[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Feb 4 21:16:28 GMT 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9a2e92e0 by Salvatore Bonaccorso at 2026-02-04T22:15:40+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,51 +1,51 @@
 CVE-2026-25532 (ESF-IDF is the Espressif Internet of Things (IOT) Development Framewor ...)
-	TODO: check
+	NOT-FOR-US: ESF-IDF
 CVE-2026-25508 (ESF-IDF is the Espressif Internet of Things (IOT) Development Framewor ...)
-	TODO: check
+	NOT-FOR-US: ESF-IDF
 CVE-2026-25507 (ESF-IDF is the Espressif Internet of Things (IOT) Development Framewor ...)
-	TODO: check
+	NOT-FOR-US: ESF-IDF
 CVE-2026-25475 (OpenClaw is a personal AI assistant. Prior to version 2026.1.30, the i ...)
-	TODO: check
+	NOT-FOR-US: OpenClaw
 CVE-2026-25161 (Alist is a file list program that supports multiple storages, powered  ...)
-	TODO: check
+	NOT-FOR-US: Alist
 CVE-2026-25160 (Alist is a file list program that supports multiple storages, powered  ...)
-	TODO: check
+	NOT-FOR-US: Alist
 CVE-2026-25157 (OpenClaw is a personal AI assistant. Prior to version 2026.1.29, there ...)
-	TODO: check
+	NOT-FOR-US: OpenClaw
 CVE-2026-25145 (melange allows users to build apk packages using declarative pipelines ...)
-	TODO: check
+	NOT-FOR-US: melange
 CVE-2026-25143 (melange allows users to build apk packages using declarative pipelines ...)
-	TODO: check
+	NOT-FOR-US: melange
 CVE-2026-25140 (apko allows users to build and publish OCI container images built from ...)
-	TODO: check
+	NOT-FOR-US: apko
 CVE-2026-25139 (RIOT is an open-source microcontroller operating system, designed to m ...)
-	TODO: check
+	NOT-FOR-US: RIOT-OS
 CVE-2026-25122 (apko allows users to build and publish OCI container images built from ...)
-	TODO: check
+	NOT-FOR-US: apko
 CVE-2026-25121 (apko allows users to build and publish OCI container images built from ...)
-	TODO: check
+	NOT-FOR-US: apko
 CVE-2026-25115 (n8n is an open source workflow automation platform. Prior to version 2 ...)
-	TODO: check
+	NOT-FOR-US: n8n
 CVE-2026-25056 (n8n is an open source workflow automation platform. Prior to versions  ...)
-	TODO: check
+	NOT-FOR-US: n8n
 CVE-2026-25055 (n8n is an open source workflow automation platform. Prior to versions  ...)
-	TODO: check
+	NOT-FOR-US: n8n
 CVE-2026-25054 (n8n is an open source workflow automation platform. Prior to versions  ...)
-	TODO: check
+	NOT-FOR-US: n8n
 CVE-2026-25053 (n8n is an open source workflow automation platform. Prior to versions  ...)
-	TODO: check
+	NOT-FOR-US: n8n
 CVE-2026-25052 (n8n is an open source workflow automation platform. Prior to versions  ...)
-	TODO: check
+	NOT-FOR-US: n8n
 CVE-2026-25051 (n8n is an open source workflow automation platform. Prior to version 1 ...)
-	TODO: check
+	NOT-FOR-US: n8n
 CVE-2026-25049 (n8n is an open source workflow automation platform. Prior to versions  ...)
-	TODO: check
+	NOT-FOR-US: n8n
 CVE-2026-24884 (Compressing is a compressing and uncompressing lib for node. In versio ...)
-	TODO: check
+	NOT-FOR-US: node-modules compressing Node.js module
 CVE-2026-24844 (melange allows users to build apk packages using declarative pipelines ...)
-	TODO: check
+	NOT-FOR-US: melange
 CVE-2026-24843 (melange allows users to build apk packages using declarative pipelines ...)
-	TODO: check
+	NOT-FOR-US: melange
 CVE-2026-24735 (Exposure of Private Personal Information to an Unauthorized Actor vuln ...)
 	TODO: check
 CVE-2026-23897 (Apollo Server is an open-source, spec-compliant GraphQL server that's  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9a2e92e026f17138da3c65b4175fa803acf67c2b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9a2e92e026f17138da3c65b4175fa803acf67c2b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260204/edd76478/attachment.htm>

More information about the debian-security-tracker-commits mailing list