Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
395a29cc by security tracker role at 2026-07-05T07:13:57+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,4 +1,86 @@
-CVE-2026-14570
+CVE-2026-14781 (A flaw exists in the org.keycloak.broker.oidc package where 
the OIDC b ...)
+       TODO: check
+CVE-2026-14717 (A vulnerability was detected in itsourcecode Hospital 
Management Syste ...)
+       TODO: check
+CVE-2026-14716 (A security vulnerability has been detected in nextlevelbuilder 
GoClaw  ...)
+       TODO: check
+CVE-2026-14714 (A weakness has been identified in zhayujie chatgpt-on-wechat 
CowAgent  ...)
+       TODO: check
+CVE-2026-14713 (A security flaw has been discovered in SourceCodester Pizzafy 
E-Commer ...)
+       TODO: check
+CVE-2026-14706 (A vulnerability was identified in code-projects Online 
Examination 1.0 ...)
+       TODO: check
+CVE-2026-14705 (A vulnerability was determined in code-projects Online 
Examination 1.0 ...)
+       TODO: check
+CVE-2026-14704 (A vulnerability was found in stephen-kruger bluebox up to 
4.5.12. Affe ...)
+       TODO: check
+CVE-2026-14703 (A vulnerability has been found in itsourcecode Hospital 
Management Sys ...)
+       TODO: check
+CVE-2026-14702 (A flaw has been found in zcaceres markdownify-mcp up to 1.1.0. 
This im ...)
+       TODO: check
+CVE-2026-14701 (A vulnerability was detected in code-projects Internship 
Management Sy ...)
+       TODO: check
+CVE-2026-14700 (A security vulnerability has been detected in code-projects 
Internship ...)
+       TODO: check
+CVE-2026-14699 (A weakness has been identified in zcaceres markdownify-mcp up 
to 1.1.0 ...)
+       TODO: check
+CVE-2026-14698 (A security flaw has been discovered in SourceCodester 
Syllabus-Aligned ...)
+       TODO: check
+CVE-2026-14695 (A vulnerability was found in SourceCodester Multi-Vendor 
Online Grocer ...)
+       TODO: check
+CVE-2026-14694 (A vulnerability has been found in SourceCodester Multi-Vendor 
Online G ...)
+       TODO: check
+CVE-2026-14693 (A flaw has been found in SourceCodester Multi-Vendor Online 
Grocery Ma ...)
+       TODO: check
+CVE-2026-14692 (A vulnerability was detected in SourceCodester Multi-Vendor 
Online Gro ...)
+       TODO: check
+CVE-2026-14691 (A security vulnerability has been detected in SourceCodester 
Multi-Ven ...)
+       TODO: check
+CVE-2026-14690 (A weakness has been identified in SourceCodester Multi-Vendor 
Online G ...)
+       TODO: check
+CVE-2026-14689 (A security flaw has been discovered in CodeAstro Apartment 
Visitor Man ...)
+       TODO: check
+CVE-2026-14688 (A vulnerability was identified in itsourcecode Online Hotel 
Management ...)
+       TODO: check
+CVE-2026-14687 (A vulnerability was determined in 666ghj BettaFish up to 
1.2.1. Impact ...)
+       TODO: check
+CVE-2026-14686 (A vulnerability was found in HdrHistogram up to 2.2.2. This 
issue affe ...)
+       TODO: check
+CVE-2026-14685 (A vulnerability has been found in HdrHistogram up to 2.2.2. 
This vulne ...)
+       TODO: check
+CVE-2026-14684 (A flaw has been found in HdrHistogram up to 2.2.2. This 
affects the fu ...)
+       TODO: check
+CVE-2026-14683 (A vulnerability was detected in HdrHistogram up to 2.2.2. 
Affected by  ...)
+       TODO: check
+CVE-2026-14660 (A vulnerability was found in code-projects Online Job Portal 
1.0. The  ...)
+       TODO: check
+CVE-2026-14659 (A vulnerability has been found in itsourcecode Hospital 
Management Sys ...)
+       TODO: check
+CVE-2026-14658 (A vulnerability was detected in code-projects Assessment 
Management 1. ...)
+       TODO: check
+CVE-2026-14657 (A flaw has been found in code-projects Assessment Management 
1.0. This ...)
+       TODO: check
+CVE-2026-14656 (A security vulnerability has been detected in code-projects 
Assessment ...)
+       TODO: check
+CVE-2026-14655 (A weakness has been identified in code-projects Assessment 
Management  ...)
+       TODO: check
+CVE-2026-14654 (A vulnerability was identified in SourceCodester Simple and 
Nice Shopp ...)
+       TODO: check
+CVE-2026-14653 (A vulnerability was determined in SourceCodester Simple and 
Nice Shopp ...)
+       TODO: check
+CVE-2026-14652 (A vulnerability was found in SourceCodester Simple and Nice 
Shopping C ...)
+       TODO: check
+CVE-2026-14651 (A vulnerability has been found in connorskees grass up to 
0.13.4. The  ...)
+       TODO: check
+CVE-2026-14650 (A flaw has been found in connorskees grass up to 0.13.4. The 
affected  ...)
+       TODO: check
+CVE-2026-14649 (A vulnerability was detected in code-projects Online Voting 
System 1.0 ...)
+       TODO: check
+CVE-2026-14648 (A security vulnerability has been detected in code-projects 
Online Vot ...)
+       TODO: check
+CVE-2024-1248 (The silent Just-In-Time (JIT) provisioning feature in federated 
authen ...)
+       TODO: check
+CVE-2026-14570 (Crypt::DSA versions before 1.22 for Perl draw the DSA signing 
nonce an ...)
        - libcrypt-dsa-perl <removed>
        NOTE: https://lists.security.metacpan.org/cve-announce/msg/41542402/
 CVE-2026-14647 (A weakness has been identified in onnx up to 1.21.x. This 
vulnerabilit ...)
@@ -10124,6 +10206,7 @@ CVE-2026-55653 (A flaw was found in OpenSSH. A 
malicious SSH server can exploit
 CVE-2026-55603 (http-proxy-middleware is node.js http-proxy middleware. From 
3.0.4 unt ...)
        NOT-FOR-US: http-proxy-middleware Node.js module
 CVE-2026-55599 (phpseclib is a PHP secure communications library. From 0.1.1 
until 1.0 ...)
+       {DLA-4670-1}
        - php-phpseclib3 3.0.55-1
        [trixie] - php-phpseclib3 <no-dsa> (Minor issue)
        - php-phpseclib 2.0.55-1
@@ -56057,6 +56140,7 @@ CVE-2026-40198 (Net::CIDR::Lite versions before 0.23 
for Perl does not validate
        NOTE: Fixed by: 
https://github.com/stigtsp/Net-CIDR-Lite/commit/25d65f85dbe4885959a10471725ec9d250a589c3
 (0.23)
        NOTE: Tests: 
https://github.com/stigtsp/Net-CIDR-Lite/commit/380562e04f66026ba3859f76b3c8ae0489cbc750
 (0.23)
 CVE-2026-40194 (phpseclib is a PHP secure communications library. Starting in 
0.1.1 an ...)
+       {DLA-4670-1}
        - php-phpseclib3 3.0.51-1
        [trixie] - php-phpseclib3 3.0.43-2+deb13u2
        [bookworm] - php-phpseclib3 3.0.19-1+deb12u5
@@ -69878,7 +69962,7 @@ CVE-2026-32938 (SiYuan is a personal knowledge 
management system. In versions 3.
 CVE-2026-32937 (free5GC is an open source 5G core network. free5GC CHF prior 
to versio ...)
        NOT-FOR-US: Free5GC
 CVE-2026-32935 (phpseclib is a PHP secure communications library. Projects 
using versi ...)
-       {DSA-6187-1 DSA-6186-1 DSA-6185-1 DLA-4518-1}
+       {DSA-6187-1 DSA-6186-1 DSA-6185-1 DLA-4670-1 DLA-4518-1}
        - php-phpseclib3 3.0.50-1 (bug #1131482)
        - php-phpseclib 2.0.52-1 (bug #1131483)
        - phpseclib 1.0.27-1 (bug #1131484)
@@ -276861,7 +276945,7 @@ CVE-2024-22272 (VMware Cloud Director contains an 
Improper Privilege Management
 CVE-2024-22260 (VMware Workspace One UEM update addresses an information 
exposure vuln ...)
        NOT-FOR-US: VMware
 CVE-2023-52892 (In phpseclib before 1.0.22, 2.x before 2.0.46, and 3.x before 
3.0.33,  ...)
-       {DLA-4518-1}
+       {DLA-4670-1 DLA-4518-1}
        - phpseclib 1.0.22-1
        [bookworm] - phpseclib 1.0.20-1+deb12u3
        - php-phpseclib 2.0.46-1
@@ -317660,6 +317744,7 @@ CVE-2024-27354 (An issue was discovered in phpseclib 
1.x before 1.0.23, 2.x befo
        [bookworm] - php-phpseclib3 3.0.19-1+deb12u3
        NOTE: 
https://github.com/phpseclib/phpseclib/commit/ad5dbdf2129f5e0fb644637770b7f33de8ca8575
 CVE-2026-44167 (phpseclib is a PHP secure communications library. Prior to 
1.0.29, 2.0 ...)
+       {DLA-4670-1}
        - phpseclib 1.0.29-1
        [trixie] - phpseclib 1.0.23-6+deb13u3
        [bookworm] - phpseclib 1.0.20-1+deb12u5



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/395a29cc20b0baa9291697ef9115fdbf2a531238

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/395a29cc20b0baa9291697ef9115fdbf2a531238
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help


_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to