Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
284683f1 by Salvatore Bonaccorso at 2026-06-18T08:10:52+02:00
Process two firefox issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1557,9 +1557,9 @@ CVE-2026-54191 (Unauthenticated Cross Site Scripting
(XSS) in Pods <= 3.3.8 vers
CVE-2026-54190 (Unauthenticated Broken Access Control in Envira Photo Gallery
<= 1.12. ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2026-53900 (Firefox for iOS preserved cookies set on the initial PDF
request acros ...)
- TODO: check
+ - firefox <not-affected> (Only affects Firefox for iOS)
CVE-2026-53899 (Firefox for iOS used partial domain matching when attaching
cookies to ...)
- TODO: check
+ - firefox <not-affected> (Only affects Firefox for iOS)
CVE-2026-53866 (OpenClaw before 2026.5.12 contains an allowlist bypass
vulnerability i ...)
NOT-FOR-US: OpenClaw
CVE-2026-53865 (OpenClaw before 2026.5.2 contains a path traversal
vulnerability in ma ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/284683f122ad9041ba65e84f71222ce8f94bc5dc
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/284683f122ad9041ba65e84f71222ce8f94bc5dc
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits