Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
deddd7d1 by security tracker role at 2026-05-06T07:14:26+00:00
automatic NOT-FOR-US entries update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,13 +1,13 @@
CVE-2026-7857 (A vulnerability has been found in D-Link DI-8100 16.07.26A1.
This vuln ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2026-7856 (A flaw has been found in D-Link DI-8100 16.07.26A1. This
affects an un ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2026-7573 (An authorization bypass (CWE-639) in the GetUserRoles gRPC API
endpoin ...)
TODO: check
CVE-2026-7572 (An off-by-one error (CWE-193) in the ConsumeUnit16Array and
ConsumeUni ...)
TODO: check
CVE-2026-5753 (The All-in-One WP Migration Unlimited Extension plugin for
WordPress i ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2026-44405 (In Paramiko through 4.0.0 before a448945, rsakey.py allows the
SHA-1 a ...)
TODO: check
CVE-2026-44331 (In ProFTPD through 1.3.9a before 7666224, a SQL injection
vulnerabilit ...)
@@ -31,7 +31,7 @@ CVE-2026-40075 (OpenMRS Core is an open source electronic
medical record system
CVE-2026-40068 (In versions 2.1.63 through 2.1.83 of Claude Code, the folder
trust det ...)
TODO: check
CVE-2026-3208 (The Mercado Pago payments for WooCommerce plugin for WordPress
is vuln ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2026-39849 (Pi-hole FTL is the core engine of the Pi-hole network-level
advertisem ...)
TODO: check
CVE-2026-39383 (Gotenberg is an API-based document conversion tool. In version
8.29.1, ...)
@@ -81,19 +81,19 @@ CVE-2026-32603 (Sandboxie is an open source sandbox-based
isolation software for
CVE-2026-31893 (Tunnelblick is an open source graphic user interface for
OpenVPN on ma ...)
TODO: check
CVE-2026-2306 (The Ninja Tables \u2013 Easy Data Table Builder plugin for
WordPress i ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-71256 (In nr modem, there is a possible improper input validation.
This could ...)
- TODO: check
+ NOT-FOR-US: Unisoc
CVE-2025-71255 (In Modem IMS, there is a possible improper input validation.
This coul ...)
- TODO: check
+ NOT-FOR-US: Unisoc
CVE-2025-71254 (In Modem IMS, there is a possible improper input validation.
This coul ...)
- TODO: check
+ NOT-FOR-US: Unisoc
CVE-2025-71253 (In Modem IMS, there is a possible improper input validation.
This coul ...)
- TODO: check
+ NOT-FOR-US: Unisoc
CVE-2025-71252 (In Modem IMS, there is a possible improper input validation.
This coul ...)
- TODO: check
+ NOT-FOR-US: Unisoc
CVE-2025-71251 (In IMS, there is a possible system crash due to improper input
validat ...)
- TODO: check
+ NOT-FOR-US: Unisoc
CVE-2024-52911 (Bitcoin Core through 28.x has a security issue, the details of
which a ...)
TODO: check
CVE-2026-39852 (Quarkus is a Java framework for building cloud-native
applications. In ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/deddd7d1d30f6e45fd46b258fe4633c16eb0b0ae
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/deddd7d1d30f6e45fd46b258fe4633c16eb0b0ae
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
