Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
2031b4bc by security tracker role at 2026-07-13T19:13:13+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,463 @@
+CVE-2026-9824 (Mattermost versions 11.7.x <= 11.7.2, 11.6.x <= 11.6.4, 10.11.x 
<= 10. ...)
+       TODO: check
+CVE-2026-9820 (Mattermost versions 11.7.x <= 11.7.2, 10.11.x <= 10.11.19 fail 
to sani ...)
+       TODO: check
+CVE-2026-9708 (Mattermost versions 11.7.x <= 11.7.2, 11.6.x <= 11.6.4, 10.11.x 
<= 10. ...)
+       TODO: check
+CVE-2026-9597 (Mattermost versions 11.7.x <= 11.7.2, 11.6.x <= 11.6.4 fail to 
verify  ...)
+       TODO: check
+CVE-2026-9571 (Mattermost versions 11.7.x <= 11.7.2, 11.6.x <= 11.6.4, 10.11.x 
<= 10. ...)
+       TODO: check
+CVE-2026-6875 (ServiceNow has addressed a remote code execution vulnerability 
that wa ...)
+       TODO: check
+CVE-2026-6850 (Mattermost versions 11.7.x <= 11.7.2, 11.6.x <= 11.6.4, 10.11.x 
<= 10. ...)
+       TODO: check
+CVE-2026-6847 (Remote Code Execution vulnerability exists in ThemisNETPanel 
due to mi ...)
+       TODO: check
+CVE-2026-6541 (Mattermost versions 11.7.x <= 11.7.1, 11.6.x <= 11.6.4, 10.11.x 
<= 10. ...)
+       TODO: check
+CVE-2026-62147 (The Tempo Operator's gateway component failed to consistently 
apply na ...)
+       TODO: check
+CVE-2026-62143 (A Server-Side Request Forgery (SSRF) protection bypass existed 
in the  ...)
+       TODO: check
+CVE-2026-61985 (Missing Authorization vulnerability in magepeopleteam Car 
Rental Manag ...)
+       TODO: check
+CVE-2026-61983 (Missing Authorization vulnerability in andy_moyle Church Admin 
church- ...)
+       TODO: check
+CVE-2026-61977 (Exposure of Sensitive System Information to an Unauthorized 
Control Sp ...)
+       TODO: check
+CVE-2026-61976 (Exposure of Sensitive System Information to an Unauthorized 
Control Sp ...)
+       TODO: check
+CVE-2026-61975 (Exposure of Sensitive System Information to an Unauthorized 
Control Sp ...)
+       TODO: check
+CVE-2026-61971 (Authorization Bypass Through User-Controlled Key vulnerability 
in Cozm ...)
+       TODO: check
+CVE-2026-61970 (Server-Side Request Forgery (SSRF) vulnerability in Themeisle 
Auto Fea ...)
+       TODO: check
+CVE-2026-61968 (Missing Authorization vulnerability in Saad Iqbal myCred 
mycred allows ...)
+       TODO: check
+CVE-2026-61958 (Missing Authorization vulnerability in Saad Iqbal License 
Manager for  ...)
+       TODO: check
+CVE-2026-61956 (Cross-Site Request Forgery (CSRF) vulnerability in hamsalam 
\u0648\u06 ...)
+       TODO: check
+CVE-2026-61955 (Improper Neutralization of Special Elements used in an SQL 
Command ('S ...)
+       TODO: check
+CVE-2026-61952 (Missing Authorization vulnerability in Jose Vega WooCommerce 
Bulk Edit ...)
+       TODO: check
+CVE-2026-61692
+       REJECTED
+CVE-2026-61505 (Rejetto HFS 3.0.0 through 3.2.0 allows path traversal through 
the lang ...)
+       TODO: check
+CVE-2026-61504 (Rejetto HFS 3.0.0 through 3.2.0 does not escape file names in 
its fall ...)
+       TODO: check
+CVE-2026-61503 (Rejetto HFS 3.0.0 through 3.2.0 returns observably different 
responses ...)
+       TODO: check
+CVE-2026-61502 (Rejetto HFS 3.0.0 through 3.2.0 accepts state-changing API 
requests vi ...)
+       TODO: check
+CVE-2026-61501 (Rejetto HFS 3.0.0 through 3.2.0 renders log entries in the 
administrat ...)
+       TODO: check
+CVE-2026-61500 (Rejetto HFS 3.0.0 through 3.2.0 derives its session-cookie 
signing key ...)
+       TODO: check
+CVE-2026-61498 (Vitec Flamingo 4.12.2 contains an unauthenticated OS command 
injection ...)
+       TODO: check
+CVE-2026-61463 (Shiori contains a privilege escalation vulnerability in the 
account up ...)
+       TODO: check
+CVE-2026-61462 (mcp-gitlab contains a path traversal vulnerability in the 
job_id param ...)
+       TODO: check
+CVE-2026-60121 (Vitec Flamingo 4.12.2 contains an unauthenticated OS command 
injection ...)
+       TODO: check
+CVE-2026-60103 (Blender 3.0.0 through 5.1.2 contains an out-of-bounds read 
vulnerabili ...)
+       TODO: check
+CVE-2026-59523 (Missing Authorization vulnerability in NSquared Simply 
Schedule Appoin ...)
+       TODO: check
+CVE-2026-59521 (Deserialization of Untrusted Data vulnerability in 
ShapedPlugin LLC Re ...)
+       TODO: check
+CVE-2026-59518 (Deserialization of Untrusted Data vulnerability in wpWax 
Directorist d ...)
+       TODO: check
+CVE-2026-59516 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-59515 (Improper Neutralization of Special Elements used in an SQL 
Command ('S ...)
+       TODO: check
+CVE-2026-59245 (In the Apache Airflow FAB auth manager, a DAG whose `dag_id` 
is `DAGs` ...)
+       TODO: check
+CVE-2026-58228 (Cross-site scripting vulnerability in phoenixframework 
phoenix_live_vi ...)
+       TODO: check
+CVE-2026-58065 (The Apache Airflow Git provider runs its git-over-SSH 
operations with  ...)
+       TODO: check
+CVE-2026-57830 (The Joomla extension Helix Ultimate is vulnerable to an 
unauthenticate ...)
+       TODO: check
+CVE-2026-57829 (The Joomla extension Helix Ultimate is vulnerable to an 
unauthenticate ...)
+       TODO: check
+CVE-2026-57816 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57815 (Improper Limitation of a Pathname to a Restricted Directory 
('Path Tra ...)
+       TODO: check
+CVE-2026-57814 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57813 (Incorrect Privilege Assignment vulnerability in properfraction 
MailOpt ...)
+       TODO: check
+CVE-2026-57812 (Missing Authorization vulnerability in NSquared Simply 
Schedule Appoin ...)
+       TODO: check
+CVE-2026-57811 (Improper Control of Generation of Code ('Code Injection') 
vulnerabilit ...)
+       TODO: check
+CVE-2026-57810 (Improper Neutralization of Special Elements used in an SQL 
Command ('S ...)
+       TODO: check
+CVE-2026-57805 (Improper Control of Filename for Include/Require Statement in 
PHP Prog ...)
+       TODO: check
+CVE-2026-57804 (Improper Control of Filename for Include/Require Statement in 
PHP Prog ...)
+       TODO: check
+CVE-2026-57803 (Improper Control of Filename for Include/Require Statement in 
PHP Prog ...)
+       TODO: check
+CVE-2026-57802 (Improper Control of Filename for Include/Require Statement in 
PHP Prog ...)
+       TODO: check
+CVE-2026-57801 (Improper Control of Filename for Include/Require Statement in 
PHP Prog ...)
+       TODO: check
+CVE-2026-57800 (Improper Control of Filename for Include/Require Statement in 
PHP Prog ...)
+       TODO: check
+CVE-2026-57799 (Improper Control of Filename for Include/Require Statement in 
PHP Prog ...)
+       TODO: check
+CVE-2026-57798 (Improper Control of Filename for Include/Require Statement in 
PHP Prog ...)
+       TODO: check
+CVE-2026-57797 (Missing Authorization vulnerability in ThemeMove EduMall 
edumall allow ...)
+       TODO: check
+CVE-2026-57796 (Improper Control of Filename for Include/Require Statement in 
PHP Prog ...)
+       TODO: check
+CVE-2026-57795 (Improper Control of Filename for Include/Require Statement in 
PHP Prog ...)
+       TODO: check
+CVE-2026-57794 (Improper Control of Filename for Include/Require Statement in 
PHP Prog ...)
+       TODO: check
+CVE-2026-57793 (Improper Control of Filename for Include/Require Statement in 
PHP Prog ...)
+       TODO: check
+CVE-2026-57792 (Improper Control of Filename for Include/Require Statement in 
PHP Prog ...)
+       TODO: check
+CVE-2026-57791 (Improper Control of Filename for Include/Require Statement in 
PHP Prog ...)
+       TODO: check
+CVE-2026-57790 (Improper Control of Filename for Include/Require Statement in 
PHP Prog ...)
+       TODO: check
+CVE-2026-57789 (Improper Control of Filename for Include/Require Statement in 
PHP Prog ...)
+       TODO: check
+CVE-2026-57788 (Improper Control of Filename for Include/Require Statement in 
PHP Prog ...)
+       TODO: check
+CVE-2026-57787 (Improper Neutralization of Special Elements used in an SQL 
Command ('S ...)
+       TODO: check
+CVE-2026-57786 (Cross-Site Request Forgery (CSRF) vulnerability in purethemes 
WorkScou ...)
+       TODO: check
+CVE-2026-57783 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57782 (Missing Authorization vulnerability in PressTigers Universal 
Clocks un ...)
+       TODO: check
+CVE-2026-57781 (Missing Authorization vulnerability in Sovlix MeetingHub 
meetinghub al ...)
+       TODO: check
+CVE-2026-57780 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57779 (Missing Authorization vulnerability in themebeez Fascinate 
fascinate a ...)
+       TODO: check
+CVE-2026-57778 (Missing Authorization vulnerability in wpdevart Booking 
calendar, Appo ...)
+       TODO: check
+CVE-2026-57776 (Missing Authorization vulnerability in vowelweb VW Wedding 
vw-wedding  ...)
+       TODO: check
+CVE-2026-57774 (Missing Authorization vulnerability in vowelweb VW Food Corner 
vw-food ...)
+       TODO: check
+CVE-2026-57773 (Improper Neutralization of Special Elements used in an SQL 
Command ('S ...)
+       TODO: check
+CVE-2026-57772 (Improper Neutralization of Special Elements used in an SQL 
Command ('S ...)
+       TODO: check
+CVE-2026-57771 (Improper Neutralization of Special Elements used in an SQL 
Command ('S ...)
+       TODO: check
+CVE-2026-57770 (Deserialization of Untrusted Data vulnerability in ThemeGoods 
Grand Ph ...)
+       TODO: check
+CVE-2026-57768 (Incorrect Privilege Assignment vulnerability in favethemes 
Houzez Logi ...)
+       TODO: check
+CVE-2026-57745 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57744 (Deserialization of Untrusted Data vulnerability in stmcan 
RT-Theme 18  ...)
+       TODO: check
+CVE-2026-57743 (Improper Control of Filename for Include/Require Statement in 
PHP Prog ...)
+       TODO: check
+CVE-2026-57741 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57740 (Missing Authorization vulnerability in AcyMailing Newsletter 
Team AcyM ...)
+       TODO: check
+CVE-2026-57739 (Improper Neutralization of Special Elements used in an SQL 
Command ('S ...)
+       TODO: check
+CVE-2026-57738 (Deserialization of Untrusted Data vulnerability in axiomthemes 
777 tri ...)
+       TODO: check
+CVE-2026-57734 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57733 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57732 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57729 (Missing Authorization vulnerability in UX-themes Flatsome 
flatsome all ...)
+       TODO: check
+CVE-2026-57728 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57727 (Missing Authorization vulnerability in Themeum Kirki kirki 
allows Expl ...)
+       TODO: check
+CVE-2026-57726 (Improper Neutralization of Special Elements used in an SQL 
Command ('S ...)
+       TODO: check
+CVE-2026-57725 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57724 (Deserialization of Untrusted Data vulnerability in Themeum 
Kirki kirki ...)
+       TODO: check
+CVE-2026-57719 (Unrestricted Upload of File with Dangerous Type vulnerability 
in CodeR ...)
+       TODO: check
+CVE-2026-57718 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57715 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57714 (Improper Neutralization of Special Elements used in an SQL 
Command ('S ...)
+       TODO: check
+CVE-2026-57713 (Deserialization of Untrusted Data vulnerability in Marcus (aka 
@msykes ...)
+       TODO: check
+CVE-2026-57712 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57711 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57710 (Unrestricted Upload of File with Dangerous Type vulnerability 
in quant ...)
+       TODO: check
+CVE-2026-57709 (Improper Limitation of a Pathname to a Restricted Directory 
('Path Tra ...)
+       TODO: check
+CVE-2026-57708 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57707 (Improper Neutralization of Special Elements used in an SQL 
Command ('S ...)
+       TODO: check
+CVE-2026-57706 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57705 (Missing Authorization vulnerability in Nexcess Event Tickets 
event-tic ...)
+       TODO: check
+CVE-2026-57702 (Improper Neutralization of Special Elements used in an SQL 
Command ('S ...)
+       TODO: check
+CVE-2026-57698 (Authentication Bypass Using an Alternate Path or Channel 
vulnerability ...)
+       TODO: check
+CVE-2026-57697 (Authentication Bypass Using an Alternate Path or Channel 
vulnerability ...)
+       TODO: check
+CVE-2026-57695 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57694 (Authorization Bypass Through User-Controlled Key vulnerability 
in Them ...)
+       TODO: check
+CVE-2026-57693 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57691 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57668 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57433 (Storable versions before 3.41 for Perl have a signed integer 
overflow  ...)
+       TODO: check
+CVE-2026-57432 (Perl versions through 5.43.10 have an integer overflow in 
S_measure_st ...)
+       TODO: check
+CVE-2026-57424 (Missing Authorization vulnerability in knitpay Razorpay 
Payment Links  ...)
+       TODO: check
+CVE-2026-57423 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57422 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57421 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57420 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57419 (Missing Authorization vulnerability in Fahad Mahmood Stock 
Locations f ...)
+       TODO: check
+CVE-2026-57418 (Missing Authorization vulnerability in BoldGrid Client 
Invoicing by Sp ...)
+       TODO: check
+CVE-2026-57417 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57416 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57415 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57414 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57413 (Server-Side Request Forgery (SSRF) vulnerability in bdthemes 
Instant I ...)
+       TODO: check
+CVE-2026-57412 (Missing Authorization vulnerability in Codemenschen Gift 
Vouchers gift ...)
+       TODO: check
+CVE-2026-57411 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57410 (Incorrect Privilege Assignment vulnerability in MailerPress 
Team Maile ...)
+       TODO: check
+CVE-2026-57409 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57408 (Missing Authorization vulnerability in peachpayments Peach 
Payments Ga ...)
+       TODO: check
+CVE-2026-57407 (Server-Side Request Forgery (SSRF) vulnerability in WP Swings 
PDF Gene ...)
+       TODO: check
+CVE-2026-57406 (Missing Authorization vulnerability in Roxnor FundEngine 
wp-fundraisin ...)
+       TODO: check
+CVE-2026-57405 (Missing Authorization vulnerability in themehunk Open Shop 
open-shop a ...)
+       TODO: check
+CVE-2026-57404 (Missing Authorization vulnerability in magepeopleteam Booking 
and Rent ...)
+       TODO: check
+CVE-2026-57403 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57402 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57401 (Improper Limitation of a Pathname to a Restricted Directory 
('Path Tra ...)
+       TODO: check
+CVE-2026-57400 (Missing Authorization vulnerability in WP Swings Event Tickets 
Manager ...)
+       TODO: check
+CVE-2026-57399 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57398 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57396 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57395 (Missing Authorization vulnerability in Themefic Tourfic 
tourfic allows ...)
+       TODO: check
+CVE-2026-57394 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57393 (Exposure of Sensitive System Information to an Unauthorized 
Control Sp ...)
+       TODO: check
+CVE-2026-57392 (Missing Authorization vulnerability in Themefic Tourfic 
tourfic allows ...)
+       TODO: check
+CVE-2026-57391 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57390 (Missing Authorization vulnerability in EDGARROJAS Extra 
Product Option ...)
+       TODO: check
+CVE-2026-57389 (Improper Limitation of a Pathname to a Restricted Directory 
('Path Tra ...)
+       TODO: check
+CVE-2026-57388 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57387 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57386 (Incorrect Privilege Assignment vulnerability in Kodezen LLC 
aBlocks ab ...)
+       TODO: check
+CVE-2026-57385 (Improper Neutralization of Special Elements used in an SQL 
Command ('S ...)
+       TODO: check
+CVE-2026-57383 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57382 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57381 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57380 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57379 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57378 (Missing Authorization vulnerability in Phil Kurth Advanced 
Forms advan ...)
+       TODO: check
+CVE-2026-57377 (Missing Authorization vulnerability in WPXPO WowAddons 
product-addons  ...)
+       TODO: check
+CVE-2026-57376 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57375 (Missing Authorization vulnerability in FluxBuilder MStore API 
mstore-a ...)
+       TODO: check
+CVE-2026-57372 (Server-Side Request Forgery (SSRF) vulnerability in denishua 
WPJAM Bas ...)
+       TODO: check
+CVE-2026-57371 (Deserialization of Untrusted Data vulnerability in denishua 
WPJAM Basi ...)
+       TODO: check
+CVE-2026-57369 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57368 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57365 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-57364 (Improper Validation of Specified Quantity in Input 
vulnerability in WP ...)
+       TODO: check
+CVE-2026-57363 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
+       TODO: check
+CVE-2026-55772 (CedarJava is an open source Java implementation of the Cedar 
policy la ...)
+       TODO: check
+CVE-2026-53365 (In the Linux kernel, the following vulnerability has been 
resolved:  v ...)
+       TODO: check
+CVE-2026-53364 (In the Linux kernel, the following vulnerability has been 
resolved:  B ...)
+       TODO: check
+CVE-2026-4769 (Certain devices in the WAGO System I/O Field series activate an 
intern ...)
+       TODO: check
+CVE-2026-4765 (Stored Cross-Site Scripting (XSS) vulnerability in the RD 
Station Conv ...)
+       TODO: check
+CVE-2026-49972 (Laravel-Mediable before 7.0.0 contains a file upload 
vulnerability tha ...)
+       TODO: check
+CVE-2026-49971 (Laravel-Mediable before 7.0.0 contains a stored cross-site 
scripting v ...)
+       TODO: check
+CVE-2026-49970 (Laravel-Mediable before 7.0.0 contains a path traversal 
vulnerability  ...)
+       TODO: check
+CVE-2026-49969 (Laravel-Mediable before 7.0.0 contains a server-side request 
forgery v ...)
+       TODO: check
+CVE-2026-49876 (Authenticated SSRF in Gravitino JobManager allows server-side 
HTTP req ...)
+       TODO: check
+CVE-2026-41041 (URL path injection via unencoded user-supplied identifiers 
vulnerabili ...)
+       TODO: check
+CVE-2026-40553 (Buffer overflow vulnerability has been found in 
"extension/readdir.c"  ...)
+       TODO: check
+CVE-2026-40469 (Integer overflow vulnerability has been found in "builtin.c" 
program f ...)
+       TODO: check
+CVE-2026-40468 (Integer overflow vulnerability has been found in "builtin.c" 
program f ...)
+       TODO: check
+CVE-2026-40467 (Use After Free vulnerability has been found in "io.c" program 
file of  ...)
+       TODO: check
+CVE-2026-26396 (OpenBMB XAgent v1.0.0 and before is vulnerable to path 
traversal in th ...)
+       TODO: check
+CVE-2026-22103 (The NPC start endpoint on the web server at port 8090 is 
vulnerable to ...)
+       TODO: check
+CVE-2026-22102 (A POST request sent to a specific webserver endpoint can be 
used to wr ...)
+       TODO: check
+CVE-2026-22100 (The OCPP DataTransfer message `ReserveLogin` is vulnerable to 
command  ...)
+       TODO: check
+CVE-2026-22099 (The charging station does not require authentication for 
Bluetooth com ...)
+       TODO: check
+CVE-2026-22098 (Various sensitive information such as passwords and charging 
card UIDs ...)
+       TODO: check
+CVE-2026-22097 (The firmware update mechanism does not include cryptographic 
signature ...)
+       TODO: check
+CVE-2026-22096 (The webserver running on port 8090 does not require 
authentication. Th ...)
+       TODO: check
+CVE-2026-22095 (The network diagnosis endpoint on the web server at port 8090 
is vulne ...)
+       TODO: check
+CVE-2026-22093 (The EVbee Service Android app uses TLS encrypted communication 
(HTTPS) ...)
+       TODO: check
+CVE-2026-15584 (A privilege escalation vulnerability was found in the 
incluster-checks ...)
+       TODO: check
+CVE-2026-15574 (A flaw was found in the vllm-orchestrator-gateway component. 
The syste ...)
+       TODO: check
+CVE-2026-15559 (A vulnerability was detected in CodeAstro Simple Online Leave 
Manageme ...)
+       TODO: check
+CVE-2026-15558 (A security vulnerability has been detected in CodeAstro Simple 
Online  ...)
+       TODO: check
+CVE-2026-15557 (A weakness has been identified in waooAI waoowaoo up to 0.4.1. 
Affecte ...)
+       TODO: check
+CVE-2026-15548 (A security vulnerability has been detected in Shibby Tomato up 
to 1.28 ...)
+       TODO: check
+CVE-2026-15547 (A weakness has been identified in Shibby Tomato up to 
1.28.0000. This  ...)
+       TODO: check
+CVE-2026-15546 (A security flaw has been discovered in Shibby Tomato up to 
1.28.0000.  ...)
+       TODO: check
+CVE-2026-15545 (A vulnerability was identified in Shibby Tomato up to 
1.28.0000. Affec ...)
+       TODO: check
+CVE-2026-15544 (A vulnerability was determined in Shibby Tomato up to 
1.28.0000. Affec ...)
+       TODO: check
+CVE-2026-15543 (A vulnerability was found in Tenda CH22 1.0.0.1. This impacts 
the func ...)
+       TODO: check
+CVE-2026-15542 (A vulnerability has been found in will-moss Isaiah up to 
1.36.9. This  ...)
+       TODO: check
+CVE-2026-15541 (A flaw has been found in will-moss Isaiah up to 1.36.9. The 
impacted e ...)
+       TODO: check
+CVE-2026-15540 (A vulnerability was detected in SourceCodester Online Book 
Store Syste ...)
+       TODO: check
+CVE-2026-14934 (A Missing Authorization vulnerability in the repository 
creation funct ...)
+       TODO: check
+CVE-2026-14906 (Pages with malicious titles could potentially allow saved PDF 
content  ...)
+       TODO: check
+CVE-2026-14846 (In version 8.2.1 of PrestaShop, there is a vulnerability 
relating to t ...)
+       TODO: check
+CVE-2026-14453 (This vulnerability is a critical Server-Side Template 
Injection (SSTI) ...)
+       TODO: check
+CVE-2026-14165 (An Authorization Bypass Through User-Controlled Key 
vulnerability affe ...)
+       TODO: check
+CVE-2026-13221 (Perl versions through 5.43.9 produce silently incorrect 
regular expres ...)
+       TODO: check
+CVE-2026-13014 (A vulnerability inThales CERT "Suspicious" application =< 
1.3.4 allows ...)
+       TODO: check
+CVE-2026-12257 (Versions of Mura CMS prior to 10.0.712 contain a critical 
remote code  ...)
+       TODO: check
+CVE-2026-10106 (Mattermost versions 11.7.x <= 11.7.2, 11.6.x <= 11.6.4, 
10.11.x <= 10. ...)
+       TODO: check
+CVE-2026-10103 (Mattermost versions 11.7.x <= 11.7.2, 11.6.x <= 11.6.4, 
10.11.x <= 10. ...)
+       TODO: check
+CVE-2026-10085 (Mattermost versions 11.7.x <= 11.7.2, 11.6.x <= 11.6.4, 
10.11.x <= 10. ...)
+       TODO: check
+CVE-2025-45869 (LogicalDOC Enterprise Version up to and before v9.1.1 is 
vulnerable to ...)
+       TODO: check
 CVE-2026-9492 (The MBStorage DRAM lighting control module within Gigabyte 
Control Cen ...)
        TODO: check
 CVE-2026-7162 (Successful exploitation of the integer overflow vulnerability 
could al ...)
@@ -758,11 +1218,13 @@ CVE-2026-56665 (ZITADEL is an open source identity 
management platform. Prior to
 CVE-2026-56664 (ZITADEL is an open source identity management platform. Prior 
to 3.4.1 ...)
        NOT-FOR-US: Zitadel
 CVE-2026-56373 (ImageMagick before 7.1.2-15 contains a use-after-free 
vulnerability in ...)
+       {DLA-4680-1}
        - imagemagick 8:7.1.2.15+dfsg1-1
        NOTE: 
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-3j4x-rwrx-xxj9
        NOTE: Fixed by: 
https://github.com/ImageMagick/ImageMagick/commit/168ffe18def968f886c023146a478897866fd621
 (7.1.2-14)
        NOTE: Fixed by: 
https://github.com/ImageMagick/ImageMagick6/commit/06a0867c1f5076b85577b6b1cf87af901f6d6a84
 (6.9.13-39)
 CVE-2026-56366 (ImageMagick before 7.1.2-18 contains a memory leak 
vulnerability in th ...)
+       {DLA-4680-1}
        - imagemagick 8:7.1.2.18+dfsg1-1
        NOTE: 
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-9r56-3gjq-hqf7
        NOTE: Fixed by: 
https://github.com/ImageMagick/ImageMagick/commit/bee248ee853a686a969fae9cfb1e02dd5aae245b
 (7.1.2-18)
@@ -5763,31 +6225,31 @@ CVE-2026-56149 (Allocation of Resources Without Limits 
or Throttling (CWE-770) i
 CVE-2026-56148 (Uncontrolled Recursion (CWE-674) in Elasticsearch can lead to 
a denial ...)
        - elasticsearch <removed>
 CVE-2026-55628 (In versions prior to 7.1.2-26he, the `-concatenate` operation 
is missi ...)
-       {DSA-6383-1}
+       {DSA-6383-1 DLA-4680-1}
        - imagemagick 8:7.1.2.26+dfsg1-1
        NOTE: 
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-82mp-vp5c-9pf7
        NOTE: Fixed by: 
https://github.com/ImageMagick/ImageMagick/commit/dcba7ee9ffb0c5a22a458bf0c613bc818fcb4cc6
 (7.1.2-26)
        NOTE: Fixed by: 
https://github.com/ImageMagick/ImageMagick6/commit/f48a0e2bad74c4cd42624e95205c3befd64062d8
 (6.9.13-53)
 CVE-2026-55597 (ImageMagick is free and open-source software used for editing 
and mani ...)
-       {DSA-6383-1}
+       {DSA-6383-1 DLA-4680-1}
        - imagemagick 8:7.1.2.26+dfsg1-1
        NOTE: 
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-c4v7-w88g-m6c4
        NOTE: Fixed by: 
https://github.com/ImageMagick/ImageMagick/commit/277541927c2de8317d4167ee16d57375f24971d3
 (7.1.2-26)
        NOTE: Fixed by: 
https://github.com/ImageMagick/ImageMagick6/commit/d241c85d93e4684f84201bd08f4aad80eac44f4a
 (6.9.13-51)
 CVE-2026-55595 (ImageMagick is free and open-source software used for editing 
and mani ...)
-       {DSA-6383-1}
+       {DSA-6383-1 DLA-4680-1}
        - imagemagick 8:7.1.2.26+dfsg1-1
        NOTE: 
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-qhmf-7fc4-8q3h
        NOTE: Fixed by: 
https://github.com/ImageMagick/ImageMagick/commit/549fdf2195bbac1c93e736c04f416d4d9a5d05a8
 (7.1.2-26)
        NOTE: Fixed by: 
https://github.com/ImageMagick/ImageMagick6/commit/f102ddccceb30b38dd01f9d77025f51c9a5cc272
 (6.9.13-51)
 CVE-2026-55594 (ImageMagick is free and open-source software used for editing 
and mani ...)
-       {DSA-6383-1}
+       {DSA-6383-1 DLA-4680-1}
        - imagemagick 8:7.1.2.26+dfsg1-1
        NOTE: 
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-mx48-2qq3-23hf
        NOTE: Fixed by: 
https://github.com/ImageMagick/ImageMagick/commit/c8868afaf0fe901cddb52177971de25c33f8aa02
 (7.1.2-26)
        NOTE: Fixed by: 
https://github.com/ImageMagick/ImageMagick6/commit/46d1c3a7d0d91bf8323deb0b29246e7e52db6778
 (6.9.13-51)
 CVE-2026-55577 (ImageMagick is free and open-source software used for editing 
and mani ...)
-       {DSA-6383-1}
+       {DSA-6383-1 DLA-4680-1}
        - imagemagick 8:7.1.2.26+dfsg1-1
        NOTE: 
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-wx47-rm3x-jx6p
        NOTE: Fixed by: 
https://github.com/ImageMagick/ImageMagick/commit/01ce608dd41fa358e212ebb66035b7257cd9d915
 (7.1.2-26)
@@ -5837,13 +6299,13 @@ CVE-2026-53903 (MCO is vulnerable to an Insecure Direct 
Object Reference (IDOR)
 CVE-2026-53902 (MCO does not properly enforce authorization checks in the 
/customer/se ...)
        NOT-FOR-US: MyComplianceOffice MCO
 CVE-2026-53467 (ImageMagick is free and open-source software used for editing 
and mani ...)
-       {DSA-6383-1}
+       {DSA-6383-1 DLA-4680-1}
        - imagemagick 8:7.1.2.26+dfsg1-1
        NOTE: 
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-8g53-9m3c-69xg
        NOTE: Fixed by: 
https://github.com/ImageMagick/ImageMagick/commit/9d1764c43a15b78e18a7f66649989d59079a9e15
 (7.1.2-26)
        NOTE: Fixed by: 
https://github.com/ImageMagick/ImageMagick6/commit/ad68aca5cd33e199f6cd3048da2ae62e76f05b74
 (6.9.13-51)
 CVE-2026-53466 (ImageMagick is free and open-source software used for editing 
and mani ...)
-       {DSA-6383-1}
+       {DSA-6383-1 DLA-4680-1}
        - imagemagick 8:7.1.2.26+dfsg1-1
        NOTE: 
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-pjxj-pchx-4c3m
        NOTE: Fixed by: 
https://github.com/ImageMagick/ImageMagick/commit/47ca7210515f3c9ea033b86fe4323a70caa74468
 (7.1.2-26)
@@ -6339,7 +6801,7 @@ CVE-2026-56413 (Storage Concentrator (SC & SCVM) contains 
a command injection vu
 CVE-2026-56399 (Open WebUI before 0.6.27 contains a server-side request 
forgery vulner ...)
        NOT-FOR-US: Open WebUI
 CVE-2026-56377 (ImageMagick before 7.1.2-24 contains an incorrect policy check 
that al ...)
-       {DSA-6383-1}
+       {DSA-6383-1 DLA-4680-1}
        - imagemagick 8:7.1.2.24+dfsg1-1
        NOTE: 
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-gm48-c7f2-v67p
        NOTE: Fixed by: 
https://github.com/ImageMagick/ImageMagick/commit/3705205e1424d379c2fc46c026c8560ccea0509e
 (7.1.2-24)
@@ -6349,7 +6811,7 @@ CVE-2026-56369 (ImageMagick before 7.1.2-22 contains an 
information disclosure v
        NOTE: 
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-qv2q-c278-pch5
        NOTE: Fixed by documentation upgrade 
https://github.com/ImageMagick/ImageMagick/issues/8837#event-27569522488
 CVE-2026-56365 (ImageMagick before 7.1.2-19 contains a memory leak 
vulnerability in th ...)
-       {DSA-6383-1}
+       {DSA-6383-1 DLA-4680-1}
        - imagemagick 8:7.1.2.19+dfsg1-1
        NOTE: 
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-x928-4434-crqj
        NOTE: Fixed by: 
https://github.com/ImageMagick/ImageMagick/commit/ca761f220bbf0470e2e7967639bcfb5be305ad28
 (7.1.2-19)
@@ -6365,13 +6827,13 @@ CVE-2026-56364 (ImageMagick before 7.1.2-13 contains a 
memory leak vulnerability
        NOTE: Fixed by [2/2]: 
https://github.com/ImageMagick/ImageMagick/commit/5fd4e5ad05a986b00e1519fa308ca3c5cf3d09d8
 (7.1.2-14)
        NOTE: ImageMagick function LoadOpenCLDeviceBenchmark not present in 
ImageMagick6
 CVE-2026-56363 (ImageMagick before 7.1.2-22 contains a division by zero 
vulnerability  ...)
-       {DSA-6383-1}
+       {DSA-6383-1 DLA-4680-1}
        - imagemagick 8:7.1.2.23+dfsg1-1
        NOTE: 
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-vf33-6r7x-66xx
        NOTE: Fixed by: 
https://github.com/ImageMagick/ImageMagick/commit/d67eef71764cfeca07b4edf8a8ae922180f5f2e4
 (7.1.2-22)
        NOTE: Fixed by: 
https://github.com/ImageMagick/ImageMagick6/commit/7a48e0b3107608c7d87a172473cfd5294bc9e81f
 (6.9.13-47)
 CVE-2026-56361 (ImageMagick before 7.1.2-19 contains an off-by-one error in 
morphology ...)
-       {DSA-6383-1}
+       {DSA-6383-1 DLA-4680-1}
        - imagemagick 8:7.1.2.19+dfsg1-1
        NOTE: 
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-q8h3-jv9v-57qx
        NOTE: Fixed by: 
https://github.com/ImageMagick/ImageMagick/commit/a6bfb1bb7b4017ec52f5a957641d83ce29b63286
 (7.1.2-19)
@@ -12646,13 +13108,13 @@ CVE-2026-57280 (Jenkins Script Security Plugin 
1402.v94c9ce464861 and earlier do
 CVE-2026-56761 (hono before 4.12.14 contains an html injection vulnerability 
in jsx se ...)
        NOT-FOR-US: Hono
 CVE-2026-56370 (ImageMagick before 7.1.2-19 contains an out-of-bounds access 
vulnerabi ...)
-       {DSA-6383-1}
+       {DSA-6383-1 DLA-4680-1}
        - imagemagick 8:7.1.2.19+dfsg1-1
        NOTE: 
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-pmpg-6pww-fg6q
        NOTE: Fixed by: 
https://github.com/ImageMagick/ImageMagick/commit/2ab24d74865ab92faeeefe0fec890abf1e88e57c
 (7.1.2-19)
        NOTE: Fixed by: 
https://github.com/ImageMagick/ImageMagick6/commit/60b4e60841b429d719c59144e2505c8b0135367d
 (6.9.13-44)
 CVE-2026-56368 (ImageMagick before 7.1.2-15 contains a memory leak 
vulnerability in mu ...)
-       {DSA-6383-1}
+       {DSA-6383-1 DLA-4680-1}
        - imagemagick 8:7.1.2.15+dfsg1-1
        NOTE: 
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-wfx3-6g53-9fgc
        NOTE: Fixed by: 
https://github.com/ImageMagick/ImageMagick/commit/fe0a49a58ac5b7a18ff2618b6207dcad71123e43
 (7.1.2-14)
@@ -14505,13 +14967,13 @@ CVE-2026-56379 (ImageMagick before 7.1.2-15 and 
6.9.13-40 contains a command inj
        NOTE: bookworm/bullseye fixed by backporting svg/msl coder from 
6.9.13-41
        NOTE: trixie fixed by backporting svg/msl to 7.1.2-16
 CVE-2026-56376 (ImageMagick before 7.1.2-15 and 6.9.13-40 contains a heap 
use-after-fr ...)
-       {DSA-6383-1}
+       {DSA-6383-1 DLA-4680-1}
        - imagemagick 8:7.1.2.15+dfsg1-1
        NOTE: 
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-2gq3-ww97-wfjm
        NOTE: Fixed by: 
https://github.com/ImageMagick/ImageMagick/commit/f5049954f12c6fcf090a776767526d2a4708d58b
 (7.1.2-14)
        NOTE: Fixed by: 
https://github.com/ImageMagick/ImageMagick6/commit/94062bdf70dacc9714f2ff46a5920ceac63836cf
 (6.9.13-39)
 CVE-2026-56371 (ImageMagick before 7.1.2-15 and 6.9.13-40 contains a memory 
leak in co ...)
-       {DSA-6383-1}
+       {DSA-6383-1 DLA-4680-1}
        - imagemagick 8:7.1.2.15+dfsg1-1
        NOTE: 
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-3q5f-gmjc-38r8
        NOTE: Fixed by: 
https://github.com/ImageMagick/ImageMagick/commit/e6394098af39a9689bb5f0b4eb6a9968e449a8d3
 (7.1.2-14)
@@ -15694,13 +16156,13 @@ CVE-2025-71351 (picklescan before 0.0.25 fails to 
detect malicious pickle files
 CVE-2025-71348 (picklescan before 0.0.28 fails to detect malicious pickle 
files that i ...)
        NOT-FOR-US: picklescan
 CVE-2026-56367 (ImageMagick before 7.1.2-15 and 6.9.x before 6.9.13-40 
contains an int ...)
-       {DSA-6383-1}
+       {DSA-6383-1 DLA-4680-1}
        - imagemagick 8:7.1.2.15+dfsg1-1
        NOTE: 
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-273h-m46v-96q4
        NOTE: Fixed by: 
https://github.com/ImageMagick/ImageMagick/commit/5b91ab69af614024255fd93dcc9a62b41fbc435c
 (7.1.2-14)
        NOTE: Fixed by: 
https://github.com/ImageMagick/ImageMagick6/commit/f4976eb8efe87009eec7cb12f62a3abd1cef4881
 (6.9.13-39)
 CVE-2026-56378 (ImageMagick before 7.1.2-15 (and 6.x before 6.9.13-40) 
contains a heap ...)
-       {DSA-6383-1}
+       {DSA-6383-1 DLA-4680-1}
        - imagemagick 8:7.1.2.15+dfsg1-1
        NOTE: 
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-wgxp-q8xq-wpp9
        NOTE: Fixed by: 
https://github.com/ImageMagick/ImageMagick/commit/436e5d2589e3c0adc10d9aa189e81d5d088d8207
 (7.1.2-14)
@@ -32355,6 +32817,7 @@ CVE-2026-2374 (The Login No Captcha reCAPTCHA plugin 
for WordPress is vulnerable
 CVE-2026-21785 (A misconfigured Content Security Policy (CSP) in HCL BigFix 
Remote Con ...)
        NOT-FOR-US: HCL
 CVE-2026-48112 (7-Zip is a file archiver with a high compression ratio. 
Versions 9.18  ...)
+       {DLA-4681-1}
        - 7zip 26.01+dfsg-1
        [trixie] - 7zip <no-dsa> (Minor issue)
        [bookworm] - 7zip 22.01+really26.01+dfsg-0+deb12u1
@@ -32363,6 +32826,7 @@ CVE-2026-48112 (7-Zip is a file archiver with a high 
compression ratio. Versions
        NOTE: depending on 7zip. Mark this version as fixed version.
        NOTE: 
https://securitylab.github.com/advisories/GHSL-2026-115_GHSL-2026-122_7-zip/
 CVE-2026-48111 (7-Zip is a file archiver with a high compression ratio. 
Versions 9.21  ...)
+       {DLA-4681-1}
        - 7zip 26.01+dfsg-1 (unimportant)
        [bookworm] - 7zip 22.01+really26.01+dfsg-0+deb12u1
        - p7zip 16.02+transitional.1 (unimportant)
@@ -32371,6 +32835,7 @@ CVE-2026-48111 (7-Zip is a file archiver with a high 
compression ratio. Versions
        NOTE: 
https://securitylab.github.com/advisories/GHSL-2026-115_GHSL-2026-122_7-zip/
        NOTE: Crash in CLI tool, no security impact
 CVE-2026-48104 (7-Zip is a file archiver with a high compression ratio. 
Versions 9.18  ...)
+       {DLA-4681-1}
        - 7zip 26.01+dfsg-1 (unimportant)
        [bookworm] - 7zip 22.01+really26.01+dfsg-0+deb12u1
        - p7zip 16.02+transitional.1 (unimportant)
@@ -32379,6 +32844,7 @@ CVE-2026-48104 (7-Zip is a file archiver with a high 
compression ratio. Versions
        NOTE: 
https://securitylab.github.com/advisories/GHSL-2026-115_GHSL-2026-122_7-zip/
        NOTE: Crash in CLI tool, no security impact
 CVE-2026-48103 (7-Zip is a file archiver with a high compression ratio. 
Versions 9.34  ...)
+       {DLA-4681-1}
        - 7zip 26.01+dfsg-1 (unimportant)
        [bookworm] - 7zip 22.01+really26.01+dfsg-0+deb12u1
        - p7zip 16.02+transitional.1 (unimportant)
@@ -32387,6 +32853,7 @@ CVE-2026-48103 (7-Zip is a file archiver with a high 
compression ratio. Versions
        NOTE: 
https://securitylab.github.com/advisories/GHSL-2026-115_GHSL-2026-122_7-zip/
        NOTE: Crash in CLI tool, no security impact
 CVE-2026-48102 (7-Zip is a file archiver with a high compression ratio. 
Versions 9.11  ...)
+       {DLA-4681-1}
        - 7zip 26.01+dfsg-1 (unimportant)
        [bookworm] - 7zip 22.01+really26.01+dfsg-0+deb12u1
        - p7zip 16.02+transitional.1 (unimportant)
@@ -32395,6 +32862,7 @@ CVE-2026-48102 (7-Zip is a file archiver with a high 
compression ratio. Versions
        NOTE: 
https://securitylab.github.com/advisories/GHSL-2026-115_GHSL-2026-122_7-zip/
        NOTE: Crash in CLI tool, no security impact
 CVE-2026-48101 (7-Zip is a file archiver with a high compression ratio. 
Versions 9.21  ...)
+       {DLA-4681-1}
        - 7zip 26.01+dfsg-1 (unimportant)
        [bookworm] - 7zip 22.01+really26.01+dfsg-0+deb12u1
        - p7zip 16.02+transitional.1 (unimportant)
@@ -32403,6 +32871,7 @@ CVE-2026-48101 (7-Zip is a file archiver with a high 
compression ratio. Versions
        NOTE: 
https://securitylab.github.com/advisories/GHSL-2026-115_GHSL-2026-122_7-zip/
        NOTE: Crash in CLI tool, no security impact
 CVE-2026-48092 (7-Zip is a file archiver with a high compression ratio. 
Versions 9.34  ...)
+       {DLA-4681-1}
        - 7zip 26.01+dfsg-1 (unimportant)
        [bookworm] - 7zip 22.01+really26.01+dfsg-0+deb12u1
        - p7zip 16.02+transitional.1 (unimportant)
@@ -32411,6 +32880,7 @@ CVE-2026-48092 (7-Zip is a file archiver with a high 
compression ratio. Versions
        NOTE: 
https://securitylab.github.com/advisories/GHSL-2026-115_GHSL-2026-122_7-zip/
        NOTE: Crash in CLI tool, no security impact
 CVE-2026-48095 (7-Zip is a file archiver with a high compression ratio. 
Versions 26.00 ...)
+       {DLA-4681-1}
        - 7zip 26.01+dfsg-1
        [trixie] - 7zip <no-dsa> (Minor issue)
        [bookworm] - 7zip 22.01+really26.01+dfsg-0+deb12u1
@@ -74671,7 +75141,7 @@ CVE-2025-46598 (Bitcoin Core through 29.0 allows a 
denial of service via a craft
        - bitcoin <removed>
 CVE-2025-46597 (Bitcoin Core 0.13.0 through 29.x has an integer overflow.)
        - bitcoin <removed>
-CVE-2025-15608 (This vulnerability in AX53 v1 results from insufficient input 
sanitiza ...)
+CVE-2025-15608 (This vulnerability in AX53 v1, AX55 v4 and AX55 v4.6 results 
from insu ...)
        NOT-FOR-US: TPLink
 CVE-2025-15607 (A command injection vulnerability on AX53 v1 occurs in mscd 
debug func ...)
        NOT-FOR-US: TPLink



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2031b4bc05aae40e653d3f0c79740f0bd62ff931

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2031b4bc05aae40e653d3f0c79740f0bd62ff931
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help


_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to