[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon May 4 08:13:44 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
86b98ed3 by security tracker role at 2026-05-04T07:13:37+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -15,9 +15,9 @@ CVE-2026-7734 (A vulnerability has been found in osrg GoBGP up to 4.3.0. This im
 CVE-2026-7733 (A flaw has been found in funadmin up to 7.1.0-rc6. This affects the fu ...)
 	TODO: check
 CVE-2026-7732 (A vulnerability was detected in code-projects BloodBank Managing Syste ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2026-7731 (A security vulnerability has been detected in code-projects BloodBank  ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2026-7730 (A weakness has been identified in privsim mcp-test-runner 0.2.0. Impac ...)
 	TODO: check
 CVE-2026-7729 (A security flaw has been discovered in pixelsock directus-mcp 1.0.0. T ...)
@@ -35,17 +35,17 @@ CVE-2026-7723 (A flaw has been found in PrefectHQ prefect up to 3.6.13. Affected
 CVE-2026-7722 (A vulnerability was detected in PrefectHQ prefect up to 3.6.21. This i ...)
 	TODO: check
 CVE-2026-7721 (A security vulnerability has been detected in Totolink WA300 5.2cu.711 ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2026-7720 (A weakness has been identified in Totolink WA300 5.2cu.7112_B20190227. ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2026-7719 (A security flaw has been discovered in Totolink WA300 5.2cu.7112_B2019 ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2026-7718 (A vulnerability was identified in Totolink WA300 5.2cu.7112_B20190227. ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2026-7717 (A vulnerability was determined in Totolink WA300 5.2cu.7112_B20190227. ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2026-7716 (A vulnerability was found in code-projects Gym Management System In PH ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2026-7715 (A vulnerability has been found in ravenwits mcp-server-arangodb up to  ...)
 	TODO: check
 CVE-2026-7714 (A flaw has been found in crocodilestick Calibre-Web-Automated up to 4. ...)
@@ -77,7 +77,7 @@ CVE-2026-7161 (An insufficient encryption vulnerability exists in the Device Aut
 CVE-2026-6948 (Velociraptor versions prior to 0.76.4 contain a resource exhaustion vu ...)
 	TODO: check
 CVE-2026-5335 (The Magic Export & Import WordPress plugin before 1.2.0 stores exporte ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-43864 (mutt before 2.3.2 has a show_sig_summary NULL pointer dereference.)
 	TODO: check
 CVE-2026-43863 (mutt before 2.3.2 has an infinite loop in data_object_to_stream in cry ...)
@@ -109,15 +109,15 @@ CVE-2026-29200 (A critical IDOR vulnerability has been discovered in Comet Backu
 CVE-2026-29199 (phpBB before 3.3.16 is vulnerable to Host Header Injection that can le ...)
 	TODO: check
 CVE-2026-20451 (In slbc, there is a possible out of bounds write due to type confusion ...)
-	TODO: check
+	NOT-FOR-US: MediaTek
 CVE-2026-20450 (In Modem, there is a possible system crash due to incorrect error hand ...)
-	TODO: check
+	NOT-FOR-US: MediaTek
 CVE-2026-20449 (In Modem, there is a possible system crash due to a heap buffer overfl ...)
-	TODO: check
+	NOT-FOR-US: MediaTek
 CVE-2026-20448 (In geniezone, there is a possible escalation of privilege due to a mis ...)
-	TODO: check
+	NOT-FOR-US: MediaTek
 CVE-2026-20447 (In geniezone, there is a possible escalation of privilege due to a mis ...)
-	TODO: check
+	NOT-FOR-US: MediaTek
 CVE-2026-7704 (A vulnerability has been found in AV Stumpfl Pixera Two Media Server u ...)
 	NOT-FOR-US: AV Stumpfl Pixera Two Media Server
 CVE-2026-7703 (A flaw has been found in AV Stumpfl Pixera Two Media Server up to 25.2 ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/86b98ed3d4dafb5cd434be2eb54a41613a028ada

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/86b98ed3d4dafb5cd434be2eb54a41613a028ada
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260504/ae8a537f/attachment.htm>

More information about the debian-security-tracker-commits mailing list