Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d29eb904 by Salvatore Bonaccorso at 2026-06-12T21:53:06+02:00
Add new mattermost-server issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -13,23 +13,23 @@ CVE-2026-8828 (A lack of authorization validation in
version 1.0.0 or later of t
CVE-2026-8694 (Improper access control in Devolutions PowerShell Universal
2026.1.7 a ...)
NOT-FOR-US: Devolutions
CVE-2026-7387 (Mattermost versions 11.6.x <= 11.6.1, 11.5.x <= 11.5.4, 10.11.x
<= 10. ...)
- TODO: check
+ - mattermost-server <itp> (bug #823556)
CVE-2026-7368 (The Yarbo cloud does not enforce per-device or per-user
authorization. ...)
NOT-FOR-US: Yarbo
CVE-2026-7184 (Mattermost versions 11.6.x <= 11.6.1, 11.5.x <= 11.5.4, 10.11.x
<= 10. ...)
- TODO: check
+ - mattermost-server <itp> (bug #823556)
CVE-2026-6961 (Mattermost versions 11.6.x <= 11.6.1, 11.5.x <= 11.5.4, 10.11.x
<= 10. ...)
- TODO: check
+ - mattermost-server <itp> (bug #823556)
CVE-2026-6853 (Improper restriction of excessive authentication attempts
vulnerabilit ...)
NOT-FOR-US: Pause+ Mobile App
CVE-2026-6739 (Mattermost versions 11.6.x <= 11.6.1, 11.5.x <= 11.5.4, 10.11.x
<= 10. ...)
- TODO: check
+ - mattermost-server <itp> (bug #823556)
CVE-2026-6689 (Mattermost versions 11.6.x <= 11.6.1, 11.5.x <= 11.5.4, 10.11.x
<= 10. ...)
- TODO: check
+ - mattermost-server <itp> (bug #823556)
CVE-2026-6211 (Unrestricted upload of file with dangerous type vulnerability
in Globa ...)
NOT-FOR-US: WEOLL
CVE-2026-6046 (Mattermost versions 11.6.x <= 11.6.1, 11.5.x <= 11.5.4, 10.11.x
<= 10. ...)
- TODO: check
+ - mattermost-server <itp> (bug #823556)
CVE-2026-5792 (Authentication bypass by spoofing vulnerability in Hedef Media
Promoti ...)
NOT-FOR-US: Related Marketing Cloud (RMC)
CVE-2026-54133 (jmespath.php allows users to use JMESPath, software for
declaratively ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d29eb904684edc4184c51ce70007ee7a0e019f2f
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d29eb904684edc4184c51ce70007ee7a0e019f2f
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits