[Git][security-tracker-team/security-tracker][master] Add CVE-2026-26203/pjproject

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
16d3bd56 by Salvatore Bonaccorso at 2026-02-19T22:18:32+01:00
Add CVE-2026-26203/pjproject

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -99,7 +99,9 @@ CVE-2026-26223 (SPIP before 4.4.8 allows Cross-Site Scripting 
(XSS) in the priva
 CVE-2026-26205 (opa-envoy-plugun is a plugin to enforce OPA policies with 
Envoy. Versi ...)
        NOT-FOR-US: opa-envoy-plugun
 CVE-2026-26203 (PJSIP is a free and open source multimedia communication 
library. Vers ...)
-       TODO: check
+       - pjproject <removed>
+       NOTE: 
https://github.com/pjsip/pjproject/security/advisories/GHSA-p965-mf7j-gwv8
+       NOTE: Fixed by: 
https://github.com/pjsip/pjproject/commit/5aee54f09d4f91538d55279d7316591b28fded6c
 CVE-2026-26202 (Penpot is an open-source design tool for design and code 
collaboration ...)
        NOT-FOR-US: Penpot
 CVE-2026-26201 (emp3r0r is a C2 designed by Linux users for Linux 
environments. Prior  ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/16d3bd56d9d7ed5bf14f2a17bfee8db483b4e53b

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/16d3bd56d9d7ed5bf14f2a17bfee8db483b4e53b
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits