Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
dae8c735 by Salvatore Bonaccorso at 2026-02-12T22:50:25+01:00
Track fixed version via unstable for two haproxy issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -166,13 +166,13 @@ CVE-2026-2003 (Improper validation of type "oidvector" in
PostgreSQL allows a da
NOTE: Fixed by:
https://git.postgresql.org/gitweb/?p=postgresql.git;a=commit;h=3b6588cd902faa967f61f539f057f9b7643cf6a5
(REL_18_2)
CVE-2026-26081 [BUG/MAJOR: quic: reject invalid token]
{DSA-6130-1}
- - haproxy <unfixed>
+ - haproxy 3.2.11-2
[bookworm] - haproxy <not-affected> (Vulnerable code introduced later)
[bullseye] - haproxy <not-affected> (Vulnerable code introduced later)
NOTE: Fixed by:
https://git.haproxy.org/?p=haproxy-3.0.git;a=commit;h=a05eade0f07483e6b6d0b61b1749e9093647e802
(v3.0.16)
NOTE: Fixed by:
https://git.haproxy.org/?p=haproxy-3.2.git;a=commit;h=4765277f4f915baac2d57db63538ff0a59966deb
(v3.2.12)
CVE-2026-26080 [BUG/MAJOR: quic: fix parsing frame type]
- - haproxy <unfixed>
+ - haproxy 3.2.11-2
[trixie] - haproxy <not-affected> (Vulnerable code introduced later)
[bookworm] - haproxy <not-affected> (Vulnerable code introduced later)
[bullseye] - haproxy <not-affected> (Vulnerable code introduced later)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dae8c735749c6308c688397fd367ed6d9bd082a3
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dae8c735749c6308c688397fd367ed6d9bd082a3
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
