[Git][security-tracker-team/security-tracker][master] Process some NFUs

Thu Jan 1 20:22:27 GMT 2026


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5047c64c by Salvatore Bonaccorso at 2026-01-01T21:22:00+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,27 +1,27 @@
 CVE-2026-21437 (eopkg is a Solus package manager implemented in python3. In versions p ...)
-	TODO: check
+	NOT-FOR-US: eopkg
 CVE-2026-21436 (eopkg is a Solus package manager implemented in python3. In versions p ...)
-	TODO: check
+	NOT-FOR-US: eopkg
 CVE-2026-21428 (cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTT ...)
 	TODO: check
 CVE-2026-0544 (A security flaw has been discovered in itsourcecode School Management  ...)
 	NOT-FOR-US: itsourcecode System
 CVE-2025-69203 (Signal K Server is a server application that runs on a central hub in  ...)
-	TODO: check
+	NOT-FOR-US: Signal K Server
 CVE-2025-68620 (Signal K Server is a server application that runs on a central hub in  ...)
-	TODO: check
+	NOT-FOR-US: Signal K Server
 CVE-2025-68619 (Signal K Server is a server application that runs on a central hub in  ...)
-	TODO: check
+	NOT-FOR-US: Signal K Server
 CVE-2025-68273 (Signal K Server is a server application that runs on a central hub in  ...)
-	TODO: check
+	NOT-FOR-US: Signal K Server
 CVE-2025-68272 (Signal K Server is a server application that runs on a central hub in  ...)
-	TODO: check
+	NOT-FOR-US: Signal K Server
 CVE-2025-66398 (Signal K Server is a server application that runs on a central hub in  ...)
-	TODO: check
+	NOT-FOR-US: Signal K Server
 CVE-2025-66023 (NanoMQ MQTT Broker (NanoMQ) is an all-around Edge Messaging Platform.  ...)
-	TODO: check
+	NOT-FOR-US: NanoMQ
 CVE-2025-55065 (CWE-89 Improper Neutralization of Special Elements used in an SQL Comm ...)
-	TODO: check
+	NOT-FOR-US: Kopek Reem
 CVE-2025-48769 (Use After Free vulnerability was discovered in fs/vfs/fs_rename code o ...)
 	NOT-FOR-US: Apache software not packaged in Debian
 CVE-2025-48768 (Release of Invalid Pointer or Reference vulnerability was discovered i ...)
@@ -41,7 +41,7 @@ CVE-2025-15407 (A vulnerability has been found in code-projects Online Guitar St
 CVE-2025-15406 (A flaw has been found in PHPGurukul Online Course Registration up to 3 ...)
 	NOT-FOR-US: PHPGurukul
 CVE-2025-15405 (A vulnerability was detected in PHPEMS up to 11.0. The impacted elemen ...)
-	TODO: check
+	NOT-FOR-US: PHPEMS
 CVE-2025-15404 (A security vulnerability has been detected in campcodes School File Ma ...)
 	NOT-FOR-US: Campcodes
 CVE-2025-14627 (The WP Import \u2013 Ultimate CSV XML Importer for WordPress plugin fo ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5047c64cbcd1a794f6bc29b132e6057187a11a8f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5047c64cbcd1a794f6bc29b132e6057187a11a8f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260101/7cab3881/attachment.htm>
