[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Jun 27 08:14:02 BST 2026



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4937310c by security tracker role at 2026-06-27T07:13:56+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
 CVE-2026-9677 (The Shariff for WordPress Shariff for WordPress plugin through 1.0.11  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-56414 (A vulnerability exists in H.View IP cameras certificate-related upload ...)
 	TODO: check
 CVE-2026-55975 (A vulnerability exists in H.View IP cameras that could allow an authen ...)
@@ -99,11 +99,11 @@ CVE-2026-38641 (An issue in the DSO::mmap_and_copy function of relibc commit 61f
 CVE-2026-38639 (An issue in the parse_month function (/time/strptime.rs) of relibc com ...)
 	TODO: check
 CVE-2026-38571 (Cleartext storage and exposure of WPA2 credentials, and missing authen ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2026-36908 (A stack overflow in the AP4_Array<AP4_TrunAtom::Entry>::EnsureCapacity ...)
-	TODO: check
+	NOT-FOR-US: Bento4
 CVE-2026-36907 (A stack overflow in the AP4_StsdAtom::AP4_StsdAtom component of axioma ...)
-	TODO: check
+	NOT-FOR-US: Bento4
 CVE-2026-36478 (An issue in Technitium DNS Server v.14.3 and before allows a remote at ...)
 	TODO: check
 CVE-2026-33560 (The DMP-5000 file service exposes authenticated arbitrary file upload  ...)
@@ -117,29 +117,29 @@ CVE-2026-29509 (Patool before 4.0.5 contains a path traversal vulnerability in t
 CVE-2026-28701 (Various versions of Daktronics Controller Firmware could allow authent ...)
 	TODO: check
 CVE-2026-13422 (The HD Quiz plugin for WordPress is vulnerable to Cross-Site Request F ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-13335 (The CodePeople Post Map for Google Maps plugin for WordPress is vulner ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-13333 (The Groundhogg \u2014 CRM, Newsletters, and Marketing Automation plugi ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-13331 (The Groundhogg \u2014 CRM, Newsletters, and Marketing Automation plugi ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-13245 (The MaxButtons \u2013 Create buttons plugin for WordPress is vulnerabl ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-12415 (The Invoice Generator plugin for WordPress is vulnerable to privilege  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-12404 (The NEX-Forms \u2013 Ultimate Forms Plugin for WordPress plugin for Wo ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-11356 (The Ivory Search \u2013 WordPress Search Plugin plugin for WordPress i ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-10820 (The Paid Membership Plugin, Ecommerce, User Registration Form, Login F ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-59868 (HCL Traveler for Microsoft Outlook (HTMO) is susceptible to a sensitiv ...)
-	TODO: check
+	NOT-FOR-US: HCL
 CVE-2024-23581 (The HCL Traveler for Microsoft Outlook libraries are being flagged as  ...)
-	TODO: check
+	NOT-FOR-US: HCL
 CVE-2023-37524 (HCL Traveler for Microsoft Outlook (HTMO) is susceptible to vulnerabil ...)
-	TODO: check
+	NOT-FOR-US: HCL
 CVE-2026-53324 (In the Linux kernel, the following vulnerability has been resolved:  n ...)
 	- linux 7.0.10-1
 	[trixie] - linux <not-affected> (Vulnerable code not present)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4937310cdcac225555f0c87b016bb4763ea854d2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4937310cdcac225555f0c87b016bb4763ea854d2
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260627/736e3182/attachment.htm>


More information about the debian-security-tracker-commits mailing list