[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Mar 10 08:24:22 GMT 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e5da7668 by Salvatore Bonaccorso at 2026-03-10T09:22:22+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,7 +1,7 @@
 CVE-2026-3585 (The The Events Calendar plugin for WordPress is vulnerable to Path Tra ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2026-31816 (Budibase is a low code platform for creating internal tools, workflows ...)
-	TODO: check
+	NOT-FOR-US: Budibase
 CVE-2026-31802 (node-tar is a full-featured Tar for Node.js. Prior to version 7.5.11,  ...)
 	TODO: check
 CVE-2026-30937 (ImageMagick is free and open-source software used for editing and mani ...)
@@ -15,43 +15,43 @@ CVE-2026-30931 (ImageMagick is free and open-source software used for editing an
 CVE-2026-30929 (ImageMagick is free and open-source software used for editing and mani ...)
 	TODO: check
 CVE-2026-30927 (Admidio is an open-source user management solution. Prior to 5.0.6, in ...)
-	TODO: check
+	NOT-FOR-US: Admidio
 CVE-2026-30926 (SiYuan is a personal knowledge management system. Prior to 3.5.10, a p ...)
-	TODO: check
+	NOT-FOR-US: SiYuan
 CVE-2026-30925 (Parse Server is an open source backend that can be deployed to any inf ...)
-	TODO: check
+	NOT-FOR-US: Parse Server
 CVE-2026-30921 (OneUptime is a solution for monitoring and managing online services. P ...)
-	TODO: check
+	NOT-FOR-US: OneUptime
 CVE-2026-30920 (OneUptime is a solution for monitoring and managing online services. P ...)
-	TODO: check
+	NOT-FOR-US: OneUptime
 CVE-2026-30919 (facileManager is a modular suite of web apps built with the sysadmin i ...)
-	TODO: check
+	NOT-FOR-US: facileManager
 CVE-2026-30918 (facileManager is a modular suite of web apps built with the sysadmin i ...)
-	TODO: check
+	NOT-FOR-US: facileManager
 CVE-2026-30917 (Bucket is a MediaWiki extension to store and retrieve structured data  ...)
-	TODO: check
+	NOT-FOR-US: Bucket MediaWiki extensiom
 CVE-2026-30916 (Shescape is a simple shell escape library for JavaScript. Prior to 2.1 ...)
 	TODO: check
 CVE-2026-30913 (Flarum is open-source forum software. When the flarum/nicknames extens ...)
 	TODO: check
 CVE-2026-30887 (OneUptime is a solution for monitoring and managing online services. P ...)
-	TODO: check
+	NOT-FOR-US: OneUptime
 CVE-2026-30885 (WWBN AVideo is an open source video platform. Prior to 25.0, the /obje ...)
-	TODO: check
+	NOT-FOR-US: WWBN AVideo
 CVE-2026-30883 (ImageMagick is free and open-source software used for editing and mani ...)
 	TODO: check
 CVE-2026-30870 (PowerSync Service is the server-side component of the PowerSync sync e ...)
-	TODO: check
+	NOT-FOR-US: PowerSync Service
 CVE-2026-30869 (SiYuan is a personal knowledge management system. Prior to 3.5.10, a p ...)
-	TODO: check
+	NOT-FOR-US: SiYuan
 CVE-2026-30862 (Appsmith is a platform to build admin panels, internal tools, and dash ...)
-	TODO: check
+	NOT-FOR-US: Appsmith
 CVE-2026-30240 (Budibase is a low code platform for creating internal tools, workflows ...)
-	TODO: check
+	NOT-FOR-US: Budibase
 CVE-2026-2364 (If a legitimate user confirms a self-update prompt or initiate an inst ...)
 	NOT-FOR-US: CODESYS
 CVE-2026-29773 (Kubewarden is a policy engine for Kubernetes. Kubewarden cluster opera ...)
-	TODO: check
+	NOT-FOR-US: Kubewarden
 CVE-2026-28693 (ImageMagick is free and open-source software used for editing and mani ...)
 	TODO: check
 CVE-2026-28692 (ImageMagick is free and open-source software used for editing and mani ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e5da76687b9fd187524879deb00f75e23eb6c916

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e5da76687b9fd187524879deb00f75e23eb6c916
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260310/b6e0c8fc/attachment.htm>

More information about the debian-security-tracker-commits mailing list