Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
395a29cc by security tracker role at 2026-07-05T07:13:57+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,4 +1,86 @@
-CVE-2026-14570
+CVE-2026-14781 (A flaw exists in the org.keycloak.broker.oidc package where
the OIDC b ...)
+ TODO: check
+CVE-2026-14717 (A vulnerability was detected in itsourcecode Hospital
Management Syste ...)
+ TODO: check
+CVE-2026-14716 (A security vulnerability has been detected in nextlevelbuilder
GoClaw ...)
+ TODO: check
+CVE-2026-14714 (A weakness has been identified in zhayujie chatgpt-on-wechat
CowAgent ...)
+ TODO: check
+CVE-2026-14713 (A security flaw has been discovered in SourceCodester Pizzafy
E-Commer ...)
+ TODO: check
+CVE-2026-14706 (A vulnerability was identified in code-projects Online
Examination 1.0 ...)
+ TODO: check
+CVE-2026-14705 (A vulnerability was determined in code-projects Online
Examination 1.0 ...)
+ TODO: check
+CVE-2026-14704 (A vulnerability was found in stephen-kruger bluebox up to
4.5.12. Affe ...)
+ TODO: check
+CVE-2026-14703 (A vulnerability has been found in itsourcecode Hospital
Management Sys ...)
+ TODO: check
+CVE-2026-14702 (A flaw has been found in zcaceres markdownify-mcp up to 1.1.0.
This im ...)
+ TODO: check
+CVE-2026-14701 (A vulnerability was detected in code-projects Internship
Management Sy ...)
+ TODO: check
+CVE-2026-14700 (A security vulnerability has been detected in code-projects
Internship ...)
+ TODO: check
+CVE-2026-14699 (A weakness has been identified in zcaceres markdownify-mcp up
to 1.1.0 ...)
+ TODO: check
+CVE-2026-14698 (A security flaw has been discovered in SourceCodester
Syllabus-Aligned ...)
+ TODO: check
+CVE-2026-14695 (A vulnerability was found in SourceCodester Multi-Vendor
Online Grocer ...)
+ TODO: check
+CVE-2026-14694 (A vulnerability has been found in SourceCodester Multi-Vendor
Online G ...)
+ TODO: check
+CVE-2026-14693 (A flaw has been found in SourceCodester Multi-Vendor Online
Grocery Ma ...)
+ TODO: check
+CVE-2026-14692 (A vulnerability was detected in SourceCodester Multi-Vendor
Online Gro ...)
+ TODO: check
+CVE-2026-14691 (A security vulnerability has been detected in SourceCodester
Multi-Ven ...)
+ TODO: check
+CVE-2026-14690 (A weakness has been identified in SourceCodester Multi-Vendor
Online G ...)
+ TODO: check
+CVE-2026-14689 (A security flaw has been discovered in CodeAstro Apartment
Visitor Man ...)
+ TODO: check
+CVE-2026-14688 (A vulnerability was identified in itsourcecode Online Hotel
Management ...)
+ TODO: check
+CVE-2026-14687 (A vulnerability was determined in 666ghj BettaFish up to
1.2.1. Impact ...)
+ TODO: check
+CVE-2026-14686 (A vulnerability was found in HdrHistogram up to 2.2.2. This
issue affe ...)
+ TODO: check
+CVE-2026-14685 (A vulnerability has been found in HdrHistogram up to 2.2.2.
This vulne ...)
+ TODO: check
+CVE-2026-14684 (A flaw has been found in HdrHistogram up to 2.2.2. This
affects the fu ...)
+ TODO: check
+CVE-2026-14683 (A vulnerability was detected in HdrHistogram up to 2.2.2.
Affected by ...)
+ TODO: check
+CVE-2026-14660 (A vulnerability was found in code-projects Online Job Portal
1.0. The ...)
+ TODO: check
+CVE-2026-14659 (A vulnerability has been found in itsourcecode Hospital
Management Sys ...)
+ TODO: check
+CVE-2026-14658 (A vulnerability was detected in code-projects Assessment
Management 1. ...)
+ TODO: check
+CVE-2026-14657 (A flaw has been found in code-projects Assessment Management
1.0. This ...)
+ TODO: check
+CVE-2026-14656 (A security vulnerability has been detected in code-projects
Assessment ...)
+ TODO: check
+CVE-2026-14655 (A weakness has been identified in code-projects Assessment
Management ...)
+ TODO: check
+CVE-2026-14654 (A vulnerability was identified in SourceCodester Simple and
Nice Shopp ...)
+ TODO: check
+CVE-2026-14653 (A vulnerability was determined in SourceCodester Simple and
Nice Shopp ...)
+ TODO: check
+CVE-2026-14652 (A vulnerability was found in SourceCodester Simple and Nice
Shopping C ...)
+ TODO: check
+CVE-2026-14651 (A vulnerability has been found in connorskees grass up to
0.13.4. The ...)
+ TODO: check
+CVE-2026-14650 (A flaw has been found in connorskees grass up to 0.13.4. The
affected ...)
+ TODO: check
+CVE-2026-14649 (A vulnerability was detected in code-projects Online Voting
System 1.0 ...)
+ TODO: check
+CVE-2026-14648 (A security vulnerability has been detected in code-projects
Online Vot ...)
+ TODO: check
+CVE-2024-1248 (The silent Just-In-Time (JIT) provisioning feature in federated
authen ...)
+ TODO: check
+CVE-2026-14570 (Crypt::DSA versions before 1.22 for Perl draw the DSA signing
nonce an ...)
- libcrypt-dsa-perl <removed>
NOTE: https://lists.security.metacpan.org/cve-announce/msg/41542402/
CVE-2026-14647 (A weakness has been identified in onnx up to 1.21.x. This
vulnerabilit ...)
@@ -10124,6 +10206,7 @@ CVE-2026-55653 (A flaw was found in OpenSSH. A
malicious SSH server can exploit
CVE-2026-55603 (http-proxy-middleware is node.js http-proxy middleware. From
3.0.4 unt ...)
NOT-FOR-US: http-proxy-middleware Node.js module
CVE-2026-55599 (phpseclib is a PHP secure communications library. From 0.1.1
until 1.0 ...)
+ {DLA-4670-1}
- php-phpseclib3 3.0.55-1
[trixie] - php-phpseclib3 <no-dsa> (Minor issue)
- php-phpseclib 2.0.55-1
@@ -56057,6 +56140,7 @@ CVE-2026-40198 (Net::CIDR::Lite versions before 0.23
for Perl does not validate
NOTE: Fixed by:
https://github.com/stigtsp/Net-CIDR-Lite/commit/25d65f85dbe4885959a10471725ec9d250a589c3
(0.23)
NOTE: Tests:
https://github.com/stigtsp/Net-CIDR-Lite/commit/380562e04f66026ba3859f76b3c8ae0489cbc750
(0.23)
CVE-2026-40194 (phpseclib is a PHP secure communications library. Starting in
0.1.1 an ...)
+ {DLA-4670-1}
- php-phpseclib3 3.0.51-1
[trixie] - php-phpseclib3 3.0.43-2+deb13u2
[bookworm] - php-phpseclib3 3.0.19-1+deb12u5
@@ -69878,7 +69962,7 @@ CVE-2026-32938 (SiYuan is a personal knowledge
management system. In versions 3.
CVE-2026-32937 (free5GC is an open source 5G core network. free5GC CHF prior
to versio ...)
NOT-FOR-US: Free5GC
CVE-2026-32935 (phpseclib is a PHP secure communications library. Projects
using versi ...)
- {DSA-6187-1 DSA-6186-1 DSA-6185-1 DLA-4518-1}
+ {DSA-6187-1 DSA-6186-1 DSA-6185-1 DLA-4670-1 DLA-4518-1}
- php-phpseclib3 3.0.50-1 (bug #1131482)
- php-phpseclib 2.0.52-1 (bug #1131483)
- phpseclib 1.0.27-1 (bug #1131484)
@@ -276861,7 +276945,7 @@ CVE-2024-22272 (VMware Cloud Director contains an
Improper Privilege Management
CVE-2024-22260 (VMware Workspace One UEM update addresses an information
exposure vuln ...)
NOT-FOR-US: VMware
CVE-2023-52892 (In phpseclib before 1.0.22, 2.x before 2.0.46, and 3.x before
3.0.33, ...)
- {DLA-4518-1}
+ {DLA-4670-1 DLA-4518-1}
- phpseclib 1.0.22-1
[bookworm] - phpseclib 1.0.20-1+deb12u3
- php-phpseclib 2.0.46-1
@@ -317660,6 +317744,7 @@ CVE-2024-27354 (An issue was discovered in phpseclib
1.x before 1.0.23, 2.x befo
[bookworm] - php-phpseclib3 3.0.19-1+deb12u3
NOTE:
https://github.com/phpseclib/phpseclib/commit/ad5dbdf2129f5e0fb644637770b7f33de8ca8575
CVE-2026-44167 (phpseclib is a PHP secure communications library. Prior to
1.0.29, 2.0 ...)
+ {DLA-4670-1}
- phpseclib 1.0.29-1
[trixie] - phpseclib 1.0.23-6+deb13u3
[bookworm] - phpseclib 1.0.20-1+deb12u5
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/395a29cc20b0baa9291697ef9115fdbf2a531238
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/395a29cc20b0baa9291697ef9115fdbf2a531238
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits