Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
45dc8edc by Salvatore Bonaccorso at 2026-02-05T12:41:29+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -17,39 +17,39 @@ CVE-2026-25547 (@isaacs/brace-expansion is a hybrid CJS/ESM
TypeScript fork of b
CVE-2026-25546 (Godot MCP is a Model Context Protocol (MCP) server for
interacting wit ...)
NOT-FOR-US: Godot MCP
CVE-2026-25543 (HtmlSanitizer is a .NET library for cleaning HTML fragments
and docume ...)
- TODO: check
+ NOT-FOR-US: HtmlSanitizer .NET library
CVE-2026-25540 (Mastodon is a free, open-source social network server based on
Activit ...)
TODO: check
CVE-2026-25539 (SiYuan is a personal knowledge management system. Prior to
version 3.5 ...)
- TODO: check
+ NOT-FOR-US: SiYuan
CVE-2026-25538 (Devtron is an open source tool integration platform for
Kubernetes. In ...)
- TODO: check
+ NOT-FOR-US: Devtron
CVE-2026-25537 (jsonwebtoken is a JWT lib in rust. Prior to version 10.3.0,
there is a ...)
TODO: check
CVE-2026-25536 (MCP TypeScript SDK is the official TypeScript SDK for Model
Context Pr ...)
- TODO: check
+ NOT-FOR-US: MCP TypeScript SDK
CVE-2026-25526 (JinJava is a Java-based template engine based on django
template synta ...)
- TODO: check
+ NOT-FOR-US: JinJava
CVE-2026-25523 (Magento-lts is a long-term support alternative to Magento
Community Ed ...)
- TODO: check
+ NOT-FOR-US: Magento LTS (alternative to Magento Community Edition)
CVE-2026-25521 (Locutus brings stdlibs of other programming languages to
JavaScript fo ...)
- TODO: check
+ NOT-FOR-US: Node Locutus
CVE-2026-25519 (OpenSlides is a free, web based presentation and assembly
system for m ...)
- TODO: check
+ NOT-FOR-US: OpenSlides
CVE-2026-25518 (cert-manager adds certificates and certificate issuers as
resource typ ...)
TODO: check
CVE-2026-25517 (Wagtail is an open source content management system built on
Django. P ...)
- TODO: check
+ NOT-FOR-US: Wagtail CMS
CVE-2026-25514 (FacturaScripts is open-source enterprise resource planning and
account ...)
- TODO: check
+ NOT-FOR-US: FacturaScripts
CVE-2026-25513 (FacturaScripts is open-source enterprise resource planning and
account ...)
- TODO: check
+ NOT-FOR-US: FacturaScripts
CVE-2026-25512 (Group-Office is an enterprise customer relationship management
and gro ...)
- TODO: check
+ NOT-FOR-US: Group-Office
CVE-2026-25511 (Group-Office is an enterprise customer relationship management
and gro ...)
- TODO: check
+ NOT-FOR-US: Group-Office
CVE-2026-25505 (Bambuddy is a self-hosted print archive and management system
for Bamb ...)
- TODO: check
+ NOT-FOR-US: Bambuddy
CVE-2026-25499 (Terraform / OpenTofu Provider adds support for Proxmox Virtual
Environ ...)
TODO: check
CVE-2026-25481 (Langroid is a framework for building
large-language-model-powered appl ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/45dc8edc1bb04d813c6ff19a6eaf12437d214a72
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/45dc8edc1bb04d813c6ff19a6eaf12437d214a72
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
