[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) Mon, 16 Mar 2026 14:32:38 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
a975c9a5 by Salvatore Bonaccorso at 2026-03-16T22:32:13+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -95,35 +95,35 @@ CVE-2026-32587 (Missing Authorization vulnerability in Saad 
Iqbal WP EasyPay all
 CVE-2026-32583 (Missing Authorization vulnerability in Webnus Inc. Modern 
Events Calen ...)
        NOT-FOR-US: WordPress plugin or theme
 CVE-2026-32267 (Craft CMS is a content management system (CMS). From version 
4.0.0-RC1 ...)
-       TODO: check
+       NOT-FOR-US: Craft CMS
 CVE-2026-32264 (Craft CMS is a content management system (CMS). From version 
4.0.0-RC1 ...)
-       TODO: check
+       NOT-FOR-US: Craft CMS
 CVE-2026-32263 (Craft CMS is a content management system (CMS). From version 
5.6.0 to  ...)
-       TODO: check
+       NOT-FOR-US: Craft CMS
 CVE-2026-32262 (Craft CMS is a content management system (CMS). From version 
4.0.0-RC1 ...)
-       TODO: check
+       NOT-FOR-US: Craft CMS
 CVE-2026-32261 (Webhooks for Craft CMS plugin adds the ability to manage 
\u201cwebhook ...)
-       TODO: check
+       NOT-FOR-US: Webhooks for Craft CMS plugin
 CVE-2026-30882 (Chamilo LMS is a learning management system. Chamilo LMS 
version 1.11. ...)
-       TODO: check
+       NOT-FOR-US: Chamilo LMS
 CVE-2026-30881 (Chamilo LMS is a learning management system. Version 1.11.34 
and prior ...)
-       TODO: check
+       NOT-FOR-US: Chamilo LMS
 CVE-2026-30876 (Chamilo LMS is a learning management system. Prior to version 
1.11.36, ...)
-       TODO: check
+       NOT-FOR-US: Chamilo LMS
 CVE-2026-30875 (Chamilo LMS is a learning management system. Prior to version 
1.11.36, ...)
-       TODO: check
+       NOT-FOR-US: Chamilo LMS
 CVE-2026-30405 (An issue in GoBGP gobgpd v.4.2.0 allows a remote attacker to 
cause a d ...)
        TODO: check
 CVE-2026-2578 (Mattermost versions 11.3.x <= 11.3.0 fail to preserve the 
redacted sta ...)
        TODO: check
 CVE-2026-2476 (Mattermost Plugins versions <=2.0.3.0 fail to properly mask 
sensitive  ...)
-       TODO: check
+       NOT-FOR-US: Mattermost Plugins
 CVE-2026-2463 (Mattermost versions 11.3.x <= 11.3.0, 11.2.x <= 11.2.2, 10.11.x 
<= 10. ...)
        TODO: check
 CVE-2026-2462 (Mattermost versions 11.3.x <= 11.3.0, 11.2.x <= 11.2.2, 10.11.x 
<= 10. ...)
        TODO: check
 CVE-2026-2461 (Mattermost Plugins versions <=11.3 11.0.3 11.2.2 10.10.11.0 
fail to im ...)
-       TODO: check
+       NOT-FOR-US: Mattermost Plugins
 CVE-2026-2458 (Mattermost versions 11.3.x <= 11.3.0, 11.2.x <= 11.2.2, 10.11.x 
<= 10. ...)
        TODO: check
 CVE-2026-2457 (Mattermost versions 11.3.x <= 11.3.0, 11.2.x <= 11.2.2, 10.11.x 
<= 10. ...)
@@ -149,7 +149,7 @@ CVE-2026-28498 (Authlib is a Python library which builds 
OAuth and OpenID Connec
 CVE-2026-28490 (Authlib is a Python library which builds OAuth and OpenID 
Connect serv ...)
        TODO: check
 CVE-2026-28430 (Chamilo LMS is a learning management system. Prior to version 
1.11.34, ...)
-       TODO: check
+       NOT-FOR-US: Chamilo LMS
 CVE-2026-27962 (Authlib is a Python library which builds OAuth and OpenID 
Connect serv ...)
        TODO: check
 CVE-2026-26304 (Mattermost versions 11.3.x <= 11.3.0, 11.2.x <= 11.2.2 fail to 
verify  ...)
@@ -169,7 +169,7 @@ CVE-2026-24458 (Mattermost versions 11.3.x <= 11.3.0, 
11.2.x <= 11.2.2, 10.11.x
 CVE-2026-23862 (Dell ThinOS 10 versions prior to ThinOS 2602_10.0573, contain 
an Impro ...)
        NOT-FOR-US: Dell / EMC
 CVE-2026-23489 (Fields is a GLPI plugin that allows users to add custom fields 
on GLPI ...)
-       TODO: check
+       NOT-FOR-US: GLPI plugin
 CVE-2026-22545 (Mattermost versions 10.11.x <= 10.11.10 fail to validate 
user's authen ...)
        TODO: check
 CVE-2026-21386 (Mattermost versions 11.3.x <= 11.3.0, 11.2.x <= 11.2.2, 
10.11.x <= 10. ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a975c9a5b3e79d0f1b39c91afafa9b86c226c976

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a975c9a5b3e79d0f1b39c91afafa9b86c226c976
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process some NFUs

Reply via email to