debian-security-tracker-commits  

Messages by Thread

• [Git][security-tracker-team/security-tracker][master] CVE-2021-32785/libapache2-mod-auth-openidc: restore and update stretch line Sylvain Beucler (@beuc)
• [Git][security-tracker-team/security-tracker][master] Triage CVE-2026-33555 in haproxy for bullseye LTS. Chris Lamb (@lamby)
• [Git][security-tracker-team/security-tracker][master] Reserve DLA-4537-1 for mapserver Guilhem Moulin (@guilhem)
• [Git][security-tracker-team/security-tracker][master] Correct deepdiff typo. Chris Lamb (@lamby)
• [Git][security-tracker-team/security-tracker][master] Reserve DLA-4536-1 for tiff Emilio Pozuelo Monfort (@pochu)
• [Git][security-tracker-team/security-tracker][master] jq spu Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] CVE-2021-32785/libapache2-mod-auth-openidc: introductory commit Sylvain Beucler (@beuc)
• [Git][security-tracker-team/security-tracker][master] Restore tracking of experimental version for CVE-2026-28434 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Update status for CVE-2026-41015 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Reserve DLA-4524-2 for postgresql-13 Jochen Sprickerhof (@jspricke)
• [Git][security-tracker-team/security-tracker][master] Reference fixing commits for CVE-2026-27820 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-40170/ngtcp2 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Sync upstream tag for CVE-2026-35535 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track proposed update for libexif via trixie-pu Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Process two new mattermost-server issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add two issues in weblate, itp'ed Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track fixed version for libexif issues fixed via unstable Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] imagemagick fixed in sid Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] cpp-httplib fixed in sid Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] auto-nfu: Add rule for HashiCorp Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] Add rsync to dla-needed @rouca
• [Git][security-tracker-team/security-tracker][master] Add libraw to dla-needed @rouca
• [Git][security-tracker-team/security-tracker][master] Add deepdepth to dla-needed @rouca
• [Git][security-tracker-team/security-tracker][master] Add composer to dla-needed @rouca
• [Git][security-tracker-team/security-tracker][master] Add bouncycastle dla-needed @rouca
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-40260/pypdf Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Process more NFUs Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] python2.7 eol for bullseye @rouca
• [Git][security-tracker-team/security-tracker][master] 2 commits: lts triagging for bullseye @rouca
• [Git][security-tracker-team/security-tracker][master] Process NFUs Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] node-axios/bullseye @rouca
• [Git][security-tracker-team/security-tracker][master] dla-needed add keystone @rouca
• [Git][security-tracker-team/security-tracker][master] lts add to dla-needed @rouca
• [Git][security-tracker-team/security-tracker][master] new radare2 issue Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] new fio non issue (concludes external check) Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] new ruby issue Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] Track fixed version for phpseclib for CVE-2026-40194 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2026-39984 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2026-35469 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-3505/bouncycastle Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-40179 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add set of yubico issues from ysa-2026-01 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track fixes for jq via unstable Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] dla-needed: update NOTE for libexif Emmanuel Arias (@eamanu)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-40962/ffmpeg Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Remvoe jython from CVE-2026-1502 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add information for CVE-2026-2714{3,4} Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-3590/mattermost-server, itp'ed Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-40505/mupdf Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-41080/expat Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add two new bouncycastle issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Remove trailing whitespace from note Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-6409/protobuf Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-40192/pillow Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Update hexpm issues to clarify server side status Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Reference directly hex_core advisory for CVE-2026-21619 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] opam CVEfied Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] cleanup rejected CVE Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] new opam issue Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] CVE-2026-28802 Emmanuel Arias (@eamanu)
• [Git][security-tracker-team/security-tracker][master] LTS: claim libexif in dla-needed.txt Emmanuel Arias (@eamanu)
• [Git][security-tracker-team/security-tracker][master] Reserve DLA-4535-1 for openssh Emilio Pozuelo Monfort (@pochu)
• [Git][security-tracker-team/security-tracker][master] Reserve DLA-4534-1 for thunderbird Emilio Pozuelo Monfort (@pochu)
• [Git][security-tracker-team/security-tracker][master] Reference full commit id for one commit for CVE-2026-34003 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Claim jackson-core in das-needed.txt Markus Koschany (@apo)
• [Git][security-tracker-team/security-tracker][master] Claim tomcat10 and tomcat11 in dsa-needed.txt Markus Koschany (@apo)
• [Git][security-tracker-team/security-tracker][master] Add new issue in rsync Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] auto-nfu: Add Microsoft Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] auto-nfu: Add upKeeper Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] new golang-github-docker-spdystream issue Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-6245/sssd Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-6384/gimp Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-40919/gimp Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-40918/gimp Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-40917/gimp Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-40916/gimp Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-40915/gimp Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add one additional CVE for chromium Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add two NFUs from external check Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Two CVEs assigned for luanti issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track fixes for chromium via unstable Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] tomcat11 fixed in sid Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] CVE-2025-52999,jackson-core: fixed in unstable Markus Koschany (@apo)
• [Git][security-tracker-team/security-tracker][master] Reference branch name for upstream commits Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add two new composer issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] lxd, incus DSAs Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] Add Debian bug references for libexif Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add Debian bug references for jq Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Claim simpleeval in dla-needed.txt Santiago R.R. (@santiago)
• [Git][security-tracker-team/security-tracker][master] Assign luanti to jmm for dsa release Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] bugnum for luanti issues Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] new luanti issues Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] CVE-2026-35535/sudo: introductory commit + bullseye postponed Sylvain Beucler (@beuc)
• [Git][security-tracker-team/security-tracker][master] Track proposed updates for openvswitch via {trixie,bookworm}-pu Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add new libsixel issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-33414/podman Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add two issues in oauth2-proxy Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add two issues in serendipity, removed Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-39984/golang-github-sigstore-timestamp-authority Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-40499/radare2 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-40719/maradns Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] dla: perl status update Sylvain Beucler (@beuc)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-5160/golang-github-yuin-goldmark Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-6228 as NFU Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Mark xorg-server issues as no-dsa, they are minor and can be batched in point release Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-5088 as NFU Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] new Python issue (concludes external check) Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] new leaflet issue Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-40683/keystone Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Use renamed ITP for jellyfin-server component Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add new jellyfin issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2025-53901/rust-wasmtime Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2026-24116 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track fixed version for rust-wasmtime issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Mark CVE-2026-40354 as no-dsa Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Reserve DLA-4533-1 for systemd Arnaud Rebillout (@arnaudr)
• [Git][security-tracker-team/security-tracker][master] 3 commits: Reserve DLA-4532-1 for python3.9 Arnaud Rebillout (@arnaudr)
• [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for libraw issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add Debian bug references for apache-log4j2 issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker] Deleted branch users/ecite/suricata-cves-add-notes-20260412 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] 2 commits: suricata: Update infos on latest CVEs for 8.0.4 / 7.0.15 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-2332/jetty Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add two more jq issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-37980/keycloak, itp'ed Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-38533/snipe-it Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add new jq issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Mark CVE-2026-34956 as no-dsa Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for more mbedtls issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for rust-wasmtime issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add Debian bug references for corosync issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add bug reference for wolfssl issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Adjust proposed keystone version for bookworm-pu Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2026-6192/openjpeg2 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] keystone ospu Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] Add tracking for keystone issue proposed via trixie-pu Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Mark CVE-2026-33551 as no-dsa Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2026-34177/incus according to maintainer Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add references to pull requests for incus Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track fixed version for incus issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track fixed version for thunderbird issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Adjust upstream reference for CVE-2026-40183 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add upstream tag information for CVE-2026-40169 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add references for CVE-2026-33929 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add upstream tag reference for CVE-2020-37167 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] CVE-2026-1462/bullseye @rouca
• [Git][security-tracker-team/security-tracker][master] Track fixed versions for xwayland issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add golang-github-sigstore-cosign-v2 for CVE-2026-39395 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track fixed version for golang-github-go-git-go-git issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track fixed version for xorg-server issues fixed via unstable Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add new xorg-server issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] new imagemagick issues Moritz Muehlenhoff (@jmm)
  • [Git][security-tracker-team/security-tracker][master] new imagemagick issues Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] lts: Colin will handle the openssh upload Emilio Pozuelo Monfort (@pochu)
• [Git][security-tracker-team/security-tracker][master] lts: take openssh Emilio Pozuelo Monfort (@pochu)
• [Git][security-tracker-team/security-tracker][master] imagemagick security issue Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] lts: take tiff Emilio Pozuelo Monfort (@pochu)
• [Git][security-tracker-team/security-tracker][master] Reserve DLA-4531-1 for gdk-pixbuf Emilio Pozuelo Monfort (@pochu)
• [Git][security-tracker-team/security-tracker][master] Add haproxy to dla-needed @rouca
• [Git][security-tracker-team/security-tracker][master] ignore gokey issue for bullseye @rouca
• [Git][security-tracker-team/security-tracker][master] Add dcmtk to dla-needed @rouca
• [Git][security-tracker-team/security-tracker][master] Add coturn to dla-needed @rouca
• [Git][security-tracker-team/security-tracker][master] Add cbor2 to dla-needed @rouca
• [Git][security-tracker-team/security-tracker][master] capnproto/bullseye @rouca
• [Git][security-tracker-team/security-tracker][master] dla-needed add c3p0 @rouca
• [Git][security-tracker-team/security-tracker][master] CVE-2026-33929 Apache PDFBox Examples, examples are not shipped in the Debian package Henri Salo (@hsalo-guest)
• [Git][security-tracker-team/security-tracker][master] NFU CVE-2026-31908, CVE-2026-31924 Apache APISIX Henri Salo (@hsalo-guest)
• [Git][security-tracker-team/security-tracker][master] NFU CVE-2026-31923 Apache APISIX Henri Salo (@hsalo-guest)
• [Git][security-tracker-team/security-tracker][master] two bogus ffmpeg CVEs Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] update status for CVE-2020-37167 Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-5086 as NFU Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Fixed-by links for python3 Arnaud Rebillout (@arnaudr)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-32316/jq Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2025-33858/airflow Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-33555/haproxy Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] xdg-dbus-proxy DSA Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] Add openexr to dla-needed @rouca
• [Git][security-tracker-team/security-tracker][master] bullseye triagging @rouca
  • [Git][security-tracker-team/security-tracker][master] bullseye triagging @rouca
  • [Git][security-tracker-team/security-tracker][master] bullseye triagging @rouca
  • [Git][security-tracker-team/security-tracker][master] bullseye triagging @rouca
• [Git][security-tracker-team/security-tracker][master] Add firewalld to dla-needed @rouca
• [Git][security-tracker-team/security-tracker][master] Add apache-log4j2 to dla-needed @rouca
• [Git][security-tracker-team/security-tracker][master] Add activemq/dla-needed @rouca
• [Git][security-tracker-team/security-tracker][master] CVE-2026-35611/bullseye @rouca
• [Git][security-tracker-team/security-tracker][master] CVE-2026-34073/bullseye @rouca
• [Git][security-tracker-team/security-tracker][master] CVE-2026-3446/bullseye @rouca
• [Git][security-tracker-team/security-tracker][master] 2 commits: Process some Apache specific NFUs Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] nasm/bullseye @rouca
• [Git][security-tracker-team/security-tracker][master] musl/bullseye @rouca
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-6231/mongo-c-driver Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-6192/openjpeg2 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2023-28628 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Drop noe from one rejected CVE Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-6100/python Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-29043/hdf5 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-40394/varnish Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] CVE-2026-27459/pyopenssl: bullseye not-affected Sylvain Beucler (@beuc)
• [Git][security-tracker-team/security-tracker][master] Track fixed version for tomcat10 issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Reserve DLA-4530-1 for gst-plugins-bad1.0 Thorsten Alteholz (@alteholz)
• [Git][security-tracker-team/security-tracker][master] Track fixed version for rails issues Salvatore Bonaccorso (@carnil)

• Earlier messages