[Git][security-tracker-team/security-tracker][master] Process some NFUs

Tue Jun 2 10:03:10 BST 2026


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a04c58b6 by Salvatore Bonaccorso at 2026-06-02T10:39:03+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -35,7 +35,7 @@ CVE-2026-3722 (The Auto Image Attributes From Filename With Bulk Updater (Add Al
 CVE-2026-3198 (MLflow 3.9.0 with basic-auth (`--app-name basic-auth`) fails to enforc ...)
 	NOT-FOR-US: mlflow
 CVE-2026-37234 (FlexRIC v2.0.0 allows a single SCTP connection to bind multiple xapp_i ...)
-	TODO: check
+	NOT-FOR-US: FlexRIC
 CVE-2026-28586 (In multiple functions of AppOpsService.java, there is a possible missi ...)
 	NOT-FOR-US: Android
 CVE-2026-28581 (In fixInitiatingUserIfNecessary of CallIntentProcessor.java, there is  ...)
@@ -47,9 +47,9 @@ CVE-2026-28578 (In multiple functions of DevicePolicyManagerService.java, there
 CVE-2026-28577 (In addWindow of WindowManagerService.java, there is a possible tapjack ...)
 	NOT-FOR-US: Android
 CVE-2026-28511 (eLabFTW is an open source electronic lab notebook. Prior to version 5. ...)
-	TODO: check
+	NOT-FOR-US: eLabFTW
 CVE-2026-25879 (Langroid is a framework for building large-language-model-powered appl ...)
-	TODO: check
+	NOT-FOR-US: Langroid
 CVE-2026-25277 (Memory corruption while using Strongbox due to buffer overflow.)
 	NOT-FOR-US: Qualcomm
 CVE-2026-25276 (Memory corruption while using Strongbox due to missing bounds check.)
@@ -61,21 +61,21 @@ CVE-2026-25259 (Memory corruption while processing multiple IOCTL command for es
 CVE-2026-25258 (Memory corruption while processing IOCTL calls for escape operations.)
 	NOT-FOR-US: Qualcomm
 CVE-2026-24782 (Kiteworks is a private data network (PDN). Prior to version 9.3.0,ulti ...)
-	TODO: check
+	NOT-FOR-US: Kiteworks
 CVE-2026-24761 (Kiteworks is a private data network (PDN). Prior to version 9.3.0, an  ...)
-	TODO: check
+	NOT-FOR-US: Kiteworks
 CVE-2026-24756 (Kiteworks is a private data network (PDN). Prior to version 9.3.0, an  ...)
-	TODO: check
+	NOT-FOR-US: Kiteworks
 CVE-2026-24755 (Kiteworks is a private data network (PDN). Prior to version 9.3.0, an  ...)
-	TODO: check
+	NOT-FOR-US: Kiteworks
 CVE-2026-24754 (Kiteworks is a private data network (PDN). Prior to version 9.3.0, a s ...)
-	TODO: check
+	NOT-FOR-US: Kiteworks
 CVE-2026-24753 (Kiteworks is a private data network (PDN). Prior to version 9.3.0, an  ...)
-	TODO: check
+	NOT-FOR-US: Kiteworks
 CVE-2026-24752 (Kiteworks is a private data network (PDN). Prior to version 9.3.0, a r ...)
-	TODO: check
+	NOT-FOR-US: Kiteworks
 CVE-2026-24751 (Kiteworks is a private data network (PDN). Prior to version 9.3.0, a r ...)
-	TODO: check
+	NOT-FOR-US: Kiteworks
 CVE-2026-24092 (Memory Corruption when processing fastboot commands to set display mod ...)
 	NOT-FOR-US: Qualcomm
 CVE-2026-24091 (Memory corruption while processing fastboot commands with improperly f ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a04c58b6ac6ce290b17187335756facf532f09f0

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a04c58b6ac6ce290b17187335756facf532f09f0
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260602/bd4db924/attachment-0001.htm>
