Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f383c817 by Moritz Muehlenhoff at 2026-05-31T23:05:46+02:00
auto-nfu: Update vmware rule
- - - - -
2 changed files:
- data/CVE/list
- data/packages/nfu.yaml
Changes:
=====================================
data/CVE/list
=====================================
@@ -3120,9 +3120,9 @@ CVE-2026-42082 (free5GC is an open-source implementation
of the 5G core network.
CVE-2026-42081 (free5GC is an open-source implementation of the 5G core
network. Prior ...)
NOT-FOR-US: free5GC
CVE-2026-41704 (AgentClient#handle_method (lines 264-303) processes every NATS
reply. ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2026-41009 (When the director sends a long-running request (e.g.
compile_package), ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2026-40852 (A highly authenticated attacker can alter the config generator
injecti ...)
NOT-FOR-US: MB connect line
CVE-2026-40851 (A local attacker can perform a confusion attack on the
cfgparser via a ...)
=====================================
data/packages/nfu.yaml
=====================================
@@ -666,6 +666,7 @@
- cna: vmware
- anyOf:
- product: Avi Load Balancer
+ - product: BOSH Director
- product: Cloud Foundry
- product: Spring AI
- product: Spring Boot
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f383c81720798a2c8705786998b7d92de589b2bc
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f383c81720798a2c8705786998b7d92de589b2bc
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
