Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d3af3109 by Moritz Muehlenhoff at 2026-06-27T13:30:54+02:00
auto-nfu: Extend Trellix rule
- - - - -
2 changed files:
- data/CVE/list
- data/packages/nfu.yaml
Changes:
=====================================
data/CVE/list
=====================================
@@ -814,7 +814,7 @@ CVE-2026-0828 (Kernel driver ProcessMonitorDriver.sys in
Safetica's endpoint cli
CVE-2026-0685 (Server side template inject (SSTI) in the expression evaluation
compon ...)
NOT-FOR-US: Genshi
CVE-2025-7958 (A Code Injection vulnerability existed in Trellix Network
Security CM ...)
- TODO: check
+ NOT-FOR-US: Trellix
CVE-2025-68075 (Contributor Cross Site Scripting (XSS) in BNE Testimonials <=
2.0.8 ve ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-68074 (Contributor Cross Site Scripting (XSS) in Image Carousel <=
1.0.0.41 v ...)
=====================================
data/packages/nfu.yaml
=====================================
@@ -821,6 +821,7 @@
- product: System Information Reporter
- product: Trellix Endpoint Security (HX) Agent
- product: Trellix HX Console
+ - product: Trellix Network Security NX, EX, FX, AX, and CMS
- reason: MediaWiki extensions/skins not packaged in Debian
allOf:
- cna: wikimedia-foundation
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d3af3109b816c3ea2b73b4a8b889cd459fe32771
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d3af3109b816c3ea2b73b4a8b889cd459fe32771
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits