Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 00e2c885 by Salvatore Bonaccorso at 2026-06-17T08:15:12+02:00 Add CVE-2026-53612/util-linux - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,3 +1,8 @@ +CVE-2026-53612 [Local Privilege Escalation via TOCTOU in mount(8) hook_owner.c chmod/chown] + - util-linux <unfixed> + [bookworm] - util-linux <not-affected> (Vulnerable code introduced later) + [bullseye] - util-linux <not-affected> (Vulnerable code introduced later) + NOTE: https://github.com/util-linux/util-linux/security/advisories/GHSA-g8wm-75wr-g2vh CVE-2026-36849 [Denial of Service via large SamplesPerPixel tag] - tiff <unfixed> NOTE: https://www.openwall.com/lists/oss-security/2026/06/17/1 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/00e2c8856e65a8df036a59ff1146767dc9c1e1a5 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/00e2c8856e65a8df036a59ff1146767dc9c1e1a5 You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
