Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
43649b78 by Salvatore Bonaccorso at 2026-06-11T22:54:16+02:00
Add three new issues in rust-russh
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -153,11 +153,14 @@ CVE-2026-48547 (KanaDojo contains a command injection
vulnerability that allows
CVE-2026-48546 (KanaDojo before 0.1.18 contains a sandbox escape vulnerability
that al ...)
NOT-FOR-US: KanaDojo
CVE-2026-48110 (Russh is a Rust SSH client & server library. From version
0.34.0 to be ...)
- TODO: check
+ - rust-russh <unfixed>
+ NOTE:
https://github.com/Eugeny/russh/security/advisories/GHSA-4r3c-5hpg-58qr
CVE-2026-48108 (Russh is a Rust SSH client & server library. From version
0.34.0-beta. ...)
- TODO: check
+ - rust-russh <unfixed>
+ NOTE:
https://github.com/Eugeny/russh/security/advisories/GHSA-76r6-x97p-67vr
CVE-2026-48107 (Russh is a Rust SSH client & server library. From version
0.37.0 to be ...)
- TODO: check
+ - rust-russh <unfixed>
+ NOTE:
https://github.com/Eugeny/russh/security/advisories/GHSA-g9g7-5cgw-6v28
CVE-2026-48011 (Shopware is an open commerce platform. Prior to versions
6.6.10.18 and ...)
NOT-FOR-US: Shopware
CVE-2026-47342 (A privilege escalation vulnerability in Apache OFBiz allows a
low-priv ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/43649b7813e556d331345a687d06b23bad7937a4
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/43649b7813e556d331345a687d06b23bad7937a4
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits