Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c3db8078 by Salvatore Bonaccorso at 2026-04-03T21:56:31+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -39,49 +39,49 @@ CVE-2026-35216 (Budibase is an open-source low-code
platform. Prior to version 3
CVE-2026-35214 (Budibase is an open-source low-code platform. Prior to version
3.33.4, ...)
NOT-FOR-US: Budibase
CVE-2026-32186 (Microsoft Bing Elevation of Privilege Vulnerability)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2026-31818 (Budibase is an open-source low-code platform. Prior to version
3.33.4, ...)
- TODO: check
+ NOT-FOR-US: Budibase
CVE-2026-28756 (Zohocorp ManageEngine Exchange Reporter Plusversions before
5802 are v ...)
NOT-FOR-US: Zoho
CVE-2026-28754 (Zohocorp ManageEngine Exchange Reporter Plusversions before
5802 are v ...)
NOT-FOR-US: Zoho
CVE-2026-28736 (** UNSUPPORTED WHEN ASSIGNED ** Focalboard version 8.0 fails
to valida ...)
- TODO: check
+ NOT-FOR-US: Focalboard
CVE-2026-28703 (Zohocorp ManageEngine Exchange Reporter Plusversions before
5802 are v ...)
NOT-FOR-US: Zoho
CVE-2026-28373 (The Stackfield Desktop App before 1.10.2 for macOS and Windows
contain ...)
- TODO: check
+ NOT-FOR-US: Stackfield Desktop App
CVE-2026-27655 (Zohocorp ManageEngine Exchange Reporter Plus versions before
5802 are ...)
NOT-FOR-US: Zoho
CVE-2026-27124 (FastMCP is the standard framework for building MCP
applications. Prior ...)
- TODO: check
+ NOT-FOR-US: FastMCP
CVE-2026-26477 (An issue in Dokuwiki v.2025-05-14b 'Librarian' allows a remote
attacke ...)
TODO: check
CVE-2026-25773 (** UNSUPPORTED WHEN ASSIGNED ** Focalboard version 8.0 fails
to saniti ...)
- TODO: check
+ NOT-FOR-US: Focalboard
CVE-2026-25118 (immich is a high performance self-hosted photo and video
management so ...)
- TODO: check
+ NOT-FOR-US: immich
CVE-2026-25044 (Budibase is an open-source low-code platform. Prior to version
3.33.4, ...)
- TODO: check
+ NOT-FOR-US: Budibase
CVE-2026-25043 (Budibase is an open-source low-code platform. Prior to version
3.23.25 ...)
- TODO: check
+ NOT-FOR-US: Budibase
CVE-2026-0545 (In mlflow/mlflow, the FastAPI job endpoints under
`/ajax-api/3.0/jobs/ ...)
NOT-FOR-US: mlflow
CVE-2025-7024 (Incorrect Default Permissions vulnerability in AIRBUS PSS TETRA
Connec ...)
- TODO: check
+ NOT-FOR-US: AIRBUS PSS TETRA Connectivity Server on Windows Server OS
CVE-2025-68153 (Juju is an open source application orchestration engine that
enables a ...)
TODO: check
CVE-2025-68152 (Juju is an open source application orchestration engine that
enables a ...)
TODO: check
CVE-2025-64340 (FastMCP is the standard framework for building MCP
applications. Prior ...)
- TODO: check
+ NOT-FOR-US: FastMCP
CVE-2025-59711 (An issue was discovered in Biztalk360 before 11.5. Because of
mishandl ...)
- TODO: check
+ NOT-FOR-US: Biztalk360
CVE-2025-59710 (An issue was discovered in Biztalk360 before 11.5. Because of
incorrec ...)
- TODO: check
+ NOT-FOR-US: Biztalk360
CVE-2025-59709 (An issue was discovered in Biztalk360 through 11.5. because of
mishand ...)
- TODO: check
+ NOT-FOR-US: Biztalk360
CVE-2026-31404 (In the Linux kernel, the following vulnerability has been
resolved: N ...)
- linux 6.19.10-1
[trixie] - linux <not-affected> (Vulnerable code not present)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c3db80782a4852d747cfc8dbb921312bd706f035
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c3db80782a4852d747cfc8dbb921312bd706f035
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
