debian-security-tracker-commits  

Messages by Thread

• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-35177/vim Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-5663/dcmtk Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-5673/libtheora Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-5704/tar Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-4878/libcap2 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Remove note on one rejected CVE (originally for WordPress plugin) Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track proposed updates for libvncserver via trixie-pu Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Prpocess some NFUs Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Update note for systemd, should go in via point release updates Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim redis. Chris Lamb (@lamby)
• [Git][security-tracker-team/security-tracker][master] embedded-code-copies: add libreoffice for libskia Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2026-2391/node-qs Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2025-14505/node-elliptic Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2026-25547 via unstable Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2026-34743/xz-utils via unstable Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] CVE-2025-55132/nodejs @rouca
• [Git][security-tracker-team/security-tracker][master] CVE-2025-55130 @rouca
• [Git][security-tracker-team/security-tracker][master] Netty triage recent CVE @rouca
• [Git][security-tracker-team/security-tracker][master] Update status for CVE-2026-26996/node-minimatch Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Associate CVE-2025-4444 explicitly with DSA-6200-1 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track proposed update for vips via bookworm-pu Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add dovecot for regression update Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track proposed update for vips via trixie-pu Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] 2 commits: add one tag Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] node-ajv fixed in sid Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] node-diff fixed in sid Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] two node-minimatch issues fixed in sid Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] Track fixed version for node-xmldom issue via unstable Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track fixed version for openimageio via unstable Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track fixed version for glances issues addressed via unstable Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Claim systemd Arnaud Rebillout (@arnaudr)
• [Git][security-tracker-team/security-tracker][master] tor DSA Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] track two CVEless tor issues Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] trafficserver DSA Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] Track two more CVE fixes for vega.js addressed via unstable upload Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2025-27793/vega.js via unstable Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track fixes for lexbor via experimental Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track proposed update for glance via {trixie,bookworm}-pu Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track fixed version for gobgp issues fixed with 4.4.0-1 upload Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2023-46565/gobgp via unstable Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Whitespace adjustment for note in CVE-2026-27855 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Remove duplicate commit references (same as just the one before) Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] 4 commits: add corosync Thorsten Alteholz (@alteholz)
• [Git][security-tracker-team/security-tracker][master] 10 commits: mark CVE-2026-33671 and CVE-2026-33672 as postponed for Bullseye Thorsten Alteholz (@alteholz)
• [Git][security-tracker-team/security-tracker][master] valkey DSA Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] Add assert issue in system only affecting unstable Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add systemd issue in nspawn Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add new systemd issue for LPE via udev Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add new systemd issue Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] CVE-2025-63757/ffmpeg: add reference for commit introducing it Carlos Henrique Lima Melara (@charles)
• [Git][security-tracker-team/security-tracker][master] dovecot DSA Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] Add one systemd issue without CVE yet Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] update dovecot references Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] Onve vega.js issue fixed in unstable Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] new docker issues Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] 9 commits: add openvswitch Thorsten Alteholz (@alteholz)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-5530/ollama, itp'ed Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add openvswitch for further evaluation Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] 4 commits: add libarchive Thorsten Alteholz (@alteholz)
• [Git][security-tracker-team/security-tracker][master] Add upstream commit references for cups issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] mark CVE-2026-34743 as postponed for Bullseye Thorsten Alteholz (@alteholz)
• [Git][security-tracker-team/security-tracker][master] Add secondary filled bugreports for two of the cups issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] LTS: claim mediawiki in dla-needed.txt Guilhem Moulin (@guilhem)
• [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2026-27809/psd-tools via unstable Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] 5 commits: add tiff Thorsten Alteholz (@alteholz)
• [Git][security-tracker-team/security-tracker][master] Track proposed update for awstats via trixie-pu Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] 3 commits: Added embeddings found via codesearch Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track proposed update for awstats via bookworm-pu Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Reserve DSA number for roundcube update Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] 2 commits: re-evaluate CVE-2022-46337, a critical CVE should be not no-dsa Thorsten Alteholz (@alteholz)
• [Git][security-tracker-team/security-tracker][master] libxml-parser-perl was just handled Thorsten Alteholz (@alteholz)
• [Git][security-tracker-team/security-tracker][master] Add Debian bug references for cups issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] embedded-code-copies bearbeiten: tetex-bin is gone. @hilmar
• [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for avahi issue Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2026-34601 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for py-lmdb issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add Debian bug references for trafficserver issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2026-33709 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track fixes for dovecot via unstable Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Mark openssh issues as no-dsa Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2026-5342 and CVE-2026-5318 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for gobgp issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Fix typos in some NOTEs Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add upstream tag references for gobgp issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] 2 commits: add libxml-parser-perl Thorsten Alteholz (@alteholz)
• [Git][security-tracker-team/security-tracker][master] Add one more new cups issue Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] add policykit-1 Thorsten Alteholz (@alteholz)
• [Git][security-tracker-team/security-tracker][master] dla-needed: claim pypdf2 Daniel Leidert (@dleidert)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-33709/jupyterhub Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add two deluge issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add two new Zulip issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add some new issues in piwigo Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add filled Debian bug reference for CVE-2026-23417 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2026-4775/tiff Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add new electron issues, itp'ed Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-34933/avahi Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add initial tracking for cups issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Remove notes from one rejected CVE (was not a security issue) Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2026-4775/tiff Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Reserve DLA-4522-1 for libxml-parser-perl Guilhem Moulin (@guilhem)
• [Git][security-tracker-team/security-tracker][master] Track fixed version for two libvncserver issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add one new dokuwiki issue Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] p7zip-rar ospu Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] golang-github-tillitis-tkeyclient spu Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] LTS: claim pyasn1 in dla-needed.txt Emmanuel Arias (@eamanu)
• [Git][security-tracker-team/security-tracker][master] tornado DSA Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] Add two juju issues Salvatore Bonaccorso (@carnil)
  • [Git][security-tracker-team/security-tracker][master] Add two juju issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add the removed botan source package for tracking recent Botan CVEs Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Correct the actual source package name for botan3 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add two more CVEs for botan Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Remove notes from CVE-2024-30850 (rejected, duplicate) Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Remove notes from one rejected Linux CVE Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Correct information on CVE-2026-23333/linux Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2026-34043 via unstable Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Reference directly the fixing commit for CVE-2026-5201 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Remove notes on one rejected CVE Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Correct information on CVE-2025-40219 after kernel-sec triage Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] dpkg ospu Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] 2 commits: Take gdk-pixbuf from dsa-needed list Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2026-34591/poetry Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2026-34043 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add Debian bug references for onnx issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Reserve DSA number for pyasn1 update Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2026-34060/ruby-ruby-lsp Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Reserve DSA number for inetutils update Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add three new botan issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-2950/node-lodash Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add two scitokens-cpp issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add two new check-mk issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] auto-nfu: Add another NVIDIA product covered by the CNA rule Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-27489/onnx Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add additional mbedtls issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-22815/python-aiohttp Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-26962/ruby-rack Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Update status for fixed version for CVE-2025-13763 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Revert "Update CVE-2025-63261 to earlier state for trixie and bookworm" Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] remaining mediawiki issues Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] 6 commits: mark CVE-2026-33554 as postponed for Bullseye Thorsten Alteholz (@alteholz)
• [Git][security-tracker-team/security-tracker][master] add more mediawiki issues Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] Update CVE-2025-63261 to earlier state for trixie and bookworm Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Update status for CVE-2025-63261/awstats Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add two new trafficserver issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2026-35535/sudo via unstable Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for golang-github-go-git-go-git Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for python-aiohttp issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2026-34531 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for openexr issues Salvatore Bonaccorso (@carnil)
  • [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for openexr issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for mbedtls issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add Debian bug references for openssh issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Fix typos in notes for openssh issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] 2 commits: mark CVE-2026-22891, CVE-2026-20777 and CVE-2025-64736 as postponed for Bullseye Thorsten Alteholz (@alteholz)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-34159/llama.cpp Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-34591/poetry Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-34601/node-xmldom Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-34610/leancrypto, itp'ed Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-34760/vllm Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Process batch of NFUs Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add two new CVEs in shynet, itp'ed Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-35549/mariadb Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Merge CVE assignments from Roundcube 1.7-rc5, 1.6.14 and 1.5.14 release Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Merge CVEs from th Roundcube 1.7-rc6, 1.6.15 and 1.5.15 release Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] first batch of new mediawiki issues Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] Track fixed version for libde265 issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2026-5201 via unstable Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-35535/sudo Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] CVE-2026-35536 assigned for one python-tornado issue Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add initial tracking for new Suricata issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add two more CVEs for ruby-rack Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-34786/ruby-rack Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add some more ruby-rack issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add new ruby-rack issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add new set of openssh issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add new keycloak issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-5342/libraw Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-5344/textpattern Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for libinput issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add references for CVE-2026-27456 Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Reserve DLA-4521-1 for libpng1.6 Tobias Frost (@tobi)
• [Git][security-tracker-team/security-tracker][master] new util-linux issue Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] grub2 ospu Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] Add new python-aiohttp issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-34531/python-flask-httpauth Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-34543/openexr Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add set of new libstb issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] LTS: claim nghttp2 in dla-needed.txt @slyon
• [Git][security-tracker-team/security-tracker][master] Add two new openexr issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-5318/libraw Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] 2 commits: add redis Thorsten Alteholz (@alteholz)
• [Git][security-tracker-team/security-tracker][master] 3 commits: add nghttp2 Thorsten Alteholz (@alteholz)
• [Git][security-tracker-team/security-tracker][master] node-lodash fixed in sid Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] cgif fixed in sid Moritz Muehlenhoff (@jmm)
• [Git][security-tracker-team/security-tracker][master] Add two new mbedtls issues Salvatore Bonaccorso (@carnil)
  • [Git][security-tracker-team/security-tracker][master] Add two new mbedtls issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-33276/check-mk Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-33762/golang-github-go-git-go-git Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add two new teampass issues Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add CVE-2026-3308/mupdf Salvatore Bonaccorso (@carnil)
• [Git][security-tracker-team/security-tracker][master] Add notes for python 3.9 Arnaud Rebillout (@arnaudr)

• Earlier messages
• Later messages