[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Jan 27 20:56:02 GMT 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
784aba6b by Salvatore Bonaccorso at 2026-01-27T21:54:24+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -19,65 +19,65 @@ CVE-2026-24868 (Mitigation bypass in the Privacy: Anti-Tracking component. This
 CVE-2026-24858 (An Authentication Bypass Using an Alternate Path or Channel vulnerabil ...)
 	NOT-FOR-US: Fortinet
 CVE-2026-24832 (Out-of-bounds Write vulnerability in ixray-team ixray-1.6-stcop.This i ...)
-	TODO: check
+	NOT-FOR-US: ixray-1.6-stcop
 CVE-2026-24831 (Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability i ...)
-	TODO: check
+	NOT-FOR-US: ixray-1.6-stcop
 CVE-2026-24830 (Integer Overflow or Wraparound vulnerability in Ralim IronOS.This issu ...)
-	TODO: check
+	NOT-FOR-US: IronOS
 CVE-2026-24829 (Out-of-bounds Write, Heap-based Buffer Overflow vulnerability in Is-Da ...)
-	TODO: check
+	NOT-FOR-US: is-Engine
 CVE-2026-24828 (Missing Release of Memory after Effective Lifetime vulnerability in Is ...)
-	TODO: check
+	NOT-FOR-US: is-Engine
 CVE-2026-24827 (Out-of-bounds Write vulnerability in gerstrong Commander-Genius.This i ...)
-	TODO: check
+	NOT-FOR-US: Commander-Genius
 CVE-2026-24826 (Out-of-bounds Write, Divide By Zero, NULL Pointer Dereference, Use of  ...)
-	TODO: check
+	NOT-FOR-US: cadaver turso3d
 CVE-2026-24825 (Missing Release of Memory after Effective Lifetime vulnerability in yd ...)
-	TODO: check
+	NOT-FOR-US: ydb
 CVE-2026-24824 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
-	TODO: check
+	NOT-FOR-US: yacy_search_server
 CVE-2026-24823 (Out-of-bounds Write, Buffer Copy without Checking Size of Input ('Clas ...)
-	TODO: check
+	NOT-FOR-US: X-TRACK
 CVE-2026-24822 (Out-of-bounds Write, Heap-based Buffer Overflow vulnerability in ttttu ...)
-	TODO: check
+	NOT-FOR-US: ttttupup wxhelper
 CVE-2026-24821 (Out-of-bounds Read vulnerability in turanszkij WickedEngine (WickedEng ...)
-	TODO: check
+	NOT-FOR-US: turanszkij WickedEngine
 CVE-2026-24820 (Out-of-bounds Read vulnerability in turanszkij WickedEngine (WickedEng ...)
-	TODO: check
+	NOT-FOR-US: turanszkij WickedEngine
 CVE-2026-24819 (Improperly Controlled Sequential Memory Allocation vulnerability in fo ...)
-	TODO: check
+	NOT-FOR-US: foxinmy weixin4j
 CVE-2026-24818 (Out-of-bounds Read vulnerability in praydog UEVR (dependencies/lua/src ...)
-	TODO: check
+	NOT-FOR-US: praydog UEVR
 CVE-2026-24817 (Out-of-bounds Write vulnerability in praydog UEVR (dependencies/lua/sr ...)
-	TODO: check
+	NOT-FOR-US: praydog UEVR
 CVE-2026-24816 (Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability i ...)
-	TODO: check
+	NOT-FOR-US: datavane tis
 CVE-2026-24815 (Unrestricted Upload of File with Dangerous Type, Deserialization of Un ...)
-	TODO: check
+	NOT-FOR-US: datavane tis
 CVE-2026-24814 (Integer Overflow or Wraparound vulnerability in swoole swoole-src (thi ...)
-	TODO: check
+	NOT-FOR-US: swoole swoole-src
 CVE-2026-24813 (NULL Pointer Dereference vulnerability in abcz316 SKRoot-linuxKernelRo ...)
-	TODO: check
+	NOT-FOR-US: abcz316 SKRoot-linuxKernelRoot
 CVE-2026-24812 (Vulnerability in root-project root (builtins/zlib modules). This vulne ...)
-	TODO: check
+	NOT-FOR-US: root-project root
 CVE-2026-24811 (Vulnerability in root-project root (builtins/zlib modules). This vulne ...)
-	TODO: check
+	NOT-FOR-US: root-project root
 CVE-2026-24810 (Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') ...)
 	TODO: check
 CVE-2026-24809 (An issue from the component luaG_runerror in dependencies/lua/src/ldeb ...)
-	TODO: check
+	NOT-FOR-US: praydog/REFramework
 CVE-2026-24808 (Integer Overflow or Wraparound vulnerability in RawTherapee (rtengine  ...)
 	TODO: check
 CVE-2026-24807 (Improper Verification of Cryptographic Signature vulnerability in liuy ...)
-	TODO: check
+	NOT-FOR-US: liuyueyi quick-media
 CVE-2026-24806 (Improper Control of Generation of Code ('Code Injection') vulnerabilit ...)
-	TODO: check
+	NOT-FOR-US: liuyueyi quick-media
 CVE-2026-24805 (NULL Pointer Dereference vulnerability in visualfc liteide (liteidex/s ...)
-	TODO: check
+	NOT-FOR-US: visualfc liteide
 CVE-2026-24804 (Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability i ...)
-	TODO: check
+	NOT-FOR-US: coolsnowwolf lede
 CVE-2026-24803 (Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability i ...)
-	TODO: check
+	NOT-FOR-US: coolsnowwolf lede
 CVE-2026-24802 (Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability i ...)
 	TODO: check
 CVE-2026-24801 (Vulnerability in Ralim IronOS (source/Core/BSP/Pinecilv2/bl_mcu_sdk/co ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/784aba6b96be37d84354d85a53119a81099f4288

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/784aba6b96be37d84354d85a53119a81099f4288
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260127/4cfc0197/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list