[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) jmm at debian.org
Wed Feb 11 15:36:12 GMT 2026 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
34a1a83f by Moritz Muehlenhoff at 2026-02-11T16:35:53+01:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -447,7 +447,7 @@ CVE-2025-36511 (Incorrect default permissions for some Intel(R) Memory and Stora
 CVE-2025-35999 (Incorrect permission assignment for critical resource for some System  ...)
 	NOT-FOR-US: Intel
 CVE-2025-35998 (Missing protection mechanism for alternate hardware interface in the I ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2025-35992 (Improper conditions check in some firmware for some Intel(R) NPU Drive ...)
 	NOT-FOR-US: Intel
 CVE-2025-33030 (Improper conditions check in some firmware for some Intel(R) NPU Drive ...)
@@ -525,11 +525,11 @@ CVE-2025-22849 (Incorrect default permissions for the Intel(R) Optane(TM) PMem m
 CVE-2025-22453 (Improper input validation for some Server Firmware Update Utility(SysF ...)
 	TODO: check
 CVE-2025-20106 (Uncontrolled search path in some software installer for some VTune(TM) ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2025-20080 (Null pointer dereference in the firmware for some Intel(R) AMT and Int ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2025-20070 (Improper conditions check for the Intel(R) Optane(TM) PMem management  ...)
-	TODO: check
+	NOT-FOR-US: Intel
 CVE-2025-15572 (A vulnerability has been found in wasm3 up to 0.5.0. The affected elem ...)
 	NOT-FOR-US: wasm3
 CVE-2025-15571 (A security vulnerability has been detected in ckolivas lrzip up to 0.6 ...)
@@ -557,7 +557,7 @@ CVE-2024-54192 (An issue inTcpreplay v4.5.1 allows a local attacker to cause a d
 CVE-2024-52334 (A vulnerability has been identified in syngo.plaza VB30E (All versions ...)
 	NOT-FOR-US: Siemens
 CVE-2024-36355 (Improper input validation in the SMM handler could allow an attacker w ...)
-	TODO: check
+	NOT-FOR-US: AMD
 CVE-2024-36311 (A Time-of-check time-of-use (TOCTOU) race condition in the SMM communi ...)
 	TODO: check
 CVE-2024-36310 (Improper input validation in the SMM communications buffer could allow ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/34a1a83f8a5efd6f9ac4b972839a954ef7374ce3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/34a1a83f8a5efd6f9ac4b972839a954ef7374ce3
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260211/7c83595b/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list