Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
55f2f91b by Salvatore Bonaccorso at 2026-02-24T22:06:34+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -82,7 +82,7 @@ CVE-2026-26222 (Altec DocLink (now maintained by Beyond
Limits Inc.) version 4.0
CVE-2026-25603 (Improper Limitation of a Pathname to a Restricted Directory
('Path Tra ...)
NOT-FOR-US: Linksys
CVE-2026-24241 (NVIDIA Delegated Licensing Service for all appliance platforms
contain ...)
- TODO: check
+ NOT-FOR-US: NVIDIA
CVE-2026-23984 (An Improper Input Validation vulnerability exists in Apache
Superset t ...)
NOT-FOR-US: Apache software not packaged in Debian
CVE-2026-23983 (A Sensitive Data Exposure vulnerability exists in Apache
Superset allo ...)
@@ -122,33 +122,33 @@ CVE-2025-69985 (FUXA 1.2.8 and prior contains an
Authentication Bypass vulnerabi
CVE-2025-67445 (TOTOLINK X5000R V9.1.0cu.2415_B20250515 contains a
denial-of-service v ...)
NOT-FOR-US: TOTOLINK
CVE-2025-63409 (Privilege escalation and improper access control in GCOM EPON
1GE C00R ...)
- TODO: check
+ NOT-FOR-US: GCOM EPON 1GE C00R371V00B01
CVE-2025-62512 (Piwigo is an open source photo gallery application for the
web. In ver ...)
TODO: check
CVE-2025-47904 (Download of Code Without Integrity Check vulnerability in
Microchip Ti ...)
- TODO: check
+ NOT-FOR-US: Microchip
CVE-2025-33181 (NVIDIA Cumulus Linux and NVOS products contain a vulnerability
in the ...)
- TODO: check
+ NOT-FOR-US: NVIDIA
CVE-2025-33180 (NVIDIA Cumulus Linux and NVOS products contain a vulnerability
in the ...)
- TODO: check
+ NOT-FOR-US: NVIDIA
CVE-2025-33179 (NVIDIA Cumulus Linux and NVOS products contain a vulnerability
in the ...)
- TODO: check
+ NOT-FOR-US: NVIDIA
CVE-2025-27555 (Airflow versions before 2.11.1 have a vulnerability that
allows authen ...)
TODO: check
CVE-2025-1789 (Local privilege escalation in Genetec Update Service. An
authenticated ...)
- TODO: check
+ NOT-FOR-US: Genetec
CVE-2025-1787 (Local admin could to leak information from the Genetec Update
Service ...)
- TODO: check
+ NOT-FOR-US: Genetec
CVE-2025-14963 (A vulnerability identified in the Trellix HX Agent driver file
fekern ...)
- TODO: check
+ NOT-FOR-US: Trellix
CVE-2025-14577 (Slican NCP/IPL/IPM/IPU devices are vulnerable to PHP Function
Injectio ...)
- TODO: check
+ NOT-FOR-US: Slican NCP/IPL/IPM/IPU devices
CVE-2025-13776 (Multiple Finka programs use hard-coded Firebird database
credentials ( ...)
- TODO: check
+ NOT-FOR-US: Finka
CVE-2025-11165 (A sandbox escape vulnerability exists in dotCMS\u2019s
Velocity script ...)
- TODO: check
+ NOT-FOR-US: dotCMS
CVE-2025-10010 (The CPSD CryptoPro Secure Disk application boots a small Linux
operati ...)
- TODO: check
+ NOT-FOR-US: CPSD CryptoPro Secure Disk application
CVE-2024-56373 (DAG Author (who already has quite a lot of permissions) could
manipula ...)
TODO: check
CVE-2024-48928 (Piwigo is an open source photo gallery application for the
web. In ver ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/55f2f91bbac9f543a67f37786310da58e86d2960
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/55f2f91bbac9f543a67f37786310da58e86d2960
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
