Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
765b0759 by Salvatore Bonaccorso at 2026-06-30T23:09:38+02:00
Add warning for CVE-2026-54369
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -883,6 +883,9 @@ CVE-2026-54369 (acl before version 2.4.0 contains a symlink
traversal vulnerabil
NOTE: Fixed by:
https://cgit.git.savannah.nongnu.org/cgit/acl.git/commit/?id=5906d2868ec8d3b08be556153696e6b1122eeeda
(v2.4.0)
NOTE: Fixed by:
https://cgit.git.savannah.nongnu.org/cgit/acl.git/commit/?id=0071c6d1fea0a8a6270333baa85fb609be325c26
(v2.4.0)
NOTE: Fixed by:
https://cgit.git.savannah.nongnu.org/cgit/acl.git/commit/?id=170dbd3beff9bd5bdab3f72db1a04bf282f6087c
(v2.4.0)
+ NOTE: Compatibility Notes: libacl exports new functions acl_*_at()
causing problems with
+ NOTE: programs that define functions of same name and link against
libacl:
+ NOTE: tar: https://bugs.debian.org/1141146
CVE-2026-9676 (The F4 Post Tree WordPress plugin before 2.0.5 does not perform
capabi ...)
NOT-FOR-US: WordPress plugin
CVE-2026-13544 (A flaw has been found in Feehi CMS up to 2.1.1. Affected by
this issue ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/765b0759ad244dd5f223b87c7e6a95b4891ca237
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/765b0759ad244dd5f223b87c7e6a95b4891ca237
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits