[Git][security-tracker-team/security-tracker][master] Process some NFUs

Fri Jan 9 08:18:15 GMT 2026


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
858f937a by Salvatore Bonaccorso at 2026-01-09T09:17:52+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -21,9 +21,9 @@ CVE-2026-22631
 CVE-2026-22630
 	REJECTED
 CVE-2026-22588 (Spree is an open source e-commerce solution built with Ruby on Rails.  ...)
-	TODO: check
+	NOT-FOR-US: Spree
 CVE-2026-21409 (Improper authorization vulnerability exists in RICOH Streamline NX 3.5 ...)
-	TODO: check
+	NOT-FOR-US: RICOH
 CVE-2026-20976 (Improper input validation in Galaxy Store prior to version 4.6.02 allo ...)
 	NOT-FOR-US: Samsung Mobile
 CVE-2026-20975 (Improper handling of insufficient permission in Samsung Cloud prior to ...)
@@ -59,13 +59,13 @@ CVE-2026-0563 (The WP Google Street View (with 360\xb0 virtual tour) & Google ma
 CVE-2025-70974 (Fastjson before 1.2.48 mishandles autoType because, when an @type key  ...)
 	TODO: check
 CVE-2025-68719 (KAYSUS KS-WR3600 routers with firmware 1.0.5.9.1 mishandle configurati ...)
-	TODO: check
+	NOT-FOR-US: KAYSUS KS-WR3600 routers
 CVE-2025-68718 (KAYSUS KS-WR1200 routers with firmware 107 expose SSH and TELNET servi ...)
-	TODO: check
+	NOT-FOR-US: KAYSUS KS-WR1200 routers
 CVE-2025-68717 (KAYSUS KS-WR3600 routers with firmware 1.0.5.9.1 allow authentication  ...)
-	TODO: check
+	NOT-FOR-US: KAYSUS KS-WR3600 routers
 CVE-2025-68716 (KAYSUS KS-WR3600 routers with firmware 1.0.5.9.1 enable the SSH servic ...)
-	TODO: check
+	NOT-FOR-US: KAYSUS KS-WR3600 routers
 CVE-2025-66315 (There is a configuration defect vulnerability in the version server of ...)
 	NOT-FOR-US: ZTE
 CVE-2025-15464 (Exported Activity allows external applications to gain application con ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/858f937afeca89ef34dbef87deec6d757373a45a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/858f937afeca89ef34dbef87deec6d757373a45a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260109/0c108680/attachment.htm>
