[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Jan 13 20:32:23 GMT 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7f816525 by Salvatore Bonaccorso at 2026-01-13T21:31:59+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,11 +1,11 @@
 CVE-2026-22818 (Hono is a Web application framework that provides support for any Java ...)
-	TODO: check
+	NOT-FOR-US: Hono
 CVE-2026-22817 (Hono is a Web application framework that provides support for any Java ...)
-	TODO: check
+	NOT-FOR-US: Hono
 CVE-2026-22814 (@adonisjs/lucid is an SQL ORM for AdonisJS built on top of Knex. Prior ...)
-	TODO: check
+	NOT-FOR-US: adonisjs/lucid
 CVE-2026-22809 (tarteaucitron.js is a compliant and accessible cookie banner. Prior to ...)
-	TODO: check
+	NOT-FOR-US: tarteaucitron.js
 CVE-2026-22791 (openCryptoki is a PKCS#11 library and tools for Linux and AIX. In 3.25 ...)
 	- opencryptoki <not-affected> (Vulnerable code not present)
 	NOTE: https://github.com/opencryptoki/opencryptoki/security/advisories/GHSA-26f5-3mwq-4wm7
@@ -852,7 +852,7 @@ CVE-2026-22800 (PILOS (Platform for Interactive Live-Online Seminars) is a front
 CVE-2026-22799 (Emlog is an open source website building system. emlog v2.6.1 and earl ...)
 	NOT-FOR-US: Emlog
 CVE-2026-22798 (hermes is an implementation of the HERMES workflow to automatize softw ...)
-	TODO: check
+	NOT-FOR-US: Hermes
 CVE-2026-22794 (Appsmith is a platform to build admin panels, internal tools, and dash ...)
 	NOT-FOR-US: Appsmith
 CVE-2026-22789 (WebErpMesv2 is a Resource Management and Manufacturing execution syste ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7f81652536eb30847f8bad8e0edcd409cd48c182

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7f81652536eb30847f8bad8e0edcd409cd48c182
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260113/48f1e309/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list