[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) Mon, 01 Jun 2026 00:30:47 -0700


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
ea8f84f1 by Moritz Muehlenhoff at 2026-06-01T09:30:11+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -6957,7 +6957,7 @@ CVE-2026-48213 (Open ISES Tickets before 3.44.2 contains 
a reflected cross-site
 CVE-2026-48207 (Deserialization of untrusted data in Apache Fory PyFory. 
PyFory's Redu ...)
        NOT-FOR-US: Apache software not packaged in Debian
 CVE-2026-45760 ((Externally Controlled Reference to a Resource in Another 
Sphere), (Au ...)
-       TODO: check
+       NOT-FOR-US: Apache software not packaged in Debian
 CVE-2026-45255 (When bsdinstall or bsdconfig are prompted to scan for nearby 
Wi-Fi net ...)
        NOT-FOR-US: FreeBSD
 CVE-2026-45254 (In the case of the cap_net service, when a key present in the 
old limi ...)
@@ -17015,7 +17015,7 @@ CVE-2026-23926 (An authenticated (non-super) 
administrator can create a maintena
        [bookworm] - zabbix <ignored> (The WEB UI is only supported for access 
by trusted users, no security updates issued for it, #1124558)
        NOTE: https://support.zabbix.com/browse/ZBX-27758
 CVE-2026-23870 (A denial of service vulnerability could be triggered by 
sending specia ...)
-       TODO: check
+       NOT-FOR-US: React Server
 CVE-2026-21661 (Uncontrolled Search Path Element vulnerability in 
JohnsonControls AC20 ...)
        NOT-FOR-US: Johnson Controls
 CVE-2026-20219 (A vulnerability in the REST API of Cisco Slido could have 
allowed an a ...)
@@ -25856,7 +25856,7 @@ CVE-2026-31431 (In the Linux kernel, the following 
vulnerability has been resolv
        NOTE: https://xint.io/blog/copy-fail-pod-to-host
        NOTE: https://www.openwall.com/lists/oss-security/2026/04/29/23
 CVE-2026-31192 (Insufficient validation of Chrome extension identifiers in 
Raindrop.io ...)
-       TODO: check
+       NOT-FOR-US: Raindrop.io Bookmark Manager Web App
 CVE-2026-30139 (A reflected cross-site scripting (XSS) vulnerability in the 
AdvancedSe ...)
        NOT-FOR-US: Silverpeas Core
 CVE-2026-2719 (The Private WP suite plugin for WordPress is vulnerable to 
Stored Cros ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ea8f84f1a0e97bf03cecbded9bc41005934a08fe

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ea8f84f1a0e97bf03cecbded9bc41005934a08fe
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] NFUs

Reply via email to