[Git][security-tracker-team/security-tracker][master] Add some NFUs in netty-incubator-codec-http

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Jun 5 08:11:48 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
dd2894bd by Salvatore Bonaccorso at 2026-06-05T09:11:14+02:00
Add some NFUs in netty-incubator-codec-http

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -101,9 +101,9 @@ CVE-2026-49185 (The FieldX MDM adb messaging topic passes unverified payloads di
 CVE-2026-49077 (Exposure of Sensitive System Information to an Unauthorized Control Sp ...)
 	NOT-FOR-US: WordPress plugin or theme
 CVE-2026-48480 (The netty incubator codec.bhttp is a java language binary http parser. ...)
-	TODO: check
+	NOT-FOR-US: netty-incubator-codec-ohttp
 CVE-2026-48040 (The netty incubator codec.bhttp is a java language binary http parser. ...)
-	TODO: check
+	NOT-FOR-US: netty-incubator-codec-ohttp
 CVE-2026-47707 (Strawberry GraphQL is a library for creating GraphQL APIs. In versions ...)
 	NOT-FOR-US: Strawberry GraphQL
 CVE-2026-47706 (Strawberry GraphQL is a library for creating GraphQL APIs. In versions ...)
@@ -164,7 +164,7 @@ CVE-2026-41235 (Froxlor is open source server administration software. Version 2
 CVE-2026-41234 (Froxlor is open source server administration software. Prior to versio ...)
 	- froxlor <itp> (bug #581792)
 CVE-2026-41207 (The netty incubator codec.bhttp is a java language binary http parser. ...)
-	TODO: check
+	NOT-FOR-US: netty-incubator-codec-ohttp
 CVE-2026-41178 (OpenTelemetry-Go is the Go implementation of OpenTelemetry. Versions 1 ...)
 	TODO: check
 CVE-2026-41065 (Tautulli is a Python based monitoring and tracking tool for Plex Media ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dd2894bdc265b7f92715abaa8d090aef0fedd604

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dd2894bdc265b7f92715abaa8d090aef0fedd604
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260605/4a248c7a/attachment.htm>

More information about the debian-security-tracker-commits mailing list