[Git][security-tracker-team/security-tracker][master] NFUs

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
60394ffc by Moritz Muehlenhoff at 2026-05-31T22:53:21+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -8,7 +8,7 @@ CVE-2026-10194 (A weakness has been identified in OFFIS DCMTK 3.7.0. This affect
 	- dcmtk <unfixed>
 	NOTE: https://git.dcmtk.org/?p=dcmtk.git;a=commit;h=0f78a4ef6f645ea5530166e445e5436a5de58e75
 CVE-2026-10193 (A security flaw has been discovered in OFCMS up to 1.1.3. The impacted ...)
-	TODO: check
+	NOT-FOR-US: OFCMS
 CVE-2026-10192 (A vulnerability was identified in Tenda W12 3.0.0.7(4763). The affecte ...)
 	NOT-FOR-US: Tenda
 CVE-2026-10191 (A vulnerability was determined in Tenda W12 3.0.0.7(4763). Impacted is ...)
@@ -40,27 +40,27 @@ CVE-2026-10179 (A flaw has been found in TRENDnet TEW-432BRP 3.10B20. This issue
 CVE-2026-10178 (A vulnerability was detected in code-projects Online Music Site 1.0. T ...)
 	NOT-FOR-US: code-projects
 CVE-2026-10177 (A security vulnerability has been detected in Aider-AI Aider 0.86.3. T ...)
-	TODO: check
+	NOT-FOR-US: Aider-AI Aider
 CVE-2026-10176 (A weakness has been identified in Aider-AI Aider 0.86.3. Affected by t ...)
-	TODO: check
+	NOT-FOR-US: Aider-AI Aider
 CVE-2026-10175 (A security flaw has been discovered in Aider-AI Aider 0.86.3. Affected ...)
-	TODO: check
+	NOT-FOR-US: Aider-AI Aider
 CVE-2026-10174 (A vulnerability was identified in Aider-AI Aider 0.86.3. Affected is a ...)
-	TODO: check
+	NOT-FOR-US: Aider-AI Aider
 CVE-2026-10173 (A weakness has been identified in Orthanc Explorer 2 up to 1.12.0. The ...)
-	TODO: check
+	NOT-FOR-US: Orthanc Explorer
 CVE-2026-10172 (A security flaw has been discovered in Bdtask Multi-Store Inventory Ma ...)
-	TODO: check
+	NOT-FOR-US: Bdtask Multi-Store Inventory Manegement System
 CVE-2026-10171 (A vulnerability has been found in code-projects Online Music Site 1.0. ...)
 	NOT-FOR-US: code-projects
 CVE-2026-10170 (A flaw has been found in code-projects Visitor Management System 1.0.  ...)
 	NOT-FOR-US: code-projects
 CVE-2026-10169 (A vulnerability was detected in OUSL-GROUP-BrinaryBrains School Studen ...)
-	TODO: check
+	NOT-FOR-US: BrinaryBrains School Student Management System
 CVE-2026-10168 (A security vulnerability has been detected in OUSL-GROUP-BrinaryBrains ...)
-	TODO: check
+	NOT-FOR-US: BrinaryBrains School Student Management System
 CVE-2026-10167 (A weakness has been identified in OUSL-GROUP-BrinaryBrains School Stud ...)
-	TODO: check
+	NOT-FOR-US: BrinaryBrains School Student Management System
 CVE-2026-10166 (A vulnerability was determined in Edimax BR-6478AC 1.23. The affected  ...)
 	NOT-FOR-US: Edimax
 CVE-2026-10165 (A vulnerability was identified in Edimax BR-6478AC 1.23. The impacted  ...)
@@ -84,13 +84,13 @@ CVE-2026-10157 (A vulnerability was identified in Open5GS up to 2.7.6. This impa
 CVE-2026-10156 (A vulnerability was determined in Open5GS up to 2.7.7. This affects th ...)
 	- open5gs <itp> (bug #1094791)
 CVE-2026-10155 (A vulnerability was found in Bdtask Multi-Store Inventory Management S ...)
-	TODO: check
+	NOT-FOR-US: Bdtask Multi-Store Inventory Management System
 CVE-2026-10154 (A vulnerability has been found in Dolibarr ERP CRM 23.0.0/23.0.1/23.0. ...)
 	- dolibarr <removed>
 CVE-2026-10153 (A flaw has been found in westboy CicadasCMS up to 2431154dac8d0735e04f ...)
-	TODO: check
+	NOT-FOR-US: CicadasCMS
 CVE-2026-10152 (A vulnerability was detected in TaleLin lin-cms-spring-boot up to 0.2. ...)
-	TODO: check
+	NOT-FOR-US: lin-cms-spring-boot
 CVE-2026-42359
 	- airflow <itp> (bug #819700)
 CVE-2026-45360
@@ -623,7 +623,7 @@ CVE-2026-10107 (MoviePilot v2 contains a server-side request forgery vulnerabili
 CVE-2026-10105 (agno 2.6.5 contains a SQL injection vulnerability in the ClickHouse ve ...)
 	NOT-FOR-US: agno-agi agno
 CVE-2026-10101 (ACM/MCE assisted-service writes raw referenced pull-secret contents in ...)
-	TODO: check
+	NOT-FOR-US: Red Hat Multicluster Engine for Kubernetes
 CVE-2026-10099 (XX-Net V5.16.6 contains a WebSocket frame parsing vulnerability in the ...)
 	NOT-FOR-US: XX-Net
 CVE-2026-10078 (A flaw was found in the Quay config-tool's GitLab OAuth validator. Thi ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/60394ffc08efb89c7b19f3cbeb3889e21a8af762

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/60394ffc08efb89c7b19f3cbeb3889e21a8af762
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260531/ac7a41f0/attachment.htm>