Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5d9e2b77 by Salvatore Bonaccorso at 2026-04-04T09:50:58+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,7 +1,7 @@
CVE-2026-5485 (OS command injection in the browser-based authentication
component in ...)
NOT-FOR-US: Amazon
CVE-2026-5484 (A weakness has been identified in BookStackApp BookStack up to
26.03. ...)
- TODO: check
+ NOT-FOR-US: BookStackApp BookStack
CVE-2026-3571 (The Pie Register \u2013 User Registration, Profiles & Content
Restrict ...)
NOT-FOR-US: WordPress plugin
CVE-2026-35616 (A improper access control vulnerability in Fortinet
FortiClientEMS 7.4 ...)
@@ -31,31 +31,31 @@ CVE-2026-34978 (OpenPrinting CUPS is an open source
printing system for Linux an
- cups <unfixed>
NOTE:
https://github.com/OpenPrinting/cups/security/advisories/GHSA-f53q-7mxp-9gcr
CVE-2026-34955 (PraisonAI is a multi-agent teams system. Prior to version
4.5.97, Subp ...)
- TODO: check
+ NOT-FOR-US: PraisonAI
CVE-2026-34954 (PraisonAI is a multi-agent teams system. Prior to version
1.5.95, File ...)
- TODO: check
+ NOT-FOR-US: PraisonAI
CVE-2026-34953 (PraisonAI is a multi-agent teams system. Prior to version
4.5.97, OAut ...)
- TODO: check
+ NOT-FOR-US: PraisonAI
CVE-2026-34952 (PraisonAI is a multi-agent teams system. Prior to version
4.5.97, the ...)
- TODO: check
+ NOT-FOR-US: PraisonAI
CVE-2026-34947 (Discourse is an open-source discussion platform. From versions
2026.1. ...)
NOT-FOR-US: Discourse
CVE-2026-34939 (PraisonAI is a multi-agent teams system. Prior to version
4.5.90, MCPT ...)
- TODO: check
+ NOT-FOR-US: PraisonAI
CVE-2026-34938 (PraisonAI is a multi-agent teams system. Prior to version
1.5.90, exec ...)
- TODO: check
+ NOT-FOR-US: PraisonAI
CVE-2026-34937 (PraisonAI is a multi-agent teams system. Prior to version
1.5.90, run_ ...)
- TODO: check
+ NOT-FOR-US: PraisonAI
CVE-2026-34936 (PraisonAI is a multi-agent teams system. Prior to version
4.5.90, pass ...)
- TODO: check
+ NOT-FOR-US: PraisonAI
CVE-2026-34935 (PraisonAI is a multi-agent teams system. From version 4.5.15
to before ...)
- TODO: check
+ NOT-FOR-US: PraisonAI
CVE-2026-34934 (PraisonAI is a multi-agent teams system. Prior to version
4.5.90, the ...)
- TODO: check
+ NOT-FOR-US: PraisonAI
CVE-2026-34933 (Avahi is a system which facilitates service discovery on a
local netwo ...)
TODO: check
CVE-2026-34824 (Mesop is a Python-based UI framework that allows users to
build web ap ...)
- TODO: check
+ NOT-FOR-US: Mesop
CVE-2026-34788 (Emlog is an open source website building system. In versions
2.6.2 and ...)
NOT-FOR-US: Emlog
CVE-2026-34787 (Emlog is an open source website building system. In versions
2.6.2 and ...)
@@ -91,7 +91,7 @@ CVE-2026-34767 (Electron is a framework for writing
cross-platform desktop appli
CVE-2026-34766 (Electron is a framework for writing cross-platform desktop
application ...)
TODO: check
CVE-2026-34612 (Kestra is an open-source, event-driven orchestration platform.
Prior t ...)
- TODO: check
+ NOT-FOR-US: Kestra
CVE-2026-34607 (Emlog is an open source website building system. In versions
2.6.2 and ...)
NOT-FOR-US: Emlog
CVE-2026-34511 (OpenClaw before 2026.4.2 reuses the PKCE verifier as the OAuth
state p ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5d9e2b774c2a7dbb3bad85153eac1cdc12c56b77
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5d9e2b774c2a7dbb3bad85153eac1cdc12c56b77
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
