[Git][security-tracker-team/security-tracker][master] Process some NFUs

Sun Mar 29 12:18:55 BST 2026


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
bacef019 by Salvatore Bonaccorso at 2026-03-29T13:18:26+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5,13 +5,13 @@ CVE-2026-5034 (A flaw has been found in code-projects Accounting System 1.0. Aff
 CVE-2026-5033 (A vulnerability was detected in code-projects Accounting System 1.0. A ...)
 	NOT-FOR-US: code-projects
 CVE-2026-5031 (A vulnerability was found in BichitroGan ISP Billing Software 2025.3.2 ...)
-	TODO: check
+	NOT-FOR-US: BichitroGan ISP Billing Software
 CVE-2026-5030 (A vulnerability has been found in Totolink NR1800X 9.1.0u.6279_B202109 ...)
 	NOT-FOR-US: TOTOLINK
 CVE-2026-5024 (A vulnerability was found in D-Link DIR-513 1.10. This issue affects t ...)
 	NOT-FOR-US: D-Link
 CVE-2026-5023 (A vulnerability has been found in DeDeveloper23 codebase-mcp up to 3ec ...)
-	TODO: check
+	NOT-FOR-US: DeDeveloper23 codebase-mcp
 CVE-2026-5021 (A flaw has been found in Tenda F453 1.0.0.3. This affects the function ...)
 	NOT-FOR-US: Tenda
 CVE-2026-5020 (A vulnerability was detected in Totolink A3600R 4.1.2cu.5182_B20201102 ...)
@@ -23,11 +23,11 @@ CVE-2026-5018 (A weakness has been identified in code-projects Simple Food Order
 CVE-2026-5017 (A security flaw has been discovered in code-projects Simple Food Order ...)
 	NOT-FOR-US: code-projects
 CVE-2026-5016 (A vulnerability was identified in elecV2 elecV2P up to 3.8.3. This aff ...)
-	TODO: check
+	NOT-FOR-US: elecV2 elecV2P
 CVE-2026-5015 (A vulnerability was determined in elecV2 elecV2P up to 3.8.3. The impa ...)
-	TODO: check
+	NOT-FOR-US: elecV2 elecV2P
 CVE-2026-5014 (A vulnerability was found in elecV2 elecV2P up to 3.8.3. The affected  ...)
-	TODO: check
+	NOT-FOR-US: elecV2 elecV2P
 CVE-2026-4851 (GRID::Machine versions through 0.127 for Perl allows arbitrary code ex ...)
 	NOT-FOR-US: GRID::Machine Perl Module
 CVE-2026-2602 (The Twentig plugin for WordPress is vulnerable to Stored Cross-Site Sc ...)
@@ -1808,9 +1808,9 @@ CVE-2026-27039 (Improper Neutralization of Special Elements used in an SQL Comma
 CVE-2026-26833 (thumbler through 1.1.2 allows OS command injection via the input, outp ...)
 	NOT-FOR-US: thumbler
 CVE-2026-26832 (node-tesseract-ocr is an npm package that provides a Node.js wrapper f ...)
-	TODO: check
+	NOT-FOR-US: Node.js wrapper for Tesseract OCR
 CVE-2026-26831 (textract through 2.5.0 is vulnerable to OS Command Injection via the f ...)
-	TODO: check
+	NOT-FOR-US: textract Node.js module
 CVE-2026-26830 (pdf-image (npm package) through version 2.0.0 allows OS command inject ...)
 	NOT-FOR-US: pdf-image Node.js module
 CVE-2026-26233 (Mattermost versions 11.4.x <= 11.4.0, 11.3.x <= 11.3.1, 11.2.x <= 11.2 ...)
@@ -15239,7 +15239,7 @@ CVE-2026-24005 (Kruise provides automated management of large-scale applications
 CVE-2026-23627 (OpenEMR is a free and open source electronic health records and medica ...)
 	NOT-FOR-US: OpenEMR
 CVE-2026-22866 (Ethereum Name Service (ENS) is a distributed, open, and extensible nam ...)
-	TODO: check
+	NOT-FOR-US: Ethereum Name Service (ENS)
 CVE-2026-22720 (VMware Aria Operations contains a stored cross-site scripting vulnerab ...)
 	NOT-FOR-US: VMware
 CVE-2026-22719 (VMware Aria Operations contains a command injection vulnerability. A m ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bacef019c7229862c4ea14ad9b2d06aab177c447

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bacef019c7229862c4ea14ad9b2d06aab177c447
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260329/16328972/attachment.htm>
