Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
b69c5981 by Salvatore Bonaccorso at 2026-06-27T12:16:03+02:00
Mark libnet-cidr-lite-perl issues as no-dsa

- - - - -
98655f9d by Salvatore Bonaccorso at 2026-06-27T12:16:31+02:00
Track {bookworm,trixie}-pu updates for libnet-cidr-lite-perl

- - - - -


3 changed files:

- data/CVE/list
- data/next-oldstable-point-update.txt
- data/next-point-update.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -33164,12 +33164,16 @@ CVE-2026-45192 (A bug in the GET 
`/api/v2/connections/{connection_id}` REST API
        - airflow <itp> (bug #819700)
 CVE-2026-45191 (Net::CIDR::Lite versions before 0.24 for Perl does not 
properly consid ...)
        - libnet-cidr-lite-perl 0.24-1
+       [trixie] - libnet-cidr-lite-perl <no-dsa> (Minor issue; will be fixed 
via point release)
+       [bookworm] - libnet-cidr-lite-perl <no-dsa> (Minor issue; will be fixed 
via point release)
        [bullseye] - libnet-cidr-lite-perl <postponed> (Minor issue, validation)
        NOTE: 
https://github.com/stigtsp/Net-CIDR-Lite/commit/24e2c439ec405e5256024b9acefd4f7008c5ed0c
 (0.24)
        NOTE: https://www.openwall.com/lists/oss-security/2026/05/10/7
        NOTE: https://lists.security.metacpan.org/cve-announce/msg/39920370/
 CVE-2026-45190 (Net::CIDR::Lite versions before 0.24 for Perl does not 
properly valida ...)
        - libnet-cidr-lite-perl 0.24-1
+       [trixie] - libnet-cidr-lite-perl <no-dsa> (Minor issue; will be fixed 
via point release)
+       [bookworm] - libnet-cidr-lite-perl <no-dsa> (Minor issue; will be fixed 
via point release)
        [bullseye] - libnet-cidr-lite-perl <postponed> (Minor issue, validation)
        NOTE: 
https://github.com/stigtsp/Net-CIDR-Lite/commit/ca9542adec87110556601d7ce48381ea8d13e692
 (0.24)
        NOTE: https://www.openwall.com/lists/oss-security/2026/05/10/6


=====================================
data/next-oldstable-point-update.txt
=====================================
@@ -198,3 +198,7 @@ CVE-2026-29786
        [bookworm] - node-tar 6.1.13+~cs7.0.5-1+deb12u1
 CVE-2026-11625
        [bookworm] - libbytes-random-secure-perl 0.29-4~deb13u1~deb12u1
+CVE-2026-45190
+       [bookworm] - libnet-cidr-lite-perl 0.22-3~deb12u2
+CVE-2026-45191
+       [bookworm] - libnet-cidr-lite-perl 0.22-3~deb12u2


=====================================
data/next-point-update.txt
=====================================
@@ -418,3 +418,7 @@ CVE-2026-11625
        [trixie] - libbytes-random-secure-perl 0.29-4~deb13u1
 CVE-2026-9539
        [trixie] - libslirp 4.8.0-1+deb13u1
+CVE-2026-45190
+       [trixie] - libnet-cidr-lite-perl 0.22-3~deb13u2
+CVE-2026-45191
+       [trixie] - libnet-cidr-lite-perl 0.22-3~deb13u2



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/8abd252d888ad07c90d0b7d97a0384def2090078...98655f9dc7298ca903d492c4baa84c6b94ccff50

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/8abd252d888ad07c90d0b7d97a0384def2090078...98655f9dc7298ca903d492c4baa84c6b94ccff50
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help


_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to