Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
7c509640 by Salvatore Bonaccorso at 2026-06-21T09:42:49+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3,27 +3,27 @@ CVE-2026-52911 [ksmbd: scope conn->binding slowpath to bound
sessions only]
[bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE:
https://git.kernel.org/linus/b0da97c034b6107d14e537e212d4ce8b22109a58 (7.1-rc1)
CVE-2026-56355 (GNU Savannah Administration Savane through 3.17 uses untrusted
data as ...)
- TODO: check
+ NOT-FOR-US: GNU Savannah Administration Savane
CVE-2026-12780 (A vulnerability was determined in AOMEI Backupper up to 8.3.0.
Impacte ...)
- TODO: check
+ NOT-FOR-US: AOMEI Backupper
CVE-2026-12779 (A vulnerability was found in AOMEI Dynamic Disk Manager up to
10.10.1. ...)
- TODO: check
+ NOT-FOR-US: AOMEI Dynamic Disk Manager
CVE-2026-12778 (A vulnerability has been found in AOMEI Partition Assistant up
to 10.1 ...)
- TODO: check
+ NOT-FOR-US: AOMEI Partition Assistant
CVE-2026-12776 (A flaw has been found in Montodel House-Rental-Management up
to 900100 ...)
- TODO: check
+ NOT-FOR-US: Montodel House-Rental-Management
CVE-2026-12775 (A vulnerability was detected in Montodel
House-Rental-Management up to ...)
- TODO: check
+ NOT-FOR-US: Montodel House-Rental-Management
CVE-2026-12774 (A security vulnerability has been detected in BerriAI litellm
up to 1. ...)
- TODO: check
+ NOT-FOR-US: LiteLLM
CVE-2026-12773 (A weakness has been identified in BerriAI litellm up to
1.59.8. Affect ...)
- TODO: check
+ NOT-FOR-US: LiteLLM
CVE-2026-12772 (A security flaw has been discovered in BerriAI litellm up to
1.82.2. T ...)
- TODO: check
+ NOT-FOR-US: LiteLLM
CVE-2026-12771 (A vulnerability was identified in BerriAI litellm up to
1.82.2. This a ...)
- TODO: check
+ NOT-FOR-US: LiteLLM
CVE-2026-12770 (A vulnerability was determined in BerriAI litellm up to
1.63.1. The im ...)
- TODO: check
+ NOT-FOR-US: LiteLLM
CVE-2026-54604
[experimental] - openslide 4.0.1+dfsg-1~0exp2
- openslide <unfixed>
@@ -189,9 +189,9 @@ CVE-2026-42895 (Improper neutralization of special elements
used in a command ('
CVE-2026-32208 (Improper neutralization of input during web page generation
('cross-si ...)
NOT-FOR-US: Microsoft
CVE-2026-27878 (A TraceQL query in Grafana Tempo with a large exemplars hint
value can ...)
- TODO: check
+ NOT-FOR-US: Grafana Tempo
CVE-2026-12726 (A flaw was found in the AWX GitHub webhook integration. When
processin ...)
- TODO: check
+ NOT-FOR-US: Red Hat Ansible Automation Platform 2
CVE-2026-11551 (The Branda plugin for WordPress is vulnerable to privilege
escalation ...)
NOT-FOR-US: WordPress plugin
CVE-2026-9143 (There is an incorrect conversion between numeric types
vulnerability i ...)
@@ -257,7 +257,7 @@ CVE-2026-49357 (Line Desktop MCP is a project that, while
unaffiliated with the
CVE-2026-49339 (gonic is a music streaming server / free-software subsonic
server API ...)
NOT-FOR-US: gonic music streaming server
CVE-2026-49336 (@microsoft/kiota-http-fetchlibrary provides TypeScript
libraries for K ...)
- TODO: check
+ NOT-FOR-US: microsoft/kiota-http-fetchlibrary
CVE-2026-49293 (js-toml is a TOML parser for JavaScript, fully compliant with
the TOML ...)
NOT-FOR-US: js-toml
CVE-2026-49291 (mcp-memory-service is a semantic memory layer for AI
applications. Pri ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7c50964080d68442e603d803aaedb9d5bd53ed30
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7c50964080d68442e603d803aaedb9d5bd53ed30
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits