[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Mar 12 20:14:20 GMT 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
78e2a5f2 by security tracker role at 2026-03-12T20:14:11+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,15 +3,15 @@ CVE-2026-4045 (A flaw has been found in projectsend up to r1945. This impacts an
 CVE-2026-4044 (A vulnerability was detected in projectsend up to r1945. This affects  ...)
 	TODO: check
 CVE-2026-4043 (A security vulnerability has been detected in Tenda i12 1.0.0.6(2204). ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2026-4042 (A weakness has been identified in Tenda i12 1.0.0.6(2204). The affecte ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2026-4041 (A security flaw has been discovered in Tenda i12 1.0.0.6(2204). Impact ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2026-4040 (A vulnerability was identified in OpenClaw up to 2026.2.17. This issue ...)
-	TODO: check
+	NOT-FOR-US: OpenClaw
 CVE-2026-4039 (A vulnerability was determined in OpenClaw 2026.2.19-2. This vulnerabi ...)
-	TODO: check
+	NOT-FOR-US: OpenClaw
 CVE-2026-4016 (A security vulnerability has been detected in GPAC 26.03-DEV. Affected ...)
 	TODO: check
 CVE-2026-4015 (A weakness has been identified in GPAC 26.03-DEV. Affected is the func ...)
@@ -19,7 +19,7 @@ CVE-2026-4015 (A weakness has been identified in GPAC 26.03-DEV. Affected is the
 CVE-2026-3989 (SGLangs `replay_request_dump.py` contains an insecure pickle.load() wi ...)
 	TODO: check
 CVE-2026-3841 (A command injection vulnerability has been identified in the Telnet co ...)
-	TODO: check
+	NOT-FOR-US: TPLink
 CVE-2026-3497 (Vulnerability in the OpenSSH GSSAPI delta included in various Linux di ...)
 	TODO: check
 CVE-2026-3060 (SGLang' encoder parallel disaggregation system is vulnerable to unauth ...)
@@ -71,7 +71,7 @@ CVE-2026-32141 (flatted is a circular JSON parser. Prior to 3.4.0, flatted's par
 CVE-2026-32140 (Dataease is an open source data visualization analysis tool. Prior to  ...)
 	TODO: check
 CVE-2026-32139 (Dataease is an open source data visualization analysis tool. In DataEa ...)
-	TODO: check
+	NOT-FOR-US: DataEase
 CVE-2026-32138 (NEXULEAN is a cybersecurity portfolio & service platform for an Ethica ...)
 	TODO: check
 CVE-2026-32137 (Dataease is an open source data visualization analysis tool. Prior to  ...)
@@ -91,11 +91,11 @@ CVE-2026-31860 (Unhead is a document head and template manager. Prior to 2.1.11,
 CVE-2026-31841 (Hyperterse is a tool-first MCP framework for building AI-ready backend ...)
 	TODO: check
 CVE-2026-2987 (The Simple Ajax Chat plugin for WordPress is vulnerable to Stored Cros ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-2514 (In Progress Flowmon ADS versions prior to 12.5.5 and 13.0.3, a vulnera ...)
-	TODO: check
+	NOT-FOR-US: Progress Software
 CVE-2026-2513 (A vulnerability exists in Progress Flowmon ADS versions prior to 12.5. ...)
-	TODO: check
+	NOT-FOR-US: Progress Software
 CVE-2026-29066 (Tina is a headless content management system. Prior to 2.1.8, the Tina ...)
 	TODO: check
 CVE-2026-28793 (Tina is a headless content management system. Prior to 2.1.8, the Tina ...)
@@ -157,7 +157,7 @@ CVE-2026-0809 (Use of a custom token encoding algorithm in Streamsoft Presti\u01
 CVE-2025-70873 (An information disclosure issue in the zipfileInflate function in the  ...)
 	TODO: check
 CVE-2025-70245 (Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the cu ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2025-66955 (Local File Inclusion in Contact Plan, E-Mail, SMS and Fax components i ...)
 	TODO: check
 CVE-2025-61154 (Heap buffer overflow vulnerability in LibreDWG versions v0.13.3.7571 u ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/78e2a5f2437f1b63d6ac12673fb1ab4454d7060f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/78e2a5f2437f1b63d6ac12673fb1ab4454d7060f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260312/f6176fe1/attachment.htm>

More information about the debian-security-tracker-commits mailing list