[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri May 29 22:03:26 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
735c796e by Salvatore Bonaccorso at 2026-05-29T23:02:46+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -4733,17 +4733,17 @@ CVE-2026-44214 (eventsource-encoder encodes events as well-formed EventSource/Se
 CVE-2026-44213 (The OpenTelemetry.Exporter.Instana exports telemetry to Instana backen ...)
 	TODO: check
 CVE-2026-44209 (Banks generates meaningful LLM prompts using a template language that  ...)
-	TODO: check
+	NOT-FOR-US: Banks
 CVE-2026-43988 (Vanetza is an open-source implementation of the ETSI C-ITS protocol su ...)
-	TODO: check
+	NOT-FOR-US: Vanetza
 CVE-2026-42337 (MaxKB is an open-source AI assistant for enterprise. MaxKB 2.8.0 and p ...)
-	TODO: check
+	NOT-FOR-US: MaxKB
 CVE-2026-42336 (MaxKB is an open-source AI assistant for enterprise. MaxKB 2.8.0 and p ...)
-	TODO: check
+	NOT-FOR-US: MaxKB
 CVE-2026-42335 (MaxKB is an open-source AI assistant for enterprise. Prior to 2.8.1, M ...)
-	TODO: check
+	NOT-FOR-US: MaxKB
 CVE-2026-36239 (PbootCMS v.3.2.11 contains a code injection vulnerability in its site  ...)
-	TODO: check
+	NOT-FOR-US: PbootCMS
 CVE-2026-2255 (Hitachi Vantara Pentaho Data Integration & Analytics versions before 1 ...)
 	NOT-FOR-US: Hitachi Vantana
 CVE-2026-2254 (Hitachi Vantara Pentaho Data Integration & Analytics versions before 1 ...)
@@ -4759,13 +4759,13 @@ CVE-2026-25426 (Missing Authorization vulnerability in Magepeople inc. Taxi Book
 CVE-2026-24520 (Missing Authorization vulnerability in bPlugins Tiktok Feed allows Exp ...)
 	NOT-FOR-US: WordPress plugin or theme
 CVE-2025-68711 (AppLockZ App Lock and Fingerprint Lock (applock.passwordfingerprint.ap ...)
-	TODO: check
+	NOT-FOR-US: AppLockZ App Lock and fingerprint Lock
 CVE-2025-68710 (Easyelife App lock (aka Fingerprint,Applock or locker.app.safe.applock ...)
-	TODO: check
+	NOT-FOR-US: Easyelife App lock
 CVE-2025-68709 (SailingLab AppLock (aka com.alpha.applock) 4.3.8 for Android allows a  ...)
-	TODO: check
+	NOT-FOR-US: SailingLab AppLock
 CVE-2025-68708 (SailingLab AppLock (aka com.alpha.applock) 4.3.8 for Android allows a  ...)
-	TODO: check
+	NOT-FOR-US: SailingLab AppLock
 CVE-2025-46307 (A logic issue was addressed with improved restrictions. This issue is  ...)
 	NOT-FOR-US: Apple
 CVE-2025-46284 (A race condition was addressed with additional validation. This issue  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/735c796e4f9cb3b881979833f88d14b2c5a53c8c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/735c796e4f9cb3b881979833f88d14b2c5a53c8c
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260529/b014234d/attachment.htm>

More information about the debian-security-tracker-commits mailing list