[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Jun 13 08:45:37 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
914e74f9 by Salvatore Bonaccorso at 2026-06-13T09:45:13+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -9,31 +9,31 @@ CVE-2026-9062 (The Store Locator WordPress plugin before 1.6.9 does not validate
 CVE-2026-9061 (The Store Locator WordPress plugin before 1.6.9 does not sanitize and  ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2026-6676 (Heap buffer out-of-bounds write vulnerability in Avira Antivirus engin ...)
-	TODO: check
+	NOT-FOR-US: Avira
 CVE-2026-54398 (An authorization flaw in MISP\u2019s object add/edit handling allowed  ...)
-	TODO: check
+	NOT-FOR-US: MISP
 CVE-2026-54397 (A vulnerability in MISP\u2019s non-REST event editing path allowed an  ...)
-	TODO: check
+	NOT-FOR-US: MISP
 CVE-2026-54396 (An information disclosure vulnerability exists in the MISP AuthKey edi ...)
-	TODO: check
+	NOT-FOR-US: MISP
 CVE-2026-54395 (MISP contains a reflected cross-site scripting vulnerability in the Ui ...)
-	TODO: check
+	NOT-FOR-US: MISP
 CVE-2026-54394 (MISP contains a path traversal vulnerability in OrganisationsControlle ...)
-	TODO: check
+	NOT-FOR-US: MISP
 CVE-2026-54393 (A stored cross-site scripting vulnerability exists in MISP when the Ov ...)
-	TODO: check
+	NOT-FOR-US: MISP
 CVE-2026-54362 (An incorrect visibility condition in the MISP event template builder a ...)
-	TODO: check
+	NOT-FOR-US: MISP
 CVE-2026-54361 (MISP contained multiple mass assignment vulnerabilities in the handlin ...)
-	TODO: check
+	NOT-FOR-US: MISP
 CVE-2026-54360 (A mass assignment vulnerability exists in MISP\u2019s sharing group cr ...)
-	TODO: check
+	NOT-FOR-US: MISP
 CVE-2026-54359 (MISP contains an insecure default configuration in which the Security. ...)
-	TODO: check
+	NOT-FOR-US: MISP
 CVE-2026-54358 (An incorrect authorization vulnerability in MISP allows an organizatio ...)
-	TODO: check
+	NOT-FOR-US: MISP
 CVE-2026-54357 (An improper authorization vulnerability in MISP allowed an authenticat ...)
-	TODO: check
+	NOT-FOR-US: MISP
 CVE-2026-54231 (A content injection vulnerability was found in the ABRT post-create ev ...)
 	TODO: check
 CVE-2026-54230 (A symlink following vulnerability was found in the ABRT post-create ev ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/914e74f9a030063be45e1c1cde4a80be5124335f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/914e74f9a030063be45e1c1cde4a80be5124335f
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260613/a0651cd0/attachment.htm>

More information about the debian-security-tracker-commits mailing list