[Git][security-tracker-team/security-tracker][master] auto-nfu: Extend Apache rule

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d6dc4373 by Moritz Muehlenhoff at 2025-12-15T23:30:56+01:00
auto-nfu: Extend Apache rule

- - - - -


2 changed files:

- data/CVE/list
- data/packages/nfu.yaml


Changes:

=====================================
data/CVE/list
=====================================
@@ -643,7 +643,7 @@ CVE-2025-36744 (SolarEdge SE3680H has unauthenticated disclosure of sensitive in
 CVE-2025-36743 (SolarEdge SE3680H has an exposed debug/test interface accessible to un ...)
 	NOT-FOR-US: SolarEdge SE3680H
 CVE-2025-26866 (A remote code execution vulnerability exists where a malicious Raft no ...)
-	TODO: check
+	NOT-FOR-US: Apache software not packaged in Debian
 CVE-2025-23408 (Weak Password Requirements vulnerability in Apache Fineract.  This iss ...)
 	NOT-FOR-US: Apache software not packaged in Debian
 CVE-2025-14578 (A weakness has been identified in itsourcecode Student Management Syst ...)


=====================================
data/packages/nfu.yaml
=====================================
@@ -302,6 +302,7 @@
       - product: Apache Geode
       - product: Apache HertzBeat (incubating)
       - product: Apache Hive
+      - product: Apache HugeGraph-Server
       - product: Apache IoTDB
       - product: Apache Kvrocks
       - product: Apache Kylin



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d6dc4373bea01fc3402562af8aac1d8232c84eef

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d6dc4373bea01fc3402562af8aac1d8232c84eef
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251215/2ad2898e/attachment.htm>