[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri May 29 05:29:27 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
3ab132f6 by Salvatore Bonaccorso at 2026-05-29T06:29:01+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -17,23 +17,23 @@ CVE-2026-9618 (The PeachPay \u2014 Payments & Express Checkout for WooCommerce (
CVE-2026-9227 (The GutenBee \u2013 Gutenberg Blocks plugin for WordPress is vulnerabl ...)
NOT-FOR-US: WordPress plugin
CVE-2026-9098 (In Casdoor versions 2.362.0 and earlier, the SAML callback handler in ...)
- TODO: check
+ NOT-FOR-US: Casdoor
CVE-2026-9097 (Casdoor versions 2.362.0 and earlier do not verify that a JWT used for ...)
- TODO: check
+ NOT-FOR-US: Casdoor
CVE-2026-9096 (Casdoor versions 2.362.0 and earlier do not enforce SAML assertion tim ...)
- TODO: check
+ NOT-FOR-US: Casdoor
CVE-2026-9095 (Casdoor versions 2.362.0 and earlier map SAML assertions to user sessi ...)
- TODO: check
+ NOT-FOR-US: Casdoor
CVE-2026-9094 (Casdoor versions 2.362.0 and earlier contain a vulnerability enabling ...)
- TODO: check
+ NOT-FOR-US: Casdoor
CVE-2026-9093 (In Casdoor versions 2.362.0 and earlier, the SAML service provider imp ...)
- TODO: check
+ NOT-FOR-US: Casdoor
CVE-2026-9092 (Casdoor versions 2.362.0 and earlier contain a vulnerability involving ...)
- TODO: check
+ NOT-FOR-US: Casdoor
CVE-2026-9091 (Casdoor versions 2.362.0 and earlier contain a logic flaw in the socia ...)
- TODO: check
+ NOT-FOR-US: Casdoor
CVE-2026-9090 (Casdoor versions 2.362.0 and earlier contain a vulnerability that allo ...)
- TODO: check
+ NOT-FOR-US: Casdoor
CVE-2026-9015 (The Equalize Digital Accessibility Checker \u2013 WCAG, ADA, EAA and S ...)
NOT-FOR-US: WordPress plugin
CVE-2026-8990 (A user with physical access to a smartphone can bypassauthentication m ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3ab132f67126e2a2ab34d1d1ba4d5cfcda00d424
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3ab132f67126e2a2ab34d1d1ba4d5cfcda00d424
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260529/01e85955/attachment.htm>
More information about the debian-security-tracker-commits
mailing list