Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a04c58b6 by Salvatore Bonaccorso at 2026-06-02T10:39:03+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -35,7 +35,7 @@ CVE-2026-3722 (The Auto Image Attributes From Filename With
Bulk Updater (Add Al
CVE-2026-3198 (MLflow 3.9.0 with basic-auth (`--app-name basic-auth`) fails to
enforc ...)
NOT-FOR-US: mlflow
CVE-2026-37234 (FlexRIC v2.0.0 allows a single SCTP connection to bind
multiple xapp_i ...)
- TODO: check
+ NOT-FOR-US: FlexRIC
CVE-2026-28586 (In multiple functions of AppOpsService.java, there is a
possible missi ...)
NOT-FOR-US: Android
CVE-2026-28581 (In fixInitiatingUserIfNecessary of CallIntentProcessor.java,
there is ...)
@@ -47,9 +47,9 @@ CVE-2026-28578 (In multiple functions of
DevicePolicyManagerService.java, there
CVE-2026-28577 (In addWindow of WindowManagerService.java, there is a possible
tapjack ...)
NOT-FOR-US: Android
CVE-2026-28511 (eLabFTW is an open source electronic lab notebook. Prior to
version 5. ...)
- TODO: check
+ NOT-FOR-US: eLabFTW
CVE-2026-25879 (Langroid is a framework for building
large-language-model-powered appl ...)
- TODO: check
+ NOT-FOR-US: Langroid
CVE-2026-25277 (Memory corruption while using Strongbox due to buffer
overflow.)
NOT-FOR-US: Qualcomm
CVE-2026-25276 (Memory corruption while using Strongbox due to missing bounds
check.)
@@ -61,21 +61,21 @@ CVE-2026-25259 (Memory corruption while processing multiple
IOCTL command for es
CVE-2026-25258 (Memory corruption while processing IOCTL calls for escape
operations.)
NOT-FOR-US: Qualcomm
CVE-2026-24782 (Kiteworks is a private data network (PDN). Prior to version
9.3.0,ulti ...)
- TODO: check
+ NOT-FOR-US: Kiteworks
CVE-2026-24761 (Kiteworks is a private data network (PDN). Prior to version
9.3.0, an ...)
- TODO: check
+ NOT-FOR-US: Kiteworks
CVE-2026-24756 (Kiteworks is a private data network (PDN). Prior to version
9.3.0, an ...)
- TODO: check
+ NOT-FOR-US: Kiteworks
CVE-2026-24755 (Kiteworks is a private data network (PDN). Prior to version
9.3.0, an ...)
- TODO: check
+ NOT-FOR-US: Kiteworks
CVE-2026-24754 (Kiteworks is a private data network (PDN). Prior to version
9.3.0, a s ...)
- TODO: check
+ NOT-FOR-US: Kiteworks
CVE-2026-24753 (Kiteworks is a private data network (PDN). Prior to version
9.3.0, an ...)
- TODO: check
+ NOT-FOR-US: Kiteworks
CVE-2026-24752 (Kiteworks is a private data network (PDN). Prior to version
9.3.0, a r ...)
- TODO: check
+ NOT-FOR-US: Kiteworks
CVE-2026-24751 (Kiteworks is a private data network (PDN). Prior to version
9.3.0, a r ...)
- TODO: check
+ NOT-FOR-US: Kiteworks
CVE-2026-24092 (Memory Corruption when processing fastboot commands to set
display mod ...)
NOT-FOR-US: Qualcomm
CVE-2026-24091 (Memory corruption while processing fastboot commands with
improperly f ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a04c58b6ac6ce290b17187335756facf532f09f0
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a04c58b6ac6ce290b17187335756facf532f09f0
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
