[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) jmm at debian.org
Sun Apr 26 22:50:17 BST 2026 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
dae1636b by Moritz Muehlenhoff at 2026-04-26T23:49:27+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -69,15 +69,15 @@ CVE-2018-25289 (Softdisk 3.0.3 contains a buffer overflow vulnerability in the r
 CVE-2018-25288 (StyleWriter 1.0 contains a buffer overflow vulnerability that allows l ...)
 	TODO: check
 CVE-2018-25287 (Drive Power Manager 1.10 contains a buffer overflow vulnerability that ...)
-	TODO: check
+	NOT-FOR-US: Drive Power Manager
 CVE-2018-25286 (Easy PhotoResQ 1.0 contains a buffer overflow vulnerability that allow ...)
-	TODO: check
+	NOT-FOR-US: Easy PhotoResQ
 CVE-2018-25285 (Fathom 2.4 contains a buffer overflow vulnerability in the Authorizati ...)
 	TODO: check
 CVE-2018-25284 (HD Tune Pro 5.70 contains a buffer overflow vulnerability that allows  ...)
-	TODO: check
+	NOT-FOR-US: HD Tune Pro
 CVE-2018-25283 (iSmartViewPro 1.5 contains a structured exception handling (SEH) buffe ...)
-	TODO: check
+	NOT-FOR-US: iSmartViewPro
 CVE-2018-25282 (Nmap 7.70 contains a denial of service vulnerability that allows local ...)
 	TODO: check
 CVE-2018-25281 (iCash 7.6.5 contains a buffer overflow vulnerability that allows local ...)
@@ -87,21 +87,21 @@ CVE-2018-25280 (Infiltrator Network Security Scanner 4.6 contains a buffer overf
 CVE-2018-25279 (jiNa OCR Image to Text 1.0 contains a denial of service vulnerability  ...)
 	TODO: check
 CVE-2018-25278 (PicaJet FX 2.6.5 contains a denial of service vulnerability that allow ...)
-	TODO: check
+	NOT-FOR-US: PicaJet FX
 CVE-2018-25277 (PixGPS 1.1.8 contains a buffer overflow vulnerability that allows loca ...)
-	TODO: check
+	NOT-FOR-US: PixGPS
 CVE-2018-25276 (RoboImport 1.2.0.72 contains a denial of service vulnerability that al ...)
-	TODO: check
+	NOT-FOR-US: RoboImport
 CVE-2018-25275 (Faleemi Plus 1.0.2 contains a buffer overflow vulnerability that allow ...)
-	TODO: check
+	NOT-FOR-US: Faleemi Plus
 CVE-2018-25274 (InfraRecorder 0.53 contains a denial of service vulnerability that all ...)
-	TODO: check
+	NOT-FOR-US: InfraRecorder
 CVE-2018-25273 (CrossFont 7.5 contains a buffer overflow vulnerability that allows loc ...)
-	TODO: check
+	NOT-FOR-US: CrossFont
 CVE-2018-25264 (TransMac 12.2 contains a buffer overflow vulnerability in the license  ...)
-	TODO: check
+	NOT-FOR-US: TransMac
 CVE-2018-25263 (Faleemi Desktop Software 1.8.2 contains a local buffer overflow vulner ...)
-	TODO: check
+	NOT-FOR-US: Faleemi Desktop Software
 CVE-2026-7024 (A flaw has been found in rawchen sims up to 004f783b1db5ecdfad81c8fdc3 ...)
 	NOT-FOR-US: rawchen sims
 CVE-2026-7023 (A vulnerability was detected in ByteDance coze-studio up to 0.5.1. Aff ...)
@@ -163,9 +163,9 @@ CVE-2026-6988 (A flaw has been found in Tenda HG10 HG7_HG9_HG10re_300001138_en_x
 CVE-2026-6987 (A vulnerability was detected in PicoClaw up to 0.2.4. Impacted is an u ...)
 	NOT-FOR-US: PicoClaw
 CVE-2026-6986 (A security vulnerability has been detected in Cesanta Mongoose up to 7 ...)
-	TODO: check
+	NOT-FOR-US: Cesenta Mongoose
 CVE-2026-6985 (A weakness has been identified in Cesanta Mongoose up to 7.20. This vu ...)
-	TODO: check
+	NOT-FOR-US: Cesenta Mongoose
 CVE-2026-6984 (A security flaw has been discovered in AstrBotDevs AstrBot up to 4.22. ...)
 	NOT-FOR-US: AstrBotDevs AstrBot
 CVE-2026-6983 (A vulnerability was identified in pagekit up to 1.0.18. Affected by th ...)
@@ -1207,7 +1207,7 @@ CVE-2026-31952 (Xibo is an open source digital signage platform with a web conte
 CVE-2026-2028 (The MaxiBlocks Builder plugin for WordPress is vulnerable to arbitrary ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2026-29197 (In versions <8.4.0, <8.3.2, <8.2.2, <8.1.3, <8.0.4, <7.13.6, <7.12.7,  ...)
-	TODO: check
+	NOT-FOR-US: Rocket.Chat
 CVE-2026-29051 (melange allows users to build apk packages using declarative pipelines ...)
 	NOT-FOR-US: melange
 CVE-2026-29050 (melange allows users to build apk packages using declarative pipelines ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dae1636ba3cb36cbfc9dcecc58ecf4610fffe9d3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dae1636ba3cb36cbfc9dcecc58ecf4610fffe9d3
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260426/1dd7e525/attachment.htm>

More information about the debian-security-tracker-commits mailing list