[Git][security-tracker-team/security-tracker][master] Add two new rekor issues

Salvatore Bonaccorso (@carnil) Thu, 22 Jan 2026 23:34:17 -0800


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
e440a4d7 by Salvatore Bonaccorso at 2026-01-23T08:33:50+01:00
Add two new rekor issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,11 @@
+CVE-2026-24117
+       - rekor <unfixed>
+       NOTE: 
https://github.com/sigstore/rekor/security/advisories/GHSA-4c4x-jm2x-pf9j
+       NOTE: Fixed by: 
https://github.com/sigstore/rekor/commit/60ef2bceba192c5bf9327d003bceea8bf1f8275f
 (v1.5.0)
+CVE-2026-23831
+       - rekor <unfixed>
+       NOTE: 
https://github.com/sigstore/rekor/security/advisories/GHSA-273p-m2cw-6833
+       NOTE: Fixed by: 
https://github.com/sigstore/rekor/commit/39bae3d192bce48ef4ef2cbd1788fb5770fee8cd
 (v1.5.0)
 CVE-2026-24390 (Improper Control of Filename for Include/Require Statement in 
PHP Prog ...)
        NOT-FOR-US: WordPress plugin or theme
 CVE-2026-24389 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e440a4d795aee5565df1a0b70313e1cb428fc1ac

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e440a4d795aee5565df1a0b70313e1cb428fc1ac
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Add two new rekor issues

Reply via email to