Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
914e74f9 by Salvatore Bonaccorso at 2026-06-13T09:45:13+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -9,31 +9,31 @@ CVE-2026-9062 (The Store Locator WordPress plugin before
1.6.9 does not validate
CVE-2026-9061 (The Store Locator WordPress plugin before 1.6.9 does not
sanitize and ...)
NOT-FOR-US: WordPress plugin
CVE-2026-6676 (Heap buffer out-of-bounds write vulnerability in Avira
Antivirus engin ...)
- TODO: check
+ NOT-FOR-US: Avira
CVE-2026-54398 (An authorization flaw in MISP\u2019s object add/edit handling
allowed ...)
- TODO: check
+ NOT-FOR-US: MISP
CVE-2026-54397 (A vulnerability in MISP\u2019s non-REST event editing path
allowed an ...)
- TODO: check
+ NOT-FOR-US: MISP
CVE-2026-54396 (An information disclosure vulnerability exists in the MISP
AuthKey edi ...)
- TODO: check
+ NOT-FOR-US: MISP
CVE-2026-54395 (MISP contains a reflected cross-site scripting vulnerability
in the Ui ...)
- TODO: check
+ NOT-FOR-US: MISP
CVE-2026-54394 (MISP contains a path traversal vulnerability in
OrganisationsControlle ...)
- TODO: check
+ NOT-FOR-US: MISP
CVE-2026-54393 (A stored cross-site scripting vulnerability exists in MISP
when the Ov ...)
- TODO: check
+ NOT-FOR-US: MISP
CVE-2026-54362 (An incorrect visibility condition in the MISP event template
builder a ...)
- TODO: check
+ NOT-FOR-US: MISP
CVE-2026-54361 (MISP contained multiple mass assignment vulnerabilities in the
handlin ...)
- TODO: check
+ NOT-FOR-US: MISP
CVE-2026-54360 (A mass assignment vulnerability exists in MISP\u2019s sharing
group cr ...)
- TODO: check
+ NOT-FOR-US: MISP
CVE-2026-54359 (MISP contains an insecure default configuration in which the
Security. ...)
- TODO: check
+ NOT-FOR-US: MISP
CVE-2026-54358 (An incorrect authorization vulnerability in MISP allows an
organizatio ...)
- TODO: check
+ NOT-FOR-US: MISP
CVE-2026-54357 (An improper authorization vulnerability in MISP allowed an
authenticat ...)
- TODO: check
+ NOT-FOR-US: MISP
CVE-2026-54231 (A content injection vulnerability was found in the ABRT
post-create ev ...)
TODO: check
CVE-2026-54230 (A symlink following vulnerability was found in the ABRT
post-create ev ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/914e74f9a030063be45e1c1cde4a80be5124335f
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/914e74f9a030063be45e1c1cde4a80be5124335f
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
