Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
cd7d60bd by Salvatore Bonaccorso at 2026-06-11T07:24:19+02:00
Add reference to reported openssl issue for CVE fixes
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1622,7 +1622,7 @@ CVE-2016-20062 (Simply Poll 1.4.1 plugin for WordPress
contains an SQL injection
NOT-FOR-US: WordPress plugin
CVE-2026-45446 (Issue summary: The implementations of AES-SIV (RFC 5297) and
AES-GCM-S ...)
{DSA-6335-1}
- - openssl <unfixed>
+ - openssl <unfixed> (bug #1139674)
NOTE: https://openssl-library.org/news/secadv/20260609.txt
NOTE: Fixed by:
https://github.com/openssl/openssl/commit/71e2a5d263518cf5866043bd60ee4994d59e53a3
(openssl-3.0.21)
CVE-2026-42771 (Issue summary: When the X509_VERIFY_PARAM_set1_email is called
by an a ...)
@@ -1630,86 +1630,86 @@ CVE-2026-42771 (Issue summary: When the
X509_VERIFY_PARAM_set1_email is called b
NOTE: https://openssl-library.org/news/secadv/20260609.txt
CVE-2026-42770 (Issue summary: When EVP_PKEY_derive_set_peer() is called with
a DHX (X ...)
{DSA-6335-1}
- - openssl <unfixed>
+ - openssl <unfixed> (bug #1139674)
NOTE: https://openssl-library.org/news/secadv/20260609.txt
NOTE: Fixed by:
https://github.com/openssl/openssl/commit/7fbfde7677ed8808828bf00ff01c937ca04bdda2
(openssl-3.0.21)
CVE-2026-42769 (Issue Summary: An error in the callback used to verify the
certificate ...)
- - openssl <unfixed>
+ - openssl <unfixed> (bug #1139674)
[trixie] - openssl 3.5.6-1~deb13u2
[bookworm] - openssl <not-affected> (Vulnerable code not present)
[bullseye] - openssl <not-affected> (Vulnerable code not present)
NOTE: https://openssl-library.org/news/secadv/20260609.txt
CVE-2026-42768 (Issue summary: The CMS_decrypt and PKCS7_decrypt functions are
vulnera ...)
- - openssl <unfixed>
+ - openssl <unfixed> (bug #1139674)
[trixie] - openssl 3.5.6-1~deb13u2
[bookworm] - openssl <not-affected> (Vulnerable code not present)
[bullseye] - openssl <not-affected> (Vulnerable code not present)
NOTE: https://openssl-library.org/news/secadv/20260609.txt
CVE-2026-42767 (Issue summary: An attacker-controlled CMP (Certificate
Management Prot ...)
- - openssl <unfixed>
+ - openssl <unfixed> (bug #1139674)
[trixie] - openssl 3.5.6-1~deb13u2
[bookworm] - openssl <no-dsa> (Minor issue; can be fixed in next update)
NOTE: https://openssl-library.org/news/secadv/20260609.txt
NOTE: Fixed by:
https://github.com/openssl/openssl/commit/61a86a8cd73546c9fea916f3d304c1293e05c046
(openssl-3.0.21)
CVE-2026-42766 (Issue summary: A specially crafted password-encrypted CMS
message can ...)
{DSA-6335-1}
- - openssl <unfixed>
+ - openssl <unfixed> (bug #1139674)
NOTE: https://openssl-library.org/news/secadv/20260609.txt
NOTE: Fixed by:
https://github.com/openssl/openssl/commit/3ff64913615d648cfbb6a6f1cf5529ae7ea829d7
(openssl-3.0.21)
NOTE: Fixed by:
https://github.com/openssl/openssl/commit/ba699b606969d20a108dda3cfe5422d4cc94eefb
(openssl-3.0.21)
CVE-2026-42765 (Issue summary: When a partial-chain certificate verification
is enable ...)
- - openssl <unfixed>
+ - openssl <unfixed> (bug #1139674)
[trixie] - openssl <not-affected> (Vulnerable code not present)
[bookworm] - openssl <not-affected> (Vulnerable code not present)
[bullseye] - openssl <not-affected> (Vulnerable code not present)
NOTE: https://openssl-library.org/news/secadv/20260609.txt
CVE-2026-34181 (Issue Summary: The PKCS#12 file processing fails to perform
sufficient ...)
- - openssl <unfixed>
+ - openssl <unfixed> (bug #1139674)
[trixie] - openssl 3.5.6-1~deb13u2
[bookworm] - openssl <not-affected> (Vulnerable code not present)
[bullseye] - openssl <not-affected> (Vulnerable code not present)
NOTE: https://openssl-library.org/news/secadv/20260609.txt
CVE-2026-34180 (Issue summary: Parsing a crafted DER-encoded ASN.1 structure
with a pr ...)
{DSA-6335-1}
- - openssl <unfixed>
+ - openssl <unfixed> (bug #1139674)
NOTE: https://openssl-library.org/news/secadv/20260609.txt
NOTE: Fixed by:
https://github.com/openssl/openssl/commit/cbe418ae978539cf14a398a207dba834c0e93e83
(openssl-3.0.21)
CVE-2026-9076 (Issue summary: When CMS password-based decryption (RFC 3211 /
PWRI key ...)
{DSA-6335-1}
- - openssl <unfixed>
+ - openssl <unfixed> (bug #1139674)
NOTE: https://openssl-library.org/news/secadv/20260609.txt
NOTE: Fixed by:
https://github.com/openssl/openssl/commit/eecbe330977e8d023aae1ca2d9bdbe983ef3fdc6
(openssl-3.0.21)
CVE-2026-7383 (Issue summary: A signed integer overflow when sizing the
destination b ...)
{DSA-6335-1}
- - openssl <unfixed>
+ - openssl <unfixed> (bug #1139674)
NOTE: https://openssl-library.org/news/secadv/20260609.txt
NOTE: Fixed by:
https://github.com/openssl/openssl/commit/bd17511070fb39a67bfa19682affb765e706a974
(openssl-3.0.21)
CVE-2026-45445 (Issue summary: When an application drives an AES-OCB context
through t ...)
{DSA-6335-1}
- - openssl <unfixed>
+ - openssl <unfixed> (bug #1139674)
NOTE: https://openssl-library.org/news/secadv/20260609.txt
NOTE: Fixed by:
https://github.com/openssl/openssl/commit/323f0b6e7d530a4cb4336d50c88cb70f3ac2a451
(openssl-3.0.21)
CVE-2026-42764 (Issue summary: Receiving a QUIC initial packet with an invalid
token m ...)
- - openssl <unfixed>
+ - openssl <unfixed> (bug #1139674)
[trixie] - openssl 3.5.6-1~deb13u2
[bookworm] - openssl <not-affected> (Vulnerable code not present)
[bullseye] - openssl <not-affected> (Vulnerable code not present)
NOTE: https://openssl-library.org/news/secadv/20260609.txt
CVE-2026-35188 (Issue summary: A malicious server can exploit TLS OCSP
stapling by del ...)
- - openssl <unfixed>
+ - openssl <unfixed> (bug #1139674)
[trixie] - openssl <not-affected> (Vulnerable code not present)
[bookworm] - openssl <not-affected> (Vulnerable code not present)
[bullseye] - openssl <not-affected> (Vulnerable code not present)
NOTE: https://openssl-library.org/news/secadv/20260609.txt
CVE-2026-34183 (Issue summary: Remote peer may exhaust heap memory of the QUIC
server ...)
- - openssl <unfixed>
+ - openssl <unfixed> (bug #1139674)
[trixie] - openssl 3.5.6-1~deb13u2
[bookworm] - openssl <not-affected> (Vulnerable code not present)
[bullseye] - openssl <not-affected> (Vulnerable code not present)
NOTE: https://openssl-library.org/news/secadv/20260609.txt
CVE-2026-34182 (Issue Summary: Cryptographic Message Services (CMS) processing
fails t ...)
{DSA-6335-1}
- - openssl <unfixed>
+ - openssl <unfixed> (bug #1139674)
[bullseye] - openssl <not-affected> (Vulnerable code introduced later)
NOTE: https://openssl-library.org/news/secadv/20260609.txt
NOTE: Fixed by:
https://github.com/openssl/openssl/commit/03c1f4d45fb963aee7d5833390c507cd290182bc
(openssl-3.0.21)
@@ -1717,7 +1717,7 @@ CVE-2026-34182 (Issue Summary: Cryptographic Message
Services (CMS) processing f
NOTE: Introduced with:
https://github.com/openssl/openssl/commit/924663c36d47066d5307937da77fed7e872730c7
CVE-2026-45447 (Issue summary: A specially crafted PKCS#7 or S/MIME signed
message cou ...)
{DSA-6335-1}
- - openssl <unfixed>
+ - openssl <unfixed> (bug #1139674)
NOTE: https://openssl-library.org/news/secadv/20260609.txt
NOTE: Fixed by:
https://github.com/openssl/openssl/commit/9dfd688ad2290fc5075cacbc9bf0c9a93eefed54
(openssl-3.0.21)
NOTE: Fixed by:
https://github.com/openssl/openssl/commit/18de9aba8294b5fb0915866cf3a1bb45f9599b8d
(openssl-3.0.21)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cd7d60bda60db433a52b436d832283645e68ad08
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cd7d60bda60db433a52b436d832283645e68ad08
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits