[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun May 10 09:23:30 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b5db1a87 by Salvatore Bonaccorso at 2026-05-10T10:23:07+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,11 +1,11 @@
 CVE-2026-8235 (A vulnerability was detected in 8421bit MiniClaw 0.8.0/0.9.0. This iss ...)
-	TODO: check
+	NOT-FOR-US: MiniClaw
 CVE-2026-8234 (A security vulnerability has been detected in EFM ipTIME A8004T 14.18. ...)
-	TODO: check
+	NOT-FOR-US: EFM ipTIME A8004T
 CVE-2026-8233 (A vulnerability was determined in Dotouch XproUPF 2.0.0-release-088aa7 ...)
-	TODO: check
+	NOT-FOR-US: Dotouch XproUPF
 CVE-2026-8232 (A vulnerability was found in Dotouch XproUPF 2.0.0-release-088aa7c4. T ...)
-	TODO: check
+	NOT-FOR-US: Dotouch XproUPF
 CVE-2026-8231 (A vulnerability has been found in CodeAstro Online Catering Ordering S ...)
 	NOT-FOR-US: CodeAstro
 CVE-2026-8230 (A flaw has been found in Wavlink NU516U1 240425. The impacted element  ...)
@@ -27,43 +27,43 @@ CVE-2026-8223 (A vulnerability was found in Open5GS up to 2.7.7. Affected by thi
 CVE-2026-8222 (A vulnerability has been found in Open5GS up to 2.7.7. Affected is the ...)
 	- open5gs <itp> (bug #1094791)
 CVE-2026-8221 (A flaw has been found in Devs Palace ERP Online up to 4.0.0. This impa ...)
-	TODO: check
+	NOT-FOR-US: Devs Palace ERP Online
 CVE-2026-8220 (A vulnerability was detected in Devs Palace ERP Online up to 4.0.0. Th ...)
-	TODO: check
+	NOT-FOR-US: Devs Palace ERP Online
 CVE-2026-8219 (A security vulnerability has been detected in Devs Palace ERP Online u ...)
-	TODO: check
+	NOT-FOR-US: Devs Palace ERP Online
 CVE-2026-8218 (A weakness has been identified in Devs Palace ERP Online up to 4.0.0.  ...)
-	TODO: check
+	NOT-FOR-US: Devs Palace ERP Online
 CVE-2026-8217 (A security flaw has been discovered in Industrial Application Software ...)
-	TODO: check
+	NOT-FOR-US: Industrial Application Software IAS Canias ERP
 CVE-2026-8216 (A vulnerability was identified in Industrial Application Software IAS  ...)
-	TODO: check
+	NOT-FOR-US: Industrial Application Software IAS Canias ERP
 CVE-2026-8215 (A vulnerability was determined in Industrial Application Software IAS  ...)
-	TODO: check
+	NOT-FOR-US: Industrial Application Software IAS Canias ERP
 CVE-2026-8214 (A vulnerability was found in Industrial Application Software IAS Cania ...)
-	TODO: check
+	NOT-FOR-US: Industrial Application Software IAS Canias ERP
 CVE-2026-8213 (A vulnerability has been found in OSGeo gdal up to 3.13.0dev-4. Affect ...)
 	TODO: check
 CVE-2026-8212 (A flaw has been found in OSGeo gdal up to 3.13.0dev-4. Affected by thi ...)
 	TODO: check
 CVE-2026-8211 (A vulnerability was detected in codelibs Fess up to 15.5.1. Affected b ...)
-	TODO: check
+	NOT-FOR-US: codelibs Fess
 CVE-2026-8210 (A security vulnerability has been detected in aandrew-me tgpt up to 2. ...)
-	TODO: check
+	NOT-FOR-US: aandrew-me tgpt
 CVE-2026-8196 (A flaw has been found in JeecgBoot 3.9.1. The impacted element is an u ...)
-	TODO: check
+	NOT-FOR-US: JeecgBoot
 CVE-2026-8195 (A vulnerability was detected in JeecgBoot up to 3.9.1. The affected el ...)
-	TODO: check
+	NOT-FOR-US: JeecgBoot
 CVE-2026-8194 (A security vulnerability has been detected in osTicket up to 1.18.3. I ...)
-	TODO: check
+	NOT-FOR-US: osTicket
 CVE-2026-45186 (In libexpat before 2.8.1, the computational complexity of attribute na ...)
 	TODO: check
 CVE-2026-45184 (Kdenlive before 26.04.1 allows dangerous proxy parameters when an atta ...)
 	TODO: check
 CVE-2026-45182 (GrapheneOS before 2026050400 allows attackers to discover the real IP  ...)
-	TODO: check
+	NOT-FOR-US: GrapheneOS
 CVE-2026-45181 (Hex-Rays IDA Pro 9.2 and 9.3 before 9.3sp2 does not block Clang depend ...)
-	TODO: check
+	NOT-FOR-US: Hex-Rays IDA
 CVE-2026-42606 (AzuraCast is a self-hosted, all-in-one web radio management suite. Pri ...)
 	TODO: check
 CVE-2026-42605 (AzuraCast is a self-hosted, all-in-one web radio management suite. Pri ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b5db1a870aae9ee4c933a977659836964c6566de

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b5db1a870aae9ee4c933a977659836964c6566de
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260510/95795bd6/attachment.htm>

More information about the debian-security-tracker-commits mailing list