[Git][security-tracker-team/security-tracker][master] Process some NFUs

Thu Mar 19 21:03:27 GMT 2026


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1c24b755 by Salvatore Bonaccorso at 2026-03-19T22:02:16+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -22,37 +22,37 @@ CVE-2026-3548 (Two buffer overflow vulnerabilities existed in the wolfSSL CRL pa
 	NOTE: https://github.com/wolfSSL/wolfssl/pull/9628/
 	NOTE: https://github.com/wolfSSL/wolfssl/pull/9873/
 CVE-2026-3511 (Improper Restriction of XML External Entity Reference vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: Slovensko.Digital Autogram
 CVE-2026-3503 (Protection mechanism failure in wolfCrypt post-quantum implementations ...)
 	TODO: check
 CVE-2026-3029 (A path traversal and arbitrary file write vulnerability exist in the e ...)
 	TODO: check
 CVE-2026-32869 (OPEXUS eComplaint and eCASE before 10.2.0.0 do not correctly sanitize  ...)
-	TODO: check
+	NOT-FOR-US: OPEXUS eComplaint and eCASE
 CVE-2026-32868 (OPEXUS eComplaint and eCASE before 10.2.0.0 do not correctly sanitize  ...)
-	TODO: check
+	NOT-FOR-US: OPEXUS eComplaint and eCASE
 CVE-2026-32867 (OPEXUS eComplaint before version 10.1.0.0 allows an unauthenticated at ...)
-	TODO: check
+	NOT-FOR-US: OPEXUS eComplaint
 CVE-2026-32866 (OPEXUS eComplaint and eCASE before 10.2.0.0 do not correctly sanitize  ...)
-	TODO: check
+	NOT-FOR-US: OPEXUS eComplaint and eCASE
 CVE-2026-32865 (OPEXUS eComplaint and eCASE before version 10.1.0.0 include the secret ...)
-	TODO: check
+	NOT-FOR-US: OPEXUS eComplaint and eCASE
 CVE-2026-32843 (Location Aware Sensor System by Linkit ONE, up to commit f06bd20 (2023 ...)
-	TODO: check
+	NOT-FOR-US: Location Aware Sensor System by Linkit ONE
 CVE-2026-32238 (OpenEMR is a free and open source electronic health records and medica ...)
 	NOT-FOR-US: OpenEMR
 CVE-2026-32119 (OpenEMR is a free and open source electronic health records and medica ...)
 	NOT-FOR-US: OpenEMR
 CVE-2026-30711 (Devome GRR v4.5.0 was discovered to contain multiple authenticated SQL ...)
-	TODO: check
+	NOT-FOR-US: Devome GRR
 CVE-2026-30694 (An issue in DedeCMS v.5.7.118 and before allows a remote attacker to e ...)
 	NOT-FOR-US: DedeCMS
 CVE-2026-30404 (The backend database management connection test feature in wgcloud v3. ...)
-	TODO: check
+	NOT-FOR-US: wgcloud
 CVE-2026-30403 (There is an arbitrary file read vulnerability in the test connection f ...)
-	TODO: check
+	NOT-FOR-US: wgcloud
 CVE-2026-30402 (An issue in wgcloud v.2.3.7 and before allows a remote attacker to exe ...)
-	TODO: check
+	NOT-FOR-US: wgcloud
 CVE-2026-2646 (A heap-buffer-overflow vulnerability exists in wolfSSL's wolfSSL_d2i_S ...)
 	TODO: check
 CVE-2026-2645 (In wolfSSL 5.8.2 and earlier, a logic flaw existed in the TLS 1.2 serv ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1c24b755addb0859d068545944acc55e03dc040d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1c24b755addb0859d068545944acc55e03dc040d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260319/0917753d/attachment.htm>
