Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
fff7da75 by Salvatore Bonaccorso at 2026-06-12T23:15:02+02:00
Update status for two python-kafka issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -949,7 +949,10 @@ CVE-2026-10795 (The UpdraftPlus: WP Backup & Migration 
Plugin plugin for WordPre
 CVE-2026-10733 (GitLab has remediated an issue in GitLab CE/EE affecting all 
versions  ...)
        NOT-FOR-US: GitLab (used to be packaged in the Debian archive as 
src:gitlab, but never in a stable release)
 CVE-2026-10142 (kafka-python prior to 2.3.2 contains a denial-of-service 
vulnerability ...)
-       TODO: check
+       - python-kafka <unfixed>
+       NOTE: https://github.com/dpkp/kafka-python/pull/3019
+       NOTE: https://github.com/dpkp/kafka-python/pull/3026
+       NOTE: Fixed by: 
https://github.com/dpkp/kafka-python/commit/6e4831444f972d169cdd11f5c8d50333cea3f19b
 (3.0.0)
 CVE-2026-10087 (GitLab has remediated an issue in GitLab EE affecting all 
versions fro ...)
        NOT-FOR-US: GitLab (used to be packaged in the Debian archive as 
src:gitlab, but never in a stable release)
 CVE-2026-0274 (An improper validation of credentials vulnerability in the 
CommvaultSe ...)
@@ -1013,6 +1016,9 @@ CVE-2022-48575 (A person with access to a Mac may be able 
to bypass Login Window
 CVE-2026-10143 (kafka-python prior to 2.3.2 contains a denial-of-service 
vulnerability ...)
        - python-kafka <unfixed> (bug #1139822)
        NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2487722
+       NOTE: https://github.com/dpkp/kafka-python/pull/3019
+       NOTE: https://github.com/dpkp/kafka-python/pull/3026
+       NOTE: Fixed by: 
https://github.com/dpkp/kafka-python/commit/6e4831444f972d169cdd11f5c8d50333cea3f19b
 (3.0.0)
 CVE-2026-6893 (A flaw was found in dracut. A remote attacker on the adjacent 
network  ...)
        - dracut <unfixed> (bug #1139725)
        [trixie] - dracut <no-dsa> (Minor issue)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fff7da75ac2cf44c9b3229e950a919316a495d65

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fff7da75ac2cf44c9b3229e950a919316a495d65
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help


_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to