[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Mar 25 21:17:52 GMT 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9adcdfcb by Salvatore Bonaccorso at 2026-03-25T22:17:25+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,11 +1,11 @@
 CVE-2026-4816 (A Reflected Cross Site Scripting (XSS) vulnerability has been found in ...)
-	TODO: check
+	NOT-FOR-US: Support Board
 CVE-2026-4815 (A SQL Injection vulnerability has been found in Support Board v3.7.7.  ...)
-	TODO: check
+	NOT-FOR-US: Support Board
 CVE-2026-4761 (When a certificate and its private key are installed in the Windows ma ...)
-	TODO: check
+	NOT-FOR-US: CODRA Panorama Suite
 CVE-2026-4760 (From Panorama Web HMI, an attacker can gain read access to certain Web ...)
-	TODO: check
+	NOT-FOR-US: CODRA Panorama Suite
 CVE-2026-4363 (GitLab has remediated an issue in GitLab EE affecting all versions fro ...)
 	TODO: check
 CVE-2026-3988 (GitLab has remediated an issue in GitLab CE/EE affecting all versions  ...)
@@ -37,27 +37,27 @@ CVE-2026-34085 (fontconfig before 2.17.1 has an off-by-one error in allocation d
 CVE-2026-33809 (A maliciously crafted TIFF file can cause image decoding to attempt to ...)
 	TODO: check
 CVE-2026-33751 (n8n is an open source workflow automation platform. Prior to versions  ...)
-	TODO: check
+	NOT-FOR-US: n8n
 CVE-2026-33749 (n8n is an open source workflow automation platform. Prior to versions  ...)
-	TODO: check
+	NOT-FOR-US: n8n
 CVE-2026-33724 (n8n is an open source workflow automation platform. Prior to version 2 ...)
-	TODO: check
+	NOT-FOR-US: n8n
 CVE-2026-33722 (n8n is an open source workflow automation platform. Prior to versions  ...)
-	TODO: check
+	NOT-FOR-US: n8n
 CVE-2026-33720 (n8n is an open source workflow automation platform. Prior to version 2 ...)
-	TODO: check
+	NOT-FOR-US: n8n
 CVE-2026-33713 (n8n is an open source workflow automation platform. Prior to versions  ...)
-	TODO: check
+	NOT-FOR-US: n8n
 CVE-2026-33696 (n8n is an open source workflow automation platform. Prior to versions  ...)
-	TODO: check
+	NOT-FOR-US: n8n
 CVE-2026-33665 (n8n is an open source workflow automation platform. Prior to versions  ...)
-	TODO: check
+	NOT-FOR-US: n8n
 CVE-2026-33663 (n8n is an open source workflow automation platform. Prior to versions  ...)
-	TODO: check
+	NOT-FOR-US: n8n
 CVE-2026-33660 (n8n is an open source workflow automation platform. Prior to versions  ...)
-	TODO: check
+	NOT-FOR-US: n8n
 CVE-2026-33268 (Nanoleaf Lines 12.3.2 does not authenticate firmware file uploads. A r ...)
-	TODO: check
+	NOT-FOR-US: Nanoleaf Lines
 CVE-2026-33247 (NATS-Server is a High-Performance server for NATS.io, a cloud and edge ...)
 	TODO: check
 CVE-2026-33246 (NATS-Server is a High-Performance server for NATS.io, a cloud and edge ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9adcdfcb9e2dd5742cd486f43f3844717b5490a6

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9adcdfcb9e2dd5742cd486f43f3844717b5490a6
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260325/0b0b67f2/attachment.htm>

More information about the debian-security-tracker-commits mailing list