Emmanuel Arias pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
cf0b0849 by Emmanuel Arias at 2026-06-29T17:41:07-03:00
Claim libssh2 in dla-needed.txt

- - - - -
e9baa3f9 by Emmanuel Arias at 2026-06-29T17:41:08-03:00
data/CVE/list: Add commit link for bind9

Add commit link for CVE-2026-3592, CVE-2026-3039, CVE-2026-5946, CVE-2026-5950

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -28054,18 +28054,22 @@ CVE-2026-3592 (BIND resolvers are vulnerable to an 
amplified resource consumptio
        {DSA-6285-1}
        - bind9 1:9.20.23-1
        NOTE: https://kb.isc.org/docs/cve-2026-3592
+       NOTE: 
https://gitlab.isc.org/isc-projects/bind9/-/commit/42fb4c1b7d7381ec8019f9f668d8ee2157b408a3
 CVE-2026-3039 (BIND servers that are configured to use TKEY-based 
authentication via  ...)
        {DSA-6285-1}
        - bind9 1:9.20.23-1
        NOTE: https://kb.isc.org/docs/cve-2026-3039
+       NOTE: 
https://gitlab.isc.org/isc-projects/bind9/-/commit/7f04d7104304fdc6b858c41bb44ad151b2c3e1b7
 CVE-2026-5946 (Multiple flaws have been identified in `named` related to the 
handling ...)
        {DSA-6285-1}
        - bind9 1:9.20.23-1
        NOTE: https://kb.isc.org/docs/cve-2026-5946
+       NOTE: 
https://gitlab.isc.org/isc-projects/bind9/-/commit/ec2c98181115bd5f6c7087fcc74d816490d4312e
 CVE-2026-5950 (An unbounded resend loop vulnerability exists in the BIND 9 
resolver s ...)
        {DSA-6285-1}
        - bind9 1:9.20.23-1
        NOTE: https://kb.isc.org/docs/cve-2026-5950
+       NOTE: 
https://gitlab.isc.org/isc-projects/bind9/-/commit/379ca10cf34759d0c007cebcd9280911161bca1a
 CVE-2026-5947 (Undefined behavior may result due to a race condition leading 
to a use ...)
        - bind9 1:9.20.23-1
        [trixie] - bind9 1:9.20.23-1~deb13u1


=====================================
data/dla-needed.txt
=====================================
@@ -371,7 +371,7 @@ libsoup2.4/bullseye
   NOTE: 20251209: possibly also look into wip by spwitton, thus unclaiming
   NOTE: 20251209: rather than removing this entry. (ah)
 --
-libssh2
+libssh2 (eamanu)
   NOTE: 20260625: Added by Front-Desk (lamby)
 --
 libstb/bullseye



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/9e2d22213cbbf98118307b2610fa40a868a173e2...e9baa3f95539685d5ccae0c522107f1d6e4b1f3a

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/9e2d22213cbbf98118307b2610fa40a868a173e2...e9baa3f95539685d5ccae0c522107f1d6e4b1f3a
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help


_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to