Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
45fae210 by Moritz Muehlenhoff at 2026-06-22T09:37:58+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,5 @@
+CVE-2026-55226
+ NOT-FOR-US: Strimzi
CVE-2026-8918 (A permissive list of allowed inputs in ASUS Armoury Crate
allows a loc ...)
NOT-FOR-US: ASUS
CVE-2026-8157 (The Vitepos WordPress plugin before 3.4.2 does not properly
restrict ...)
@@ -7,7 +9,7 @@ CVE-2026-7859 (The Motors WordPress plugin before 1.4.110 does
not have proper
CVE-2026-6858 (The Transbank Webpay WordPress plugin before 1.14.0 does not
sanitize ...)
NOT-FOR-US: WordPress plugin
CVE-2026-6645 (An insecure process execution vulnerability exists in the
pc-printer-u ...)
- TODO: check
+ NOT-FOR-US: PaperCut Print Deploy
CVE-2026-4259 (The ultimate-woocommerce-auction-pro WordPress plugin through
2.4.5 do ...)
NOT-FOR-US: WordPress plugin
CVE-2026-4110 (The ultimate-woocommerce-auction-pro WordPress plugin through
2.4.5 do ...)
@@ -15,21 +17,21 @@ CVE-2026-4110 (The ultimate-woocommerce-auction-pro
WordPress plugin through 2.4
CVE-2026-12845
REJECTED
CVE-2026-12823 (A security flaw has been discovered in Browserbase up to
20260526. Thi ...)
- TODO: check
+ NOT-FOR-US: Browserbase
CVE-2026-12822 (A vulnerability was identified in langflow-ai langflow up to
1.9.3. Th ...)
- TODO: check
+ NOT-FOR-US: langflow-ai
CVE-2026-12821 (A vulnerability was determined in FlowiseAI Flowise up to
3.1.2. The i ...)
- TODO: check
+ NOT-FOR-US: Flowise#
CVE-2026-12815 (A vulnerability has been found in coollabsio coolify 4.0.0.
Impacted i ...)
- TODO: check
+ NOT-FOR-US: coolify
CVE-2026-12814 (A flaw has been found in Comfast CF-WR631AX V3 up to 2.7.0.8.
This iss ...)
- TODO: check
+ NOT-FOR-US: Comfast CF-WR631AX
CVE-2026-12813 (A vulnerability was detected in activepieces up to 0.83.0.
This vulner ...)
- TODO: check
+ NOT-FOR-US: activepieces
CVE-2026-12812 (A security vulnerability has been detected in Radware Cyber
Controller ...)
- TODO: check
+ NOT-FOR-US: adware Cyber Controller
CVE-2026-12811 (A weakness has been identified in kortix-ai suna up to 0.8.38.
Affecte ...)
- TODO: check
+ NOT-FOR-US: Edimax BR-6478AC
CVE-2026-12810 (A security flaw has been discovered in Edimax BR-6478AC V2
1.23. Affec ...)
NOT-FOR-US: Edimax
CVE-2026-12809 (A vulnerability was identified in Edimax BR-6478AC V2 1.23.
Affected i ...)
@@ -45,11 +47,11 @@ CVE-2026-12805 (A flaw has been found in OFFIS DCMTK up to
3.7.0. The affected e
NOTE: https://support.dcmtk.org/redmine/issues/1208
NOTE: Fixed by:
https://git.dcmtk.org/?p=dcmtk.git;a=commit;h=1d4b3815c0987840a983160bfc671fef63a3105b
CVE-2026-11748 (A vulnerability has been identified in
centraldogma-server-auth-shiro ...)
- TODO: check
+ NOT-FOR-US: centraldogma-server
CVE-2026-11746 (A vulnerability has been identified in centraldogma-server
versions pr ...)
- TODO: check
+ NOT-FOR-US: centraldogma-server
CVE-2026-11745 (A vulnerability has been identified in
centraldogma-server-mirror-git ...)
- TODO: check
+ NOT-FOR-US: centraldogma-server
CVE-2026-10530 (The Pie Register WordPress plugin before 3.8.4.10 does not
use suffic ...)
NOT-FOR-US: WordPress plugin
CVE-2026-56412 (libexpat before 2.8.2 does not consider XML_TOK_DATA_CHARS in
doCdataS ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/45fae210d97c0a12671928d30d3843fb8350a47f
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/45fae210d97c0a12671928d30d3843fb8350a47f
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits