Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
80f0cef0 by Salvatore Bonaccorso at 2026-02-25T11:02:01+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -58,15 +58,15 @@ CVE-2026-2914 (CyberArk Endpoint Privilege Manager Agent
versions 25.10.0 and lo
CVE-2026-27822 (RustFS is a distributed object storage system built in Rust.
Prior to ...)
NOT-FOR-US: RustFS
CVE-2026-27747 (The SPIP interface_traduction_objets plugin versions prior
to4.3.3 con ...)
- TODO: check
+ NOT-FOR-US: SPIP interface_traduction_objets plugi
CVE-2026-27746 (The SPIP jeux plugin versions prior to4.1.1 contain a
reflected cross- ...)
- TODO: check
+ NOT-FOR-US: SPIP jeux plugin
CVE-2026-27745 (The SPIP interface_traduction_objets plugin versions prior
to4.3.3 con ...)
- TODO: check
+ NOT-FOR-US: SPIP interface_traduction_objets plugin
CVE-2026-27744 (The SPIP tickets plugin versions prior to4.3.3 contain an
unauthentica ...)
- TODO: check
+ NOT-FOR-US: SPIP tickets plugin
CVE-2026-27743 (The SPIP referer_spam plugin versions prior to1.3.0 contain an
unauthe ...)
- TODO: check
+ NOT-FOR-US: SPIP referer_spam plugin
CVE-2026-27696 (changedetection.io is a free open source web page change
detection too ...)
NOT-FOR-US: changedetection.io
CVE-2026-27645 (changedetection.io is a free open source web page change
detection too ...)
@@ -74,7 +74,7 @@ CVE-2026-27645 (changedetection.io is a free open source web
page change detecti
CVE-2026-27641 (Flask-Reuploaded provides file uploads for Flask. A critical
path trav ...)
TODO: check
CVE-2026-27640 (tfplan2md is software for converting Terraform plan JSON files
into hu ...)
- TODO: check
+ NOT-FOR-US: tfplan2md
CVE-2026-27639 (Mercator is an open source web application designed to enable
mapping ...)
NOT-FOR-US: Mercator
CVE-2026-27637 (FreeScout is a free help desk and shared inbox built with
PHP's Larave ...)
@@ -114,7 +114,7 @@ CVE-2026-27606 (Rollup is a module bundler for JavaScript.
Versions prior to 2.8
CVE-2026-27598 (Dagu is a workflow engine with a built-in Web user interface.
In versi ...)
NOT-FOR-US: Dagu
CVE-2026-27597 (Enclave is a secure JavaScript sandbox designed for safe AI
agent code ...)
- TODO: check
+ NOT-FOR-US: Enclave
CVE-2026-27595 (Parse Dashboard is a standalone dashboard for managing Parse
Server ap ...)
NOT-FOR-US: Parse Dashboard
CVE-2026-27593 (Statmatic is a Laravel and Git powered content management
system (CMS) ...)
@@ -146,13 +146,13 @@ CVE-2026-24849 (OpenEMR is a free and open source
electronic health records and
CVE-2026-24847 (OpenEMR is a free and open source electronic health records
and medica ...)
NOT-FOR-US: OpenEMR
CVE-2026-24443 (EventSentry versions prior to 6.0.1.20contain an unverified
password c ...)
- TODO: check
+ NOT-FOR-US: EventSentry
CVE-2026-22553 (All versions of InSAT MasterSCADA BUK-TS are susceptible to OS
command ...)
- TODO: check
+ NOT-FOR-US: InSAT MasterSCADA BUK-TS
CVE-2026-21443 (OpenEMR is a free and open source electronic health records
and medica ...)
NOT-FOR-US: OpenEMR
CVE-2026-21410 (InSAT MasterSCADA BUK-TS is susceptible to SQL Injection
through its m ...)
- TODO: check
+ NOT-FOR-US: InSAT MasterSCADA BUK-TS
CVE-2026-1614 (The Rise Blocks \u2013 A Complete Gutenberg Page Builder plugin
for Wo ...)
NOT-FOR-US: WordPress plugin
CVE-2025-69231 (OpenEMR is a free and open source electronic health records
and medica ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/80f0cef0d660657f562df49c2bc48d1349251596
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/80f0cef0d660657f562df49c2bc48d1349251596
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
