detected in SourceCodester Online Book
Store Syste ...)
+ TODO: check
+CVE-2026-14934 (A Missing Authorization vulnerability in the repository
creation funct ...)
+ TODO: check
+CVE-2026-14906 (Pages with malicious titles could potentially allow saved PDF
content ...)
+ TODO: check
+CVE-2026-14846 (In version 8.2.1 of PrestaShop, there is a vulnerability
relating to t ...)
+ TODO: check
+CVE-2026-14453 (This vulnerability is a critical Server-Side Template
Injection (SSTI) ...)
+ TODO: check
+CVE-2026-14165 (An Authorization Bypass Through User-Controlled Key
vulnerability affe ...)
+ TODO: check
+CVE-2026-13221 (Perl versions through 5.43.9 produce silently incorrect
regular expres ...)
+ TODO: check
+CVE-2026-13014 (A vulnerability inThales CERT "Suspicious" application =<
1.3.4 allows ...)
+ TODO: check
+CVE-2026-12257 (Versions of Mura CMS prior to 10.0.712 contain a critical
remote code ...)
+ TODO: check
+CVE-2026-10106 (Mattermost versions 11.7.x <= 11.7.2, 11.6.x <= 11.6.4,
10.11.x <= 10. ...)
+ TODO: check
+CVE-2026-10103 (Mattermost versions 11.7.x <= 11.7.2, 11.6.x <= 11.6.4,
10.11.x <= 10. ...)
+ TODO: check
+CVE-2026-10085 (Mattermost versions 11.7.x <= 11.7.2, 11.6.x <= 11.6.4,
10.11.x <= 10. ...)
+ TODO: check
+CVE-2025-45869 (LogicalDOC Enterprise Version up to and before v9.1.1 is
vulnerable to ...)
+ TODO: check
CVE-2026-9492 (The MBStorage DRAM lighting control module within Gigabyte
Control Cen ...)
TODO: check
CVE-2026-7162 (Successful exploitation of the integer overflow vulnerability
could al ...)
@@ -758,11 +1218,13 @@ CVE-2026-56665 (ZITADEL is an open source identity
management platform. Prior to
CVE-2026-56664 (ZITADEL is an open source identity management platform. Prior
to 3.4.1 ...)
NOT-FOR-US: Zitadel
CVE-2026-56373 (ImageMagick before 7.1.2-15 contains a use-after-free
vulnerability in ...)
+ {DLA-4680-1}
- imagemagick 8:7.1.2.15+dfsg1-1
NOTE:
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-3j4x-rwrx-xxj9
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick/commit/168ffe18def968f886c023146a478897866fd621
(7.1.2-14)
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick6/commit/06a0867c1f5076b85577b6b1cf87af901f6d6a84
(6.9.13-39)
CVE-2026-56366 (ImageMagick before 7.1.2-18 contains a memory leak
vulnerability in th ...)
+ {DLA-4680-1}
- imagemagick 8:7.1.2.18+dfsg1-1
NOTE:
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-9r56-3gjq-hqf7
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick/commit/bee248ee853a686a969fae9cfb1e02dd5aae245b
(7.1.2-18)
@@ -5763,31 +6225,31 @@ CVE-2026-56149 (Allocation of Resources Without Limits
or Throttling (CWE-770) i
CVE-2026-56148 (Uncontrolled Recursion (CWE-674) in Elasticsearch can lead to
a denial ...)
- elasticsearch <removed>
CVE-2026-55628 (In versions prior to 7.1.2-26he, the `-concatenate` operation
is missi ...)
- {DSA-6383-1}
+ {DSA-6383-1 DLA-4680-1}
- imagemagick 8:7.1.2.26+dfsg1-1
NOTE:
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-82mp-vp5c-9pf7
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick/commit/dcba7ee9ffb0c5a22a458bf0c613bc818fcb4cc6
(7.1.2-26)
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick6/commit/f48a0e2bad74c4cd42624e95205c3befd64062d8
(6.9.13-53)
CVE-2026-55597 (ImageMagick is free and open-source software used for editing
and mani ...)
- {DSA-6383-1}
+ {DSA-6383-1 DLA-4680-1}
- imagemagick 8:7.1.2.26+dfsg1-1
NOTE:
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-c4v7-w88g-m6c4
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick/commit/277541927c2de8317d4167ee16d57375f24971d3
(7.1.2-26)
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick6/commit/d241c85d93e4684f84201bd08f4aad80eac44f4a
(6.9.13-51)
CVE-2026-55595 (ImageMagick is free and open-source software used for editing
and mani ...)
- {DSA-6383-1}
+ {DSA-6383-1 DLA-4680-1}
- imagemagick 8:7.1.2.26+dfsg1-1
NOTE:
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-qhmf-7fc4-8q3h
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick/commit/549fdf2195bbac1c93e736c04f416d4d9a5d05a8
(7.1.2-26)
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick6/commit/f102ddccceb30b38dd01f9d77025f51c9a5cc272
(6.9.13-51)
CVE-2026-55594 (ImageMagick is free and open-source software used for editing
and mani ...)
- {DSA-6383-1}
+ {DSA-6383-1 DLA-4680-1}
- imagemagick 8:7.1.2.26+dfsg1-1
NOTE:
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-mx48-2qq3-23hf
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick/commit/c8868afaf0fe901cddb52177971de25c33f8aa02
(7.1.2-26)
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick6/commit/46d1c3a7d0d91bf8323deb0b29246e7e52db6778
(6.9.13-51)
CVE-2026-55577 (ImageMagick is free and open-source software used for editing
and mani ...)
- {DSA-6383-1}
+ {DSA-6383-1 DLA-4680-1}
- imagemagick 8:7.1.2.26+dfsg1-1
NOTE:
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-wx47-rm3x-jx6p
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick/commit/01ce608dd41fa358e212ebb66035b7257cd9d915
(7.1.2-26)
@@ -5837,13 +6299,13 @@ CVE-2026-53903 (MCO is vulnerable to an Insecure Direct
Object Reference (IDOR)
CVE-2026-53902 (MCO does not properly enforce authorization checks in the
/customer/se ...)
NOT-FOR-US: MyComplianceOffice MCO
CVE-2026-53467 (ImageMagick is free and open-source software used for editing
and mani ...)
- {DSA-6383-1}
+ {DSA-6383-1 DLA-4680-1}
- imagemagick 8:7.1.2.26+dfsg1-1
NOTE:
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-8g53-9m3c-69xg
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick/commit/9d1764c43a15b78e18a7f66649989d59079a9e15
(7.1.2-26)
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick6/commit/ad68aca5cd33e199f6cd3048da2ae62e76f05b74
(6.9.13-51)
CVE-2026-53466 (ImageMagick is free and open-source software used for editing
and mani ...)
- {DSA-6383-1}
+ {DSA-6383-1 DLA-4680-1}
- imagemagick 8:7.1.2.26+dfsg1-1
NOTE:
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-pjxj-pchx-4c3m
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick/commit/47ca7210515f3c9ea033b86fe4323a70caa74468
(7.1.2-26)
@@ -6339,7 +6801,7 @@ CVE-2026-56413 (Storage Concentrator (SC & SCVM) contains
a command injection vu
CVE-2026-56399 (Open WebUI before 0.6.27 contains a server-side request
forgery vulner ...)
NOT-FOR-US: Open WebUI
CVE-2026-56377 (ImageMagick before 7.1.2-24 contains an incorrect policy check
that al ...)
- {DSA-6383-1}
+ {DSA-6383-1 DLA-4680-1}
- imagemagick 8:7.1.2.24+dfsg1-1
NOTE:
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-gm48-c7f2-v67p
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick/commit/3705205e1424d379c2fc46c026c8560ccea0509e
(7.1.2-24)
@@ -6349,7 +6811,7 @@ CVE-2026-56369 (ImageMagick before 7.1.2-22 contains an
information disclosure v
NOTE:
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-qv2q-c278-pch5
NOTE: Fixed by documentation upgrade
https://github.com/ImageMagick/ImageMagick/issues/8837#event-27569522488
CVE-2026-56365 (ImageMagick before 7.1.2-19 contains a memory leak
vulnerability in th ...)
- {DSA-6383-1}
+ {DSA-6383-1 DLA-4680-1}
- imagemagick 8:7.1.2.19+dfsg1-1
NOTE:
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-x928-4434-crqj
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick/commit/ca761f220bbf0470e2e7967639bcfb5be305ad28
(7.1.2-19)
@@ -6365,13 +6827,13 @@ CVE-2026-56364 (ImageMagick before 7.1.2-13 contains a
memory leak vulnerability
NOTE: Fixed by [2/2]:
https://github.com/ImageMagick/ImageMagick/commit/5fd4e5ad05a986b00e1519fa308ca3c5cf3d09d8
(7.1.2-14)
NOTE: ImageMagick function LoadOpenCLDeviceBenchmark not present in
ImageMagick6
CVE-2026-56363 (ImageMagick before 7.1.2-22 contains a division by zero
vulnerability ...)
- {DSA-6383-1}
+ {DSA-6383-1 DLA-4680-1}
- imagemagick 8:7.1.2.23+dfsg1-1
NOTE:
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-vf33-6r7x-66xx
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick/commit/d67eef71764cfeca07b4edf8a8ae922180f5f2e4
(7.1.2-22)
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick6/commit/7a48e0b3107608c7d87a172473cfd5294bc9e81f
(6.9.13-47)
CVE-2026-56361 (ImageMagick before 7.1.2-19 contains an off-by-one error in
morphology ...)
- {DSA-6383-1}
+ {DSA-6383-1 DLA-4680-1}
- imagemagick 8:7.1.2.19+dfsg1-1
NOTE:
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-q8h3-jv9v-57qx
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick/commit/a6bfb1bb7b4017ec52f5a957641d83ce29b63286
(7.1.2-19)
@@ -12646,13 +13108,13 @@ CVE-2026-57280 (Jenkins Script Security Plugin
1402.v94c9ce464861 and earlier do
CVE-2026-56761 (hono before 4.12.14 contains an html injection vulnerability
in jsx se ...)
NOT-FOR-US: Hono
CVE-2026-56370 (ImageMagick before 7.1.2-19 contains an out-of-bounds access
vulnerabi ...)
- {DSA-6383-1}
+ {DSA-6383-1 DLA-4680-1}
- imagemagick 8:7.1.2.19+dfsg1-1
NOTE:
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-pmpg-6pww-fg6q
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick/commit/2ab24d74865ab92faeeefe0fec890abf1e88e57c
(7.1.2-19)
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick6/commit/60b4e60841b429d719c59144e2505c8b0135367d
(6.9.13-44)
CVE-2026-56368 (ImageMagick before 7.1.2-15 contains a memory leak
vulnerability in mu ...)
- {DSA-6383-1}
+ {DSA-6383-1 DLA-4680-1}
- imagemagick 8:7.1.2.15+dfsg1-1
NOTE:
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-wfx3-6g53-9fgc
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick/commit/fe0a49a58ac5b7a18ff2618b6207dcad71123e43
(7.1.2-14)
@@ -14505,13 +14967,13 @@ CVE-2026-56379 (ImageMagick before 7.1.2-15 and
6.9.13-40 contains a command inj
NOTE: bookworm/bullseye fixed by backporting svg/msl coder from
6.9.13-41
NOTE: trixie fixed by backporting svg/msl to 7.1.2-16
CVE-2026-56376 (ImageMagick before 7.1.2-15 and 6.9.13-40 contains a heap
use-after-fr ...)
- {DSA-6383-1}
+ {DSA-6383-1 DLA-4680-1}
- imagemagick 8:7.1.2.15+dfsg1-1
NOTE:
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-2gq3-ww97-wfjm
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick/commit/f5049954f12c6fcf090a776767526d2a4708d58b
(7.1.2-14)
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick6/commit/94062bdf70dacc9714f2ff46a5920ceac63836cf
(6.9.13-39)
CVE-2026-56371 (ImageMagick before 7.1.2-15 and 6.9.13-40 contains a memory
leak in co ...)
- {DSA-6383-1}
+ {DSA-6383-1 DLA-4680-1}
- imagemagick 8:7.1.2.15+dfsg1-1
NOTE:
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-3q5f-gmjc-38r8
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick/commit/e6394098af39a9689bb5f0b4eb6a9968e449a8d3
(7.1.2-14)
@@ -15694,13 +16156,13 @@ CVE-2025-71351 (picklescan before 0.0.25 fails to
detect malicious pickle files
CVE-2025-71348 (picklescan before 0.0.28 fails to detect malicious pickle
files that i ...)
NOT-FOR-US: picklescan
CVE-2026-56367 (ImageMagick before 7.1.2-15 and 6.9.x before 6.9.13-40
contains an int ...)
- {DSA-6383-1}
+ {DSA-6383-1 DLA-4680-1}
- imagemagick 8:7.1.2.15+dfsg1-1
NOTE:
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-273h-m46v-96q4
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick/commit/5b91ab69af614024255fd93dcc9a62b41fbc435c
(7.1.2-14)
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick6/commit/f4976eb8efe87009eec7cb12f62a3abd1cef4881
(6.9.13-39)
CVE-2026-56378 (ImageMagick before 7.1.2-15 (and 6.x before 6.9.13-40)
contains a heap ...)
- {DSA-6383-1}
+ {DSA-6383-1 DLA-4680-1}
- imagemagick 8:7.1.2.15+dfsg1-1
NOTE:
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-wgxp-q8xq-wpp9
NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick/commit/436e5d2589e3c0adc10d9aa189e81d5d088d8207
(7.1.2-14)
@@ -32355,6 +32817,7 @@ CVE-2026-2374 (The Login No Captcha reCAPTCHA plugin
for WordPress is vulnerable
CVE-2026-21785 (A misconfigured Content Security Policy (CSP) in HCL BigFix
Remote Con ...)
NOT-FOR-US: HCL
CVE-2026-48112 (7-Zip is a file archiver with a high compression ratio.
Versions 9.18 ...)
+ {DLA-4681-1}
- 7zip 26.01+dfsg-1
[trixie] - 7zip <no-dsa> (Minor issue)
[bookworm] - 7zip 22.01+really26.01+dfsg-0+deb12u1
@@ -32363,6 +32826,7 @@ CVE-2026-48112 (7-Zip is a file archiver with a high
compression ratio. Versions
NOTE: depending on 7zip. Mark this version as fixed version.
NOTE:
https://securitylab.github.com/advisories/GHSL-2026-115_GHSL-2026-122_7-zip/
CVE-2026-48111 (7-Zip is a file archiver with a high compression ratio.
Versions 9.21 ...)
+ {DLA-4681-1}
- 7zip 26.01+dfsg-1 (unimportant)
[bookworm] - 7zip 22.01+really26.01+dfsg-0+deb12u1
- p7zip 16.02+transitional.1 (unimportant)
@@ -32371,6 +32835,7 @@ CVE-2026-48111 (7-Zip is a file archiver with a high
compression ratio. Versions
NOTE:
https://securitylab.github.com/advisories/GHSL-2026-115_GHSL-2026-122_7-zip/
NOTE: Crash in CLI tool, no security impact
CVE-2026-48104 (7-Zip is a file archiver with a high compression ratio.
Versions 9.18 ...)
+ {DLA-4681-1}
- 7zip 26.01+dfsg-1 (unimportant)
[bookworm] - 7zip 22.01+really26.01+dfsg-0+deb12u1
- p7zip 16.02+transitional.1 (unimportant)
@@ -32379,6 +32844,7 @@ CVE-2026-48104 (7-Zip is a file archiver with a high
compression ratio. Versions
NOTE:
https://securitylab.github.com/advisories/GHSL-2026-115_GHSL-2026-122_7-zip/
NOTE: Crash in CLI tool, no security impact
CVE-2026-48103 (7-Zip is a file archiver with a high compression ratio.
Versions 9.34 ...)
+ {DLA-4681-1}
- 7zip 26.01+dfsg-1 (unimportant)
[bookworm] - 7zip 22.01+really26.01+dfsg-0+deb12u1
- p7zip 16.02+transitional.1 (unimportant)
@@ -32387,6 +32853,7 @@ CVE-2026-48103 (7-Zip is a file archiver with a high
compression ratio. Versions
NOTE:
https://securitylab.github.com/advisories/GHSL-2026-115_GHSL-2026-122_7-zip/
NOTE: Crash in CLI tool, no security impact
CVE-2026-48102 (7-Zip is a file archiver with a high compression ratio.
Versions 9.11 ...)
+ {DLA-4681-1}
- 7zip 26.01+dfsg-1 (unimportant)
[bookworm] - 7zip 22.01+really26.01+dfsg-0+deb12u1
- p7zip 16.02+transitional.1 (unimportant)
@@ -32395,6 +32862,7 @@ CVE-2026-48102 (7-Zip is a file archiver with a high
compression ratio. Versions
NOTE:
https://securitylab.github.com/advisories/GHSL-2026-115_GHSL-2026-122_7-zip/
NOTE: Crash in CLI tool, no security impact
CVE-2026-48101 (7-Zip is a file archiver with a high compression ratio.
Versions 9.21 ...)
+ {DLA-4681-1}
- 7zip 26.01+dfsg-1 (unimportant)
[bookworm] - 7zip 22.01+really26.01+dfsg-0+deb12u1
- p7zip 16.02+transitional.1 (unimportant)
@@ -32403,6 +32871,7 @@ CVE-2026-48101 (7-Zip is a file archiver with a high
compression ratio. Versions
NOTE:
https://securitylab.github.com/advisories/GHSL-2026-115_GHSL-2026-122_7-zip/
NOTE: Crash in CLI tool, no security impact
CVE-2026-48092 (7-Zip is a file archiver with a high compression ratio.
Versions 9.34 ...)
+ {DLA-4681-1}
- 7zip 26.01+dfsg-1 (unimportant)
[bookworm] - 7zip 22.01+really26.01+dfsg-0+deb12u1
- p7zip 16.02+transitional.1 (unimportant)
@@ -32411,6 +32880,7 @@ CVE-2026-48092 (7-Zip is a file archiver with a high
compression ratio. Versions
NOTE:
https://securitylab.github.com/advisories/GHSL-2026-115_GHSL-2026-122_7-zip/
NOTE: Crash in CLI tool, no security impact
CVE-2026-48095 (7-Zip is a file archiver with a high compression ratio.
Versions 26.00 ...)
+ {DLA-4681-1}
- 7zip 26.01+dfsg-1
[trixie] - 7zip <no-dsa> (Minor issue)
[bookworm] - 7zip 22.01+really26.01+dfsg-0+deb12u1
@@ -74671,7 +75141,7 @@ CVE-2025-46598 (Bitcoin Core through 29.0 allows a
denial of service via a craft
- bitcoin <removed>
CVE-2025-46597 (Bitcoin Core 0.13.0 through 29.x has an integer overflow.)
- bitcoin <removed>
-CVE-2025-15608 (This vulnerability in AX53 v1 results from insufficient input
sanitiza ...)
+CVE-2025-15608 (This vulnerability in AX53 v1, AX55 v4 and AX55 v4.6 results
from insu ...)
NOT-FOR-US: TPLink
CVE-2025-15607 (A command injection vulnerability on AX53 v1 occurs in mscd
debug func ...)
NOT-FOR-US: TPLink
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2031b4bc05aae40e653d3f0c79740f0bd62ff931
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2031b4bc05aae40e653d3f0c79740f0bd62ff931
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits