Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6651444f by Moritz Muehlenhoff at 2026-07-01T08:36:38+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1326,25 +1326,25 @@ CVE-2026-44946 (A SAML authentication replay
vulnerability in Rancher's Assertio
CVE-2026-41053 (Incorrect authentication caching in the team member ship
expansion of ...)
TODO: check
CVE-2026-35098 (KTM System e-BOK does not implement any limit or timeout on
consecutiv ...)
- TODO: check
+ NOT-FOR-US: KTM System e-BOK
CVE-2026-35097 (KTM System e-BOK enforces a maximum password length of six
numeric dig ...)
- TODO: check
+ NOT-FOR-US: KTM System e-BOK
CVE-2026-35096 (KTM System e-BOK is vulnerable to Cross\u2011Site Request
Forgery (CSR ...)
- TODO: check
+ NOT-FOR-US: KTM System e-BOK
CVE-2026-35095 (KTM System e-BOK allows the session identifier to be set by
the client ...)
- TODO: check
+ NOT-FOR-US: KTM System e-BOK
CVE-2026-27957 (Coolify is an open-source and self-hostable tool for managing
servers, ...)
- TODO: check
+ NOT-FOR-US: Coolify
CVE-2026-27956 (Coolify is an open-source and self-hostable tool for managing
servers, ...)
- TODO: check
+ NOT-FOR-US: Coolify
CVE-2026-27955 (Coolify is an open-source and self-hostable tool for managing
servers, ...)
- TODO: check
+ NOT-FOR-US: Coolify
CVE-2026-27883 (Coolify is an open-source and self-hostable tool for managing
servers, ...)
- TODO: check
+ NOT-FOR-US: Coolify
CVE-2026-27882 (Coolify is an open-source and self-hostable tool for managing
servers, ...)
- TODO: check
+ NOT-FOR-US: Coolify
CVE-2026-27881 (Coolify is an open-source and self-hostable tool for managing
servers, ...)
- TODO: check
+ NOT-FOR-US: Coolify
CVE-2026-14241 (Memory safety bugs present in Firefox 152.0.3. Some of these
bugs show ...)
- firefox 152.0.4-1
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2026-62/#CVE-2026-14241
@@ -1359,9 +1359,9 @@ CVE-2026-14161 (Hospital Quening Management developed by
Advantech has a Sensiti
CVE-2026-13474 (Denial of service via malformed HTTP/2 requests inNetScaler
ADC and Ne ...)
NOT-FOR-US: NetScaler
CVE-2026-13455 (PostgreSQL Anonymizer contains a vulnerability that allows
unprivilege ...)
- TODO: check
+ NOT-FOR-US: PostgreSQL Anonymizer
CVE-2026-13316 (A flaw has been found in foreman when HTTP parameters are
modified in ...)
- TODO: check
+ - foreman <itp> (bug #663101)
CVE-2026-13149 (brace-expansion through 5.0.6 is vulnerable to denial of
service. The ...)
TODO: check
CVE-2026-12610 (A flaw was found in sssd. When authenticating with a YubiKey,
the SSSD ...)
@@ -1369,9 +1369,9 @@ CVE-2026-12610 (A flaw was found in sssd. When
authenticating with a YubiKey, th
CVE-2026-12578 (The affected product is vulnerable to a deserialization of
untrusted d ...)
NOT-FOR-US: Delta Electronics
CVE-2026-12388 (A flaw was found in the Identity Provider (IdP) mapper
component of Ke ...)
- TODO: check
+ - keycloak <itp> (bug #1088287)
CVE-2026-12076 (Raytha CMS is vulnerable to SQL Injection within the OData
filter pars ...)
- TODO: check
+ NOT-FOR-US: Raytha CMS
CVE-2026-10817 (Insufficient input validation leading to memory overread
inNetScaler A ...)
NOT-FOR-US: NetScaler
CVE-2026-10816 (Arbitrary File Read (Unauthenticated) inNetScaler ADC and
NetScaler Ga ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6651444fb0f292bd6e7bcc682b8ef8fd83e7d75b
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6651444fb0f292bd6e7bcc682b8ef8fd83e7d75b
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits