[Git][security-tracker-team/security-tracker][master] Process some more NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu May 28 10:34:42 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9132a7eb by Salvatore Bonaccorso at 2026-05-28T11:34:19+02:00
Process some more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -42,15 +42,15 @@ CVE-2026-8915 (Out-of-bounds write vulnerability in Samsung Open Source Escargot
 CVE-2026-8364 (Gladinet Triofox Cloud Server Agent Access Service (GladServerAgentSer ...)
 	NOT-FOR-US: Gladinet Triofox Cloud Server Agent Access Service
 CVE-2026-8363 (A stack-based buffer overflow condition exists in WOSDeviceDropFolder. ...)
-	TODO: check
+	NOT-FOR-US: Gladinet Triofox Server Agent
 CVE-2026-8362 (A stack-based buffer overflow condition exists in WOSDefaultHttpModule ...)
-	TODO: check
+	NOT-FOR-US: Gladinet Triofox Server Agent
 CVE-2026-8361 (A path traversal vulnerability exists in WOSDefaultHttpModule.dll when ...)
-	TODO: check
+	NOT-FOR-US: Gladinet Triofox Server Agent
 CVE-2026-8360 (Function calls to WOSCommonUtil.dll!WOSSysInfoGetDeviceInterface() in  ...)
-	TODO: check
+	NOT-FOR-US: Gladinet Triofox Server Agent
 CVE-2026-8359 (When processing a request with a URL path starting with /status or /sy ...)
-	TODO: check
+	NOT-FOR-US: Gladinet Triofox Server Agent
 CVE-2026-7802 (The Frontend Admin by DynamiApps plugin for WordPress is vulnerable to ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2026-7533 (The Easy Digital Downloads plugin for WordPress is vulnerable to Cross ...)
@@ -62,39 +62,39 @@ CVE-2026-4888 (The Everest Forms \u2013 Contact Form, Payment Form, Quiz, Survey
 CVE-2026-49009 (Northern.tech Mender Server v4.1.0, v4.0.1 and below, and fixed in v4. ...)
 	TODO: check
 CVE-2026-48792 (pam_usb provides hardware authentication for Linux using ordinary remo ...)
-	TODO: check
+	NOT-FOR-US: pam_usb
 CVE-2026-48066 (pam_usb provides hardware authentication for Linux using ordinary remo ...)
-	TODO: check
+	NOT-FOR-US: pam_usb
 CVE-2026-48065 (pam_usb provides hardware authentication for Linux using ordinary remo ...)
-	TODO: check
+	NOT-FOR-US: pam_usb
 CVE-2026-48064 (pam_usb provides hardware authentication for Linux using ordinary remo ...)
-	TODO: check
+	NOT-FOR-US: pam_usb
 CVE-2026-47274 (pam_usb provides hardware authentication for Linux using ordinary remo ...)
-	TODO: check
+	NOT-FOR-US: pam_usb
 CVE-2026-47273 (pam_usb provides hardware authentication for Linux using ordinary remo ...)
-	TODO: check
+	NOT-FOR-US: pam_usb
 CVE-2026-47272 (pam_usb provides hardware authentication for Linux using ordinary remo ...)
-	TODO: check
+	NOT-FOR-US: pam_usb
 CVE-2026-47271 (pam_usb provides hardware authentication for Linux using ordinary remo ...)
-	TODO: check
+	NOT-FOR-US: pam_usb
 CVE-2026-47270 (pam_usb provides hardware authentication for Linux using ordinary remo ...)
-	TODO: check
+	NOT-FOR-US: pam_usb
 CVE-2026-47269 (pam_usb provides hardware authentication for Linux using ordinary remo ...)
-	TODO: check
+	NOT-FOR-US: pam_usb
 CVE-2026-47161 (RELATE is a web-based courseware package. Prior to commit d66ba5659b45 ...)
 	NOT-FOR-US: RELATE
 CVE-2026-46544 (Microsoft UFO open-source framework for intelligent automation across  ...)
-	TODO: check
+	NOT-FOR-US: Microsoft UFO
 CVE-2026-46538 (Microsoft UFO open-source framework for intelligent automation across  ...)
-	TODO: check
+	NOT-FOR-US: Microsoft UFO
 CVE-2026-46416 (Microsoft UFO open-source framework for intelligent automation across  ...)
-	TODO: check
+	NOT-FOR-US: Microsoft UFO
 CVE-2026-46414 (Microsoft UFO open-source framework for intelligent automation across  ...)
-	TODO: check
+	NOT-FOR-US: Microsoft UFO
 CVE-2026-46402 (Microsoft UFO open-source framework for intelligent automation across  ...)
-	TODO: check
+	NOT-FOR-US: Microsoft UFO
 CVE-2026-45322 (Microsoft UFO open-source framework for intelligent automation across  ...)
-	TODO: check
+	NOT-FOR-US: Microsoft UFO
 CVE-2026-45152 (uniget is a universal installer and updater for (container) tools. Pri ...)
 	TODO: check
 CVE-2026-45136 (claude-code-cache-fix is a cache optimization proxy for Claude Code. F ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9132a7ebade09c44dbf26d8a7b644af8674c62d1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9132a7ebade09c44dbf26d8a7b644af8674c62d1
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260528/817c3f5e/attachment.htm>

More information about the debian-security-tracker-commits mailing list