Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
23943b5f by Moritz Muehlenhoff at 2026-07-02T21:54:46+02:00
bugnums
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -446,8 +446,8 @@ CVE-2026-55660 (Tina is a headless content management
system. In versions prior
CVE-2026-55153 (mchange-commons-java is a Java library of shared utility
classes used ...)
- mchange-commons-java <itp> (bug #806774)
CVE-2026-54908 (Pion DTLS is a Go implementation of Datagram Transport Layer
Security. ...)
- - golang-github-pion-dtls.v2 <unfixed>
- - golang-github-pion-dtls.v3 <unfixed>
+ - golang-github-pion-dtls.v2 <unfixed> (bug #1141306)
+ - golang-github-pion-dtls.v3 <unfixed> (bug #1141307)
NOTE:
https://github.com/pion/dtls/security/advisories/GHSA-wg4g-wm44-ch5j
NOTE: https://github.com/pion/dtls/pull/839
CVE-2026-54786 (Wasmtime is a runtime for WebAssembly. All versions prior to
24.0.10; ...)
@@ -1034,11 +1034,11 @@ CVE-2026-20191 (A vulnerability in Cisco Catalyst
Center could allow an unauthen
CVE-2026-14358 (Improper neutralization of input during web page generation
('cross-si ...)
TODO: check
CVE-2026-14330 (Multiple unbounded alloca() calls in the PulseAudio protocol
server.)
- - pulseaudio <unfixed>
+ - pulseaudio <unfixed> (bug #1141309)
[trixie] - pulseaudio <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2495907
CVE-2026-14324 (RAOP module accepts unbounded Content-Length values and does
not check ...)
- - pipewire <unfixed>
+ - pipewire <unfixed> (bug #1141308)
[trixie] - pipewire <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2495903
CVE-2026-14258 (A flaw was found in dhcpcd's IPv6 Neighbor Discovery Router
Advertisem ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/23943b5fd5818de657b828717625d95d78532da5
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/23943b5fd5818de657b828717625d95d78532da5
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits