[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0af3f84a by Salvatore Bonaccorso at 2026-01-14T22:39:55+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -45,29 +45,29 @@ CVE-2026-22851 (FreeRDP is a free implementation of the Remote Desktop Protocol.
 	- freerdp2 <removed>
 	NOTE: https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-8g87-6pvc-wh99
 CVE-2026-22820 (Outray openSource ngrok alternative. Prior to 0.1.5, a TOCTOU race con ...)
-	TODO: check
+	NOT-FOR-US: Outray openSource ngrok alternative
 CVE-2026-22819 (Outray openSource ngrok alternative. Prior to 0.1.5, this vulnerabilit ...)
-	TODO: check
+	NOT-FOR-US: Outray openSource ngrok alternative
 CVE-2026-22787 (html2pdf.js converts any webpage or element into a printable PDF entir ...)
-	TODO: check
+	NOT-FOR-US: html2pdf.js
 CVE-2026-22779 (BlackSheep is an asynchronous web framework to build event based web a ...)
-	TODO: check
+	NOT-FOR-US: BlackSheep
 CVE-2026-22708 (Cursor is a code editor built for programming with AI. Prior to 2.3, h ...)
-	TODO: check
+	NOT-FOR-US: Cursor
 CVE-2026-22694 (AliasVault is a privacy-first password manager with built-in email ali ...)
-	TODO: check
+	NOT-FOR-US: AliasVault
 CVE-2026-22240 (The vulnerability exists in BLUVOYIX due to an improper password stora ...)
-	TODO: check
+	NOT-FOR-US: BLUVOYIX
 CVE-2026-22239 (The vulnerability exists in BLUVOYIX due to design flaws in the email  ...)
-	TODO: check
+	NOT-FOR-US: BLUVOYIX
 CVE-2026-22238 (The vulnerability exists in BLUVOYIX due to improper authentication in ...)
-	TODO: check
+	NOT-FOR-US: BLUVOYIX
 CVE-2026-22237 (The vulnerability exists in BLUVOYIX due to the exposure of sensitive  ...)
-	TODO: check
+	NOT-FOR-US: BLUVOYIX
 CVE-2026-22236 (The vulnerability exists in BLUVOYIX due to improper authentication in ...)
-	TODO: check
+	NOT-FOR-US: BLUVOYIX
 CVE-2026-22211 (TinyOS versions up to and including 2.1.2 contain a global buffer over ...)
-	TODO: check
+	NOT-FOR-US: TinyOS
 CVE-2026-22036 (Undici is an HTTP/1.1 client for Node.js. Prior to 7.18.0 and 6.23.0,  ...)
 	TODO: check
 CVE-2026-21889 (Weblate is a web based localization tool. Prior to 5.15.2, the screens ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0af3f84a8da3043387ab5ee920fa5468232fcd81

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0af3f84a8da3043387ab5ee920fa5468232fcd81
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260114/bc3af4b6/attachment.htm>