[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Apr 2 08:39:16 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6153cfed by Salvatore Bonaccorso at 2026-04-02T09:38:51+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,13 +1,13 @@
 CVE-2026-5325 (A vulnerability was determined in SourceCodester Simple Customer Relat ...)
 	NOT-FOR-US: SourceCodester
 CVE-2026-5323 (A vulnerability was found in priyankark a11y-mcp up to 1.0.5. This vul ...)
-	TODO: check
+	NOT-FOR-US: priyankark a11y-mcp
 CVE-2026-5322 (A vulnerability has been found in AlejandroArciniegas mcp-data-vis bc5 ...)
-	TODO: check
+	NOT-FOR-US: AlejandroArciniegas mcp-data-vis
 CVE-2026-5321 (A flaw has been found in vanna-ai vanna up to 2.0.2. Affected by this  ...)
-	TODO: check
+	NOT-FOR-US: vanna-ai vanna
 CVE-2026-5320 (A vulnerability was detected in vanna-ai vanna up to 2.0.2. Affected b ...)
-	TODO: check
+	NOT-FOR-US: vanna-ai vanna
 CVE-2026-5319 (A security vulnerability has been detected in itsourcecode Payroll Man ...)
 	NOT-FOR-US: itsourcecode System
 CVE-2026-5318 (A weakness has been identified in LibRaw up to 0.22.0. This impacts th ...)
@@ -45,43 +45,43 @@ CVE-2026-34873 (An issue was discovered in Mbed TLS 3.5.0 through 4.0.0. Client
 CVE-2026-34872 (An issue was discovered in Mbed TLS 3.5.x and 3.6.x through 3.6.5 and  ...)
 	TODO: check
 CVE-2026-34750 (Payload is a free and open source headless content management system.  ...)
-	TODO: check
+	NOT-FOR-US: Payload CMS
 CVE-2026-34749 (Payload is a free and open source headless content management system.  ...)
-	TODO: check
+	NOT-FOR-US: Payload CMS
 CVE-2026-34748 (Payload is a free and open source headless content management system.  ...)
-	TODO: check
+	NOT-FOR-US: Payload CMS
 CVE-2026-34747 (Payload is a free and open source headless content management system.  ...)
-	TODO: check
+	NOT-FOR-US: Payload CMS
 CVE-2026-34746 (Payload is a free and open source headless content management system.  ...)
-	TODO: check
+	NOT-FOR-US: Payload CMS
 CVE-2026-34572 (CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production ...)
-	TODO: check
+	NOT-FOR-US: CI4MS
 CVE-2026-34571 (CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production ...)
-	TODO: check
+	NOT-FOR-US: CI4MS
 CVE-2026-34570 (CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production ...)
-	TODO: check
+	NOT-FOR-US: CI4MS
 CVE-2026-34569 (CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production ...)
-	TODO: check
+	NOT-FOR-US: CI4MS
 CVE-2026-34568 (CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production ...)
-	TODO: check
+	NOT-FOR-US: CI4MS
 CVE-2026-34567 (CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production ...)
-	TODO: check
+	NOT-FOR-US: CI4MS
 CVE-2026-34566 (CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production ...)
-	TODO: check
+	NOT-FOR-US: CI4MS
 CVE-2026-34565 (CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production ...)
-	TODO: check
+	NOT-FOR-US: CI4MS
 CVE-2026-34564 (CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production ...)
-	TODO: check
+	NOT-FOR-US: CI4MS
 CVE-2026-34563 (CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production ...)
-	TODO: check
+	NOT-FOR-US: CI4MS
 CVE-2026-34562 (CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production ...)
-	TODO: check
+	NOT-FOR-US: CI4MS
 CVE-2026-34561 (CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production ...)
-	TODO: check
+	NOT-FOR-US: CI4MS
 CVE-2026-34560 (CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production ...)
-	TODO: check
+	NOT-FOR-US: CI4MS
 CVE-2026-34559 (CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production ...)
-	TODO: check
+	NOT-FOR-US: CI4MS
 CVE-2026-34545 (OpenEXR provides the specification and reference implementation of the ...)
 	TODO: check
 CVE-2026-34544 (OpenEXR provides the specification and reference implementation of the ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6153cfed525159dfb85c5823b6989707282f784e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6153cfed525159dfb85c5823b6989707282f784e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260402/e1e65135/attachment.htm>

More information about the debian-security-tracker-commits mailing list