Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
1c24b755 by Salvatore Bonaccorso at 2026-03-19T22:02:16+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -22,37 +22,37 @@ CVE-2026-3548 (Two buffer overflow vulnerabilities existed
in the wolfSSL CRL pa
NOTE: https://github.com/wolfSSL/wolfssl/pull/9628/
NOTE: https://github.com/wolfSSL/wolfssl/pull/9873/
CVE-2026-3511 (Improper Restriction of XML External Entity Reference
vulnerability in ...)
- TODO: check
+ NOT-FOR-US: Slovensko.Digital Autogram
CVE-2026-3503 (Protection mechanism failure in wolfCrypt post-quantum
implementations ...)
TODO: check
CVE-2026-3029 (A path traversal and arbitrary file write vulnerability exist
in the e ...)
TODO: check
CVE-2026-32869 (OPEXUS eComplaint and eCASE before 10.2.0.0 do not correctly
sanitize ...)
- TODO: check
+ NOT-FOR-US: OPEXUS eComplaint and eCASE
CVE-2026-32868 (OPEXUS eComplaint and eCASE before 10.2.0.0 do not correctly
sanitize ...)
- TODO: check
+ NOT-FOR-US: OPEXUS eComplaint and eCASE
CVE-2026-32867 (OPEXUS eComplaint before version 10.1.0.0 allows an
unauthenticated at ...)
- TODO: check
+ NOT-FOR-US: OPEXUS eComplaint
CVE-2026-32866 (OPEXUS eComplaint and eCASE before 10.2.0.0 do not correctly
sanitize ...)
- TODO: check
+ NOT-FOR-US: OPEXUS eComplaint and eCASE
CVE-2026-32865 (OPEXUS eComplaint and eCASE before version 10.1.0.0 include
the secret ...)
- TODO: check
+ NOT-FOR-US: OPEXUS eComplaint and eCASE
CVE-2026-32843 (Location Aware Sensor System by Linkit ONE, up to commit
f06bd20 (2023 ...)
- TODO: check
+ NOT-FOR-US: Location Aware Sensor System by Linkit ONE
CVE-2026-32238 (OpenEMR is a free and open source electronic health records
and medica ...)
NOT-FOR-US: OpenEMR
CVE-2026-32119 (OpenEMR is a free and open source electronic health records
and medica ...)
NOT-FOR-US: OpenEMR
CVE-2026-30711 (Devome GRR v4.5.0 was discovered to contain multiple
authenticated SQL ...)
- TODO: check
+ NOT-FOR-US: Devome GRR
CVE-2026-30694 (An issue in DedeCMS v.5.7.118 and before allows a remote
attacker to e ...)
NOT-FOR-US: DedeCMS
CVE-2026-30404 (The backend database management connection test feature in
wgcloud v3. ...)
- TODO: check
+ NOT-FOR-US: wgcloud
CVE-2026-30403 (There is an arbitrary file read vulnerability in the test
connection f ...)
- TODO: check
+ NOT-FOR-US: wgcloud
CVE-2026-30402 (An issue in wgcloud v.2.3.7 and before allows a remote
attacker to exe ...)
- TODO: check
+ NOT-FOR-US: wgcloud
CVE-2026-2646 (A heap-buffer-overflow vulnerability exists in wolfSSL's
wolfSSL_d2i_S ...)
TODO: check
CVE-2026-2645 (In wolfSSL 5.8.2 and earlier, a logic flaw existed in the TLS
1.2 serv ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1c24b755addb0859d068545944acc55e03dc040d
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1c24b755addb0859d068545944acc55e03dc040d
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
