[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) jmm at debian.org
Tue Apr 28 07:42:01 BST 2026 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5c493fed by Moritz Muehlenhoff at 2026-04-28T08:41:41+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -232,11 +232,11 @@ CVE-2026-22337 (Incorrect Privilege Assignment vulnerability in Directorist Dire
 CVE-2026-22336 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
 	NOT-FOR-US: WordPress plugin or theme
 CVE-2026-22077 (OPPO Wallet APP contains a trusted domain validation flaw that allows  ...)
-	TODO: check
+	NOT-FOR-US: OPPO Wallet APP
 CVE-2025-69689 (The Fan Control application V251 contains an improper privilege handli ...)
-	TODO: check
+	NOT-FOR-US: Fan Control application
 CVE-2025-15626 (Authenticated user can bypass authorization in Ribblr - Crochet & Knit ...)
-	TODO: check
+	NOT-FOR-US: Ribblr
 CVE-2026-7040 (Text::Minify::XS versions from v0.3.0 before v0.7.8 for Perl have a he ...)
 	NOT-FOR-US: Text::Minify::XS Perl module
 CVE-2026-25710
@@ -391,43 +391,43 @@ CVE-2026-7026 (A vulnerability was determined in D-Link DGS-3420 1.50.018. This
 CVE-2026-7025 (A vulnerability was found in Typecho up to 1.3.0. This vulnerability a ...)
 	NOT-FOR-US: Typecho
 CVE-2018-25297 (Wansview 1.0.2 contains a buffer overflow vulnerability that allows lo ...)
-	TODO: check
+	NOT-FOR-US: Wansview
 CVE-2018-25296 (P10 Central Management Software 1.4.13 contains a buffer overflow vuln ...)
-	TODO: check
+	NOT-FOR-US: P10 Central Management Software
 CVE-2018-25295 (ObserverIP Scan Tool 1.4.0.1 contains a denial of service vulnerabilit ...)
-	TODO: check
+	NOT-FOR-US: ObserverIP Scan Tool
 CVE-2018-25294 (CEWE Photoshow 6.3.4 contains a buffer overflow vulnerability in the l ...)
-	TODO: check
+	NOT-FOR-US: CEWE Photoshow
 CVE-2018-25293 (Prime95 29.4b7 contains a buffer overflow vulnerability in the PrimeNe ...)
-	TODO: check
+	NOT-FOR-US: Prime95
 CVE-2018-25292 (Bome Restorator 1793 contains a buffer overflow vulnerability that all ...)
-	TODO: check
+	NOT-FOR-US: Bome Restorator
 CVE-2018-25291 (Project64 2.3.2 contains a buffer overflow vulnerability in the Plugin ...)
-	TODO: check
+	NOT-FOR-US: Project64
 CVE-2018-25290 (Easyboot 6.6.0 contains a buffer overflow vulnerability in the Replace ...)
-	TODO: check
+	NOT-FOR-US: Easyboot
 CVE-2018-25289 (Softdisk 3.0.3 contains a buffer overflow vulnerability in the registr ...)
-	TODO: check
+	NOT-FOR-US: Softdisk
 CVE-2018-25288 (StyleWriter 1.0 contains a buffer overflow vulnerability that allows l ...)
-	TODO: check
+	NOT-FOR-US: StyleWriter
 CVE-2018-25287 (Drive Power Manager 1.10 contains a buffer overflow vulnerability that ...)
 	NOT-FOR-US: Drive Power Manager
 CVE-2018-25286 (Easy PhotoResQ 1.0 contains a buffer overflow vulnerability that allow ...)
 	NOT-FOR-US: Easy PhotoResQ
 CVE-2018-25285 (Fathom 2.4 contains a buffer overflow vulnerability in the Authorizati ...)
-	TODO: check
+	NOT-FOR-US: Fathom
 CVE-2018-25284 (HD Tune Pro 5.70 contains a buffer overflow vulnerability that allows  ...)
 	NOT-FOR-US: HD Tune Pro
 CVE-2018-25283 (iSmartViewPro 1.5 contains a structured exception handling (SEH) buffe ...)
 	NOT-FOR-US: iSmartViewPro
 CVE-2018-25282 (Nmap 7.70 contains a denial of service vulnerability that allows local ...)
-	TODO: check
+	NOTE: Bogus CVE assignment for nmap
 CVE-2018-25281 (iCash 7.6.5 contains a buffer overflow vulnerability that allows local ...)
-	TODO: check
+	NOT-FOR-US: iCash
 CVE-2018-25280 (Infiltrator Network Security Scanner 4.6 contains a buffer overflow vu ...)
-	TODO: check
+	NOT-FOR-US: Infiltrator Network Security Scanner
 CVE-2018-25279 (jiNa OCR Image to Text 1.0 contains a denial of service vulnerability  ...)
-	TODO: check
+	NOT-FOR-US: jiNa OCR Image to Text
 CVE-2018-25278 (PicaJet FX 2.6.5 contains a denial of service vulnerability that allow ...)
 	NOT-FOR-US: PicaJet FX
 CVE-2018-25277 (PixGPS 1.1.8 contains a buffer overflow vulnerability that allows loca ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5c493fed36bd3bb5a64f109cb1f30a32c4ee57b9

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5c493fed36bd3bb5a64f109cb1f30a32c4ee57b9
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260428/f5c57e81/attachment.htm>

More information about the debian-security-tracker-commits mailing list