Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3843269c by Salvatore Bonaccorso at 2026-03-02T21:37:11+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -7,7 +7,7 @@ CVE-2026-3180 (The Contest Gallery \u2013 Upload & Vote Photos,
Media, Sell with
CVE-2026-3132 (The Master Addons for Elementor Premium plugin for WordPress is
vulner ...)
NOT-FOR-US: WordPress plugin
CVE-2026-2584 (A critical SQL Injection (SQLi) vulnerability has been
identified in t ...)
- TODO: check
+ NOT-FOR-US: Ciser System SL
CVE-2026-28412 (Textream is a free macOS teleprompter app. Prior to version
1.5.1, the ...)
NOT-FOR-US: Textream macOS teleprompter app
CVE-2026-28403 (Textream is a free macOS teleprompter app. Prior to version
1.5.1, the ...)
@@ -39,7 +39,7 @@ CVE-2026-27631 (Exiv2 is a C++ library and a command-line
utility to read, write
CVE-2026-27596 (Exiv2 is a C++ library and a command-line utility to read,
write, dele ...)
TODO: check
CVE-2026-26720 (An issue in Twenty CRM v1.15.0 and before allows a remote
attacker to ...)
- TODO: check
+ NOT-FOR-US: Twenty CRM
CVE-2026-26713 (code-projects Simple Food Order System v1.0 is vulnerable to
SQL Injec ...)
NOT-FOR-US: code-projects
CVE-2026-26712 (code-projects Simple Food Order System v1.0 is vulnerable to
SQL Injec ...)
@@ -83,7 +83,7 @@ CVE-2026-26694 (code-projects Simple Student Alumni System
v1.0 is vulnerale to
CVE-2026-25884 (Exiv2 is a C++ library and a command-line utility to read,
write, dele ...)
TODO: check
CVE-2026-25477 (AFFiNE is an open-source, all-in-one workspace and an
operating system ...)
- TODO: check
+ NOT-FOR-US: AFFiNE
CVE-2026-24115 (An issue was discovered in Tenda W20E V4.0br_V15.11.0.6.
Failure to va ...)
NOT-FOR-US: Tenda
CVE-2026-24114 (An issue was discovered in Tenda W20E V4.0br_V15.11.0.6.
Failure to va ...)
@@ -111,9 +111,9 @@ CVE-2026-23865 (An integer overflow in the
tt_var_load_item_variation_store func
CVE-2026-23600 (A remote authentication bypass vulnerability exists in HPE
AutoPass ...)
NOT-FOR-US: HPE
CVE-2026-21882 (theshit is a command-line utility that automatically detects
and fixes ...)
- TODO: check
+ NOT-FOR-US: theshit
CVE-2026-21853 (AFFiNE is an open-source, all-in-one workspace and an
operating system ...)
- TODO: check
+ NOT-FOR-US: AFFiNE
CVE-2026-21385 (Memory corruption while using alignments for memory
allocation.)
NOT-FOR-US: Qualcomm
CVE-2026-20445 (In MDDP, there is a possible system crash due to a race
condition. Thi ...)
@@ -159,7 +159,7 @@ CVE-2026-20423 (In wlan STA driver, there is a possible out
of bounds write due
CVE-2026-20416 (In pcie, there is a possible out of bounds write due to a
missing boun ...)
NOT-FOR-US: MediaTek
CVE-2026-1628 (Mattermost Desktop App versions <=5.13.3 fail to attach
listeners rest ...)
- TODO: check
+ NOT-FOR-US: Mattermost Desktop App
CVE-2026-0995 (An issue has been identified in Arm C1-Pro before r1p2-50eac0,
where, ...)
TODO: check
CVE-2026-0689 (In ExtremeCloud IQ \u2013 Site Engine (XIQ\u2011SE) before
26.2.10, a ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3843269c92e6213681e5fb4cfe1e4fb1dc4cf8f9
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3843269c92e6213681e5fb4cfe1e4fb1dc4cf8f9
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
