[Git][security-tracker-team/security-tracker][master] Prpocess some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Apr 6 19:49:27 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
514b708e by Salvatore Bonaccorso at 2026-04-06T20:48:26+02:00
Prpocess some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -167,7 +167,7 @@ CVE-2026-5547 (A vulnerability has been found in Tenda AC10 16.03.10.10_multi_TD
 CVE-2026-4272 (Missing Authentication for Critical Function vulnerability in Honeywel ...)
 	NOT-FOR-US: Honeywell
 CVE-2026-35679 (Zcash zcashd before 6.12.0 allows invalid transactions to be accepted  ...)
-	TODO: check
+	NOT-FOR-US: Zcash zcashd
 CVE-2019-25704 (Kados R10 GreenBee contains an SQL injection vulnerability that allows ...)
 	TODO: check
 CVE-2019-25702 (Kados R10 GreenBee contains an SQL injection vulnerability that allows ...)
@@ -2100,7 +2100,7 @@ CVE-2026-34076 (Clerk JavaScript is the official JavaScript repository for Clerk
 CVE-2026-34072 (Cr*nMaster (cronmaster) is a Cronjob management UI with human readable ...)
 	NOT-FOR-US: Next.js
 CVE-2026-33990 (Docker Model Runner (DMR) is software used to manage, run, and deploy  ...)
-	TODO: check
+	NOT-FOR-US: Docker Model Runner (DMR)
 CVE-2026-33978 (Notesnook is a note-taking app focused on user privacy & ease of use.  ...)
 	NOT-FOR-US: Notesnook
 CVE-2026-33949 (Tina is a headless content management system. Prior to version 2.2.2,  ...)
@@ -2625,7 +2625,7 @@ CVE-2026-34210 (mppx is a TypeScript interface for machine payments protocol. Pr
 CVE-2026-34209 (mppx is a TypeScript interface for machine payments protocol. Prior to ...)
 	NOT-FOR-US: mppx
 CVE-2026-34206 (Captcha Protect is a Traefik middleware to add an anti-bot challenge t ...)
-	TODO: check
+	NOT-FOR-US: Captcha Protect Traefik middleware
 CVE-2026-34204 (MinIO is a high-performance object storage system. Prior to version RE ...)
 	- minio <itp> (bug #859207)
 CVE-2026-34203 (Nautobot is a Network Source of Truth and Network Automation Platform. ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/514b708e67f9cac6c2ade6706ca50a7841a9e785

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/514b708e67f9cac6c2ade6706ca50a7841a9e785
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260406/4c53da15/attachment.htm>

More information about the debian-security-tracker-commits mailing list