[Git][security-tracker-team/security-tracker][master] 2 commits: auto-nfu: Add another product covered by the NVIDIA CNA rule

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Feb 18 22:09:43 GMT 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2b3f4fde by Salvatore Bonaccorso at 2026-02-18T23:01:45+01:00
auto-nfu: Add another product covered by the NVIDIA CNA rule

- - - - -
7b43cb75 by Salvatore Bonaccorso at 2026-02-18T23:02:16+01:00
Process some NFUs

- - - - -


2 changed files:

- data/CVE/list
- data/packages/nfu.yaml


Changes:

=====================================
data/CVE/list
=====================================
@@ -174,9 +174,9 @@ CVE-2025-33243 (NVIDIA NeMo Framework contains a vulnerability where an attacker
 CVE-2025-33241 (NVIDIA NeMo Framework contains a vulnerability where an attacker could ...)
 	NOT-FOR-US: NVIDIA
 CVE-2025-33240 (NVIDIA Megatron Bridge contains a vulnerability in a data shuffling tu ...)
-	TODO: check
+	NOT-FOR-US: NVIDIA
 CVE-2025-33239 (NVIDIA Megatron Bridge contains a vulnerability in a data merging tuto ...)
-	TODO: check
+	NOT-FOR-US: NVIDIA
 CVE-2025-33236 (NVIDIA NeMo Framework contains a vulnerability where malicious data cr ...)
 	NOT-FOR-US: NVIDIA
 CVE-2025-15579 (Deserialization of Untrusted Data vulnerability in OpenText\u2122 Dire ...)


=====================================
data/packages/nfu.yaml
=====================================
@@ -489,6 +489,7 @@
       - product: Isaac Lab
       - product: Isaac Launchable
       - product: Megatron LM
+      - product: Megatron-Bridge
       - product: Megatron-LM
       - product: Merlin Transformers4Rec
       - product: NSIGHT Graphics



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/fdcd7b408c506b76ac9420b4f6928ba3c02231bf...7b43cb75780657d1540403306b6432f73f130386

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/fdcd7b408c506b76ac9420b4f6928ba3c02231bf...7b43cb75780657d1540403306b6432f73f130386
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260218/b4872c4c/attachment.htm>

More information about the debian-security-tracker-commits mailing list