[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Wed May 6 08:14:32 BST 2026


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
deddd7d1 by security tracker role at 2026-05-06T07:14:26+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,13 +1,13 @@
 CVE-2026-7857 (A vulnerability has been found in D-Link DI-8100 16.07.26A1. This vuln ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2026-7856 (A flaw has been found in D-Link DI-8100 16.07.26A1. This affects an un ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2026-7573 (An authorization bypass (CWE-639) in the GetUserRoles gRPC API endpoin ...)
 	TODO: check
 CVE-2026-7572 (An off-by-one error (CWE-193) in the ConsumeUnit16Array and ConsumeUni ...)
 	TODO: check
 CVE-2026-5753 (The All-in-One WP Migration Unlimited Extension plugin for WordPress i ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-44405 (In Paramiko through 4.0.0 before a448945, rsakey.py allows the SHA-1 a ...)
 	TODO: check
 CVE-2026-44331 (In ProFTPD through 1.3.9a before 7666224, a SQL injection vulnerabilit ...)
@@ -31,7 +31,7 @@ CVE-2026-40075 (OpenMRS Core is an open source electronic medical record system
 CVE-2026-40068 (In versions 2.1.63 through 2.1.83 of Claude Code, the folder trust det ...)
 	TODO: check
 CVE-2026-3208 (The Mercado Pago payments for WooCommerce plugin for WordPress is vuln ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-39849 (Pi-hole FTL is the core engine of the Pi-hole network-level advertisem ...)
 	TODO: check
 CVE-2026-39383 (Gotenberg is an API-based document conversion tool. In version 8.29.1, ...)
@@ -81,19 +81,19 @@ CVE-2026-32603 (Sandboxie is an open source sandbox-based isolation software for
 CVE-2026-31893 (Tunnelblick is an open source graphic user interface for OpenVPN on ma ...)
 	TODO: check
 CVE-2026-2306 (The Ninja Tables \u2013 Easy Data Table Builder plugin for WordPress i ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-71256 (In nr modem, there is a possible improper input validation. This could ...)
-	TODO: check
+	NOT-FOR-US: Unisoc
 CVE-2025-71255 (In Modem IMS, there is a possible improper input validation. This coul ...)
-	TODO: check
+	NOT-FOR-US: Unisoc
 CVE-2025-71254 (In Modem IMS, there is a possible improper input validation. This coul ...)
-	TODO: check
+	NOT-FOR-US: Unisoc
 CVE-2025-71253 (In Modem IMS, there is a possible improper input validation. This coul ...)
-	TODO: check
+	NOT-FOR-US: Unisoc
 CVE-2025-71252 (In Modem IMS, there is a possible improper input validation. This coul ...)
-	TODO: check
+	NOT-FOR-US: Unisoc
 CVE-2025-71251 (In IMS, there is a possible system crash due to improper input validat ...)
-	TODO: check
+	NOT-FOR-US: Unisoc
 CVE-2024-52911 (Bitcoin Core through 28.x has a security issue, the details of which a ...)
 	TODO: check
 CVE-2026-39852 (Quarkus is a Java framework for building cloud-native applications. In ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/deddd7d1d30f6e45fd46b258fe4633c16eb0b0ae

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/deddd7d1d30f6e45fd46b258fe4633c16eb0b0ae
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260506/409f5c6f/attachment.htm>
