Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
19d56180 by Salvatore Bonaccorso at 2026-02-04T11:18:02+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -21,9 +21,9 @@ CVE-2026-24887 (Claude Code is an agentic coding tool. Prior
to version 2.0.72,
CVE-2026-24447 (If a malformed data is input to the affected product, a CSV
file downl ...)
TODO: check
CVE-2026-24053 (Claude Code is an agentic coding tool. Prior to version
2.0.74, due to ...)
- TODO: check
+ NOT-FOR-US: Claude Code
CVE-2026-24052 (Claude Code is an agentic coding tool. Prior to version
1.0.111, Claud ...)
- TODO: check
+ NOT-FOR-US: Claude Code
CVE-2026-23704 (A non-administrative user can upload malicious files. When an
administ ...)
TODO: check
CVE-2026-22875 (Movable Type contains a stored cross-site scripting
vulnerability in E ...)
@@ -53,33 +53,33 @@ CVE-2026-20978 (Improper authorization in KnoxGuardManager
prior to SMR Feb-2026
CVE-2026-20977 (Improper access control in Emergency Sharing prior to SMR
Feb-2026 Rel ...)
NOT-FOR-US: Samsung Mobile
CVE-2026-1835 (A vulnerability was identified in lcg0124 BootDo up to
e93dd428ef6f5c8 ...)
- TODO: check
+ NOT-FOR-US: lcg0124 BootDo
CVE-2026-1819 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: ViPort
CVE-2026-1813 (A vulnerability was found in bolo-blog bolo-solo up to 2.6.4.
Affected ...)
- TODO: check
+ NOT-FOR-US: bolo-blog bolo-solo
CVE-2026-1812 (A vulnerability has been found in bolo-blog bolo-solo up to
2.6.4. Thi ...)
- TODO: check
+ NOT-FOR-US: bolo-blog bolo-solo
CVE-2026-1811 (A flaw has been found in bolo-blog bolo-solo up to 2.6.4. This
affects ...)
- TODO: check
+ NOT-FOR-US: bolo-blog bolo-solo
CVE-2026-1810 (A vulnerability was detected in bolo-blog bolo-solo up to
2.6.4. The i ...)
- TODO: check
+ NOT-FOR-US: bolo-blog bolo-solo
CVE-2026-1791 (Unrestricted Upload of File with Dangerous Type vulnerability
in Hills ...)
- TODO: check
+ NOT-FOR-US: Hillstone Networks Operation and Maintenance Security
Gateway
CVE-2026-1756 (The WP FOFT Loader plugin for WordPress is vulnerable to
arbitrary fil ...)
NOT-FOR-US: WordPress plugin
CVE-2026-1755 (The Menu Icons by ThemeIsle plugin for WordPress is vulnerable
to Stor ...)
NOT-FOR-US: WordPress plugin
CVE-2026-1633 (The Synectix LAN 232 TRIO 3-Port serial to ethernet adapter
exposes it ...)
- TODO: check
+ NOT-FOR-US: Synectix LAN 232 TRIO 3-Port serial to ethernet adapter
CVE-2026-1632 (MOMA Seismic Station Version v2.4.2520 and prior exposes its
web manag ...)
- TODO: check
+ NOT-FOR-US: MOMA Seismic Station
CVE-2026-1341 (Avation Light Engine Pro exposes its configuration and control
interfa ...)
- TODO: check
+ NOT-FOR-US: Avation Light Engine Pro
CVE-2025-69621 (An arbitrary file overwrite vulnerability in the file import
process o ...)
- TODO: check
+ NOT-FOR-US: Comic Book Reader
CVE-2025-69620 (A path traversal in Moo Chan Song v4.5.7 allows attackers to
cause a D ...)
- TODO: check
+ NOT-FOR-US: Moo Chan Song
CVE-2025-65081 (An out-of-bounds read vulnerability has been identified in the
Postscr ...)
NOT-FOR-US: Lexmark
CVE-2025-65080 (A type confusion vulnerability has been identified in the
Postscript i ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/19d561806734242f23bdf8db446808dc5a8e4a3d
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/19d561806734242f23bdf8db446808dc5a8e4a3d
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
