Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
cb9f04dc by Salvatore Bonaccorso at 2026-07-15T10:49:34+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5,7 +5,7 @@ CVE-2026-9653 (A denial-of-service security issue exists across
all the 1756-EN2
CVE-2026-9636 (A security issue exists within CompactLogix\xae 5380,
ControlLogix\xae ...)
NOT-FOR-US: Rockwell Automation
CVE-2026-9561 (Eclipse Kura versions prior to 5.6.2 trust the client-supplied
X-Forwa ...)
- TODO: check
+ NOT-FOR-US: Eclipse
CVE-2026-9341 (The Academy LMS \u2013 WordPress LMS Plugin for Complete
eLearning Sol ...)
NOT-FOR-US: WordPress plugin
CVE-2026-9292 (A Stored Cross-Site Scripting security issue exists within
FactoryTalk ...)
@@ -23,7 +23,7 @@ CVE-2026-8920 (Improper Restriction of Communication Channel
to Intended Endpoin
CVE-2026-8919 (Permissive Cross-domain Security Policy with Untrusted Domains
in ASUS ...)
NOT-FOR-US: ASUS
CVE-2026-8590 (Vulnerability in Spotfire Spotfire Enterprise (Spotfire Server
modules ...)
- TODO: check
+ NOT-FOR-US: Spotfire
CVE-2026-8384 (In Eclipse Jetty, an HTTP URI of this form:
/public;/../admin/sec ...)
TODO: check
CVE-2026-8314 (A security issue exists within Arena\xae Simulation due to a
memory co ...)
@@ -53,13 +53,13 @@ CVE-2026-62655 (A security flaw was found in certain
NETGEAR Orbi models that co
CVE-2026-62422 (In JetBrains YouTrack before 2026.1.13757, 2025.3.148033,
2025.2.14804 ...)
NOT-FOR-US: JetBrains
CVE-2026-61520 (Simple Machines Forum 2.1 prior to commit 4bf35cf and 3.0
prior to com ...)
- TODO: check
+ NOT-FOR-US: Simple Machines Forum
CVE-2026-60119 (Hi.Events before 1.11.0 contains a cross-site scripting
vulnerability ...)
- TODO: check
+ NOT-FOR-US: Hi.Events
CVE-2026-60118 (Hi.Events before 1.11.0 contains a missing server-side
visibility enfo ...)
- TODO: check
+ NOT-FOR-US: Hi.Events
CVE-2026-60114 (Sustainable Irrigation Platform (SIP) through version 5.2.16
contains ...)
- TODO: check
+ NOT-FOR-US: Sustainable Irrigation Platform (SIP)
CVE-2026-5270 (An authentication bypass vulnerability exists in certain
releases of C ...)
TODO: check
CVE-2026-5269 (In Ciena's Navigator Network Control Suite (NCS) and Manage
Control Pl ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cb9f04dce7f0d2abf0d5c4ca7694d71d963f9d57
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cb9f04dce7f0d2abf0d5c4ca7694d71d963f9d57
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits