[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Feb 25 10:02:21 GMT 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
80f0cef0 by Salvatore Bonaccorso at 2026-02-25T11:02:01+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -58,15 +58,15 @@ CVE-2026-2914 (CyberArk Endpoint Privilege Manager Agent versions 25.10.0 and lo
 CVE-2026-27822 (RustFS is a distributed object storage system built in Rust. Prior to  ...)
 	NOT-FOR-US: RustFS
 CVE-2026-27747 (The SPIP interface_traduction_objets plugin versions prior to4.3.3 con ...)
-	TODO: check
+	NOT-FOR-US: SPIP interface_traduction_objets plugi
 CVE-2026-27746 (The SPIP jeux plugin versions prior to4.1.1 contain a reflected cross- ...)
-	TODO: check
+	NOT-FOR-US: SPIP jeux plugin
 CVE-2026-27745 (The SPIP interface_traduction_objets plugin versions prior to4.3.3 con ...)
-	TODO: check
+	NOT-FOR-US: SPIP interface_traduction_objets plugin
 CVE-2026-27744 (The SPIP tickets plugin versions prior to4.3.3 contain an unauthentica ...)
-	TODO: check
+	NOT-FOR-US: SPIP tickets plugin
 CVE-2026-27743 (The SPIP referer_spam plugin versions prior to1.3.0 contain an unauthe ...)
-	TODO: check
+	NOT-FOR-US: SPIP referer_spam plugin
 CVE-2026-27696 (changedetection.io is a free open source web page change detection too ...)
 	NOT-FOR-US: changedetection.io
 CVE-2026-27645 (changedetection.io is a free open source web page change detection too ...)
@@ -74,7 +74,7 @@ CVE-2026-27645 (changedetection.io is a free open source web page change detecti
 CVE-2026-27641 (Flask-Reuploaded provides file uploads for Flask. A critical path trav ...)
 	TODO: check
 CVE-2026-27640 (tfplan2md is software for converting Terraform plan JSON files into hu ...)
-	TODO: check
+	NOT-FOR-US: tfplan2md
 CVE-2026-27639 (Mercator is an open source web application designed to enable mapping  ...)
 	NOT-FOR-US: Mercator
 CVE-2026-27637 (FreeScout is a free help desk and shared inbox built with PHP's Larave ...)
@@ -114,7 +114,7 @@ CVE-2026-27606 (Rollup is a module bundler for JavaScript. Versions prior to 2.8
 CVE-2026-27598 (Dagu is a workflow engine with a built-in Web user interface. In versi ...)
 	NOT-FOR-US: Dagu
 CVE-2026-27597 (Enclave is a secure JavaScript sandbox designed for safe AI agent code ...)
-	TODO: check
+	NOT-FOR-US: Enclave
 CVE-2026-27595 (Parse Dashboard is a standalone dashboard for managing Parse Server ap ...)
 	NOT-FOR-US: Parse Dashboard
 CVE-2026-27593 (Statmatic is a Laravel and Git powered content management system (CMS) ...)
@@ -146,13 +146,13 @@ CVE-2026-24849 (OpenEMR is a free and open source electronic health records and
 CVE-2026-24847 (OpenEMR is a free and open source electronic health records and medica ...)
 	NOT-FOR-US: OpenEMR
 CVE-2026-24443 (EventSentry versions prior to 6.0.1.20contain an unverified password c ...)
-	TODO: check
+	NOT-FOR-US: EventSentry
 CVE-2026-22553 (All versions of InSAT MasterSCADA BUK-TS are susceptible to OS command ...)
-	TODO: check
+	NOT-FOR-US: InSAT MasterSCADA BUK-TS
 CVE-2026-21443 (OpenEMR is a free and open source electronic health records and medica ...)
 	NOT-FOR-US: OpenEMR
 CVE-2026-21410 (InSAT MasterSCADA BUK-TS is susceptible to SQL Injection through its m ...)
-	TODO: check
+	NOT-FOR-US: InSAT MasterSCADA BUK-TS
 CVE-2026-1614 (The Rise Blocks \u2013 A Complete Gutenberg Page Builder plugin for Wo ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-69231 (OpenEMR is a free and open source electronic health records and medica ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/80f0cef0d660657f562df49c2bc48d1349251596

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/80f0cef0d660657f562df49c2bc48d1349251596
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260225/7e04fd7d/attachment.htm>

More information about the debian-security-tracker-commits mailing list