Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
c83d28e7 by Moritz Muehlenhoff at 2026-07-02T14:42:27+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -63,7 +63,7 @@ CVE-2026-55661 (Tina is a headless content management system. 
In versions prior
 CVE-2026-55660 (Tina is a headless content management system. In versions 
prior to @ti ...)
        NOT-FOR-US: Tina CMS
 CVE-2026-55153 (mchange-commons-java is a Java library of shared utility 
classes used  ...)
-       TODO: check
+       - mchange-commons-java <itp> (bug #806774)
 CVE-2026-54908 (Pion DTLS is a Go implementation of Datagram Transport Layer 
Security. ...)
        TODO: check
 CVE-2026-54786 (Wasmtime is a runtime for WebAssembly. All versions prior to 
24.0.10;  ...)
@@ -71,7 +71,7 @@ CVE-2026-54786 (Wasmtime is a runtime for WebAssembly. All 
versions prior to 24.
 CVE-2026-54756 (Jodit Editor is a WYSIWYG editor with written in pure 
TypeScript file  ...)
        NOT-FOR-US: Jodit Editor
 CVE-2026-54720 (Silverstripe Framework is a PHP framework which powers the 
Silverstrip ...)
-       TODO: check
+       NOT-FOR-US: Silverstripe Framework
 CVE-2026-54712 (OpenTelemetry Java Instrumentation provides OpenTelemetry 
auto-instrum ...)
        TODO: check
 CVE-2026-54704 (OpenTelemetry Java Instrumentation provides OpenTelemetry 
auto-instrum ...)
@@ -87,13 +87,13 @@ CVE-2026-54260 (Wagtail is an open source content 
management system built on Dja
 CVE-2026-54259 (Wagtail is an open source content management system built on 
Django. I ...)
        NOT-FOR-US: Wagtail
 CVE-2026-54164 (API Platform Core is a system to create hypermedia-driven REST 
and Gra ...)
-       TODO: check
+       NOT-FOR-US: API Platform Core
 CVE-2026-54074 (Tina is a headless content management system. @tinacms/cli 
versions pr ...)
-       TODO: check
+       NOT-FOR-US: Tina
 CVE-2026-52190 (Buffer Overflow vulnerability in UTT nv518G 
nv518GV3v3.2.7-210919-1613 ...)
-       TODO: check
+       NOT-FOR-US: UTT
 CVE-2026-52186 (SQL Injection vulnerability in UTT nv518G 
nv518GV3v3.2.7-210919-161313 ...)
-       TODO: check
+       NOT-FOR-US: UTT
 CVE-2026-50521 (Use after free in Microsoft Edge (Chromium-based) allows an 
authorized ...)
        NOT-FOR-US: Microsoft
 CVE-2026-50284 (Craft CMS is a content management system (CMS). In versions 
5.0.0-RC1  ...)
@@ -105,7 +105,7 @@ CVE-2026-50280 (Craft CMS is a content management system 
(CMS). In versions 5.0.
 CVE-2026-50279 (Craft CMS is a content management system (CMS). IN versions 
5.0.0-RC1  ...)
        NOT-FOR-US: Craft CMS or plugin for Craft CMS
 CVE-2026-49858 (API Platform Core is a system to create hypermedia-driven REST 
and Gra ...)
-       TODO: check
+       NOT-FOR-US: API Platform Core
 CVE-2026-38891 (An improper input validation in the gazebo_ros_diff_drive.cpp 
componen ...)
        TODO: check
 CVE-2026-36912 (A NULL pointer dereference in the 
AP4_AtomSampleTable::GetSample() fun ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c83d28e7b0b0ff894db97b856479848c8da0419f

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c83d28e7b0b0ff894db97b856479848c8da0419f
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help


_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to