[Git][security-tracker-team/security-tracker][master] auto-nfu: Extend Apache rule

Moritz Muehlenhoff (@jmm) jmm at debian.org
Thu Mar 19 11:11:09 GMT 2026 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b14e8c5c by Moritz Muehlenhoff at 2026-03-19T12:09:50+01:00
auto-nfu: Extend Apache rule

- - - - -


2 changed files:

- data/CVE/list
- data/packages/nfu.yaml


Changes:

=====================================
data/CVE/list
=====================================
@@ -2050,9 +2050,9 @@ CVE-2026-0835 (IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.1.0.0
 CVE-2025-71263 (In UNIX Fourth Research Edition (v4), the su command is vulnerable to  ...)
 	NOT-FOR-US: AT&T Bell Labs UNIX
 CVE-2025-66249 (Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ...)
-	TODO: check
+	NOT-FOR-US: Apache software not packaged in Debian
 CVE-2025-60012 (Malicious configuration can lead to unauthorized file access in Apache ...)
-	TODO: check
+	NOT-FOR-US: Apache software not packaged in Debian
 CVE-2025-36368 (IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.1.0.0 thro ...)
 	NOT-FOR-US: IBM
 CVE-2025-14811 (IBM Sterling Partner Engagement Manager 6.2.3.0 through 6.2.3.5 and 6. ...)


=====================================
data/packages/nfu.yaml
=====================================
@@ -327,6 +327,7 @@
       - product: Apache Kvrocks
       - product: Apache Kylin
       - product: Apache Kyuubi
+      - product: Apache Livy
       - product: Apache Mynewt NimBLE
       - product: Apache NiFi
       - product: Apache NimBLE



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b14e8c5cabb35641c978ab9fa71a5ad0b08db2a4

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b14e8c5cabb35641c978ab9fa71a5ad0b08db2a4
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260319/aff236e5/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list