[Git][security-tracker-team/security-tracker][master] auto-nfu: Update vmware rule

Moritz Muehlenhoff (@jmm) jmm at debian.org
Sun May 31 22:06:09 BST 2026 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f383c817 by Moritz Muehlenhoff at 2026-05-31T23:05:46+02:00
auto-nfu: Update vmware rule

- - - - -


2 changed files:

- data/CVE/list
- data/packages/nfu.yaml


Changes:

=====================================
data/CVE/list
=====================================
@@ -3120,9 +3120,9 @@ CVE-2026-42082 (free5GC is an open-source implementation of the 5G core network.
 CVE-2026-42081 (free5GC is an open-source implementation of the 5G core network. Prior ...)
 	NOT-FOR-US: free5GC
 CVE-2026-41704 (AgentClient#handle_method (lines 264-303) processes every NATS reply.  ...)
-	TODO: check
+	NOT-FOR-US: VMware
 CVE-2026-41009 (When the director sends a long-running request (e.g. compile_package), ...)
-	TODO: check
+	NOT-FOR-US: VMware
 CVE-2026-40852 (A highly authenticated attacker can alter the config generator injecti ...)
 	NOT-FOR-US: MB connect line
 CVE-2026-40851 (A local attacker can perform a confusion attack on the cfgparser via a ...)


=====================================
data/packages/nfu.yaml
=====================================
@@ -666,6 +666,7 @@
     - cna: vmware
     - anyOf:
       - product: Avi Load Balancer
+      - product: BOSH Director
       - product: Cloud Foundry
       - product: Spring AI
       - product: Spring Boot



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f383c81720798a2c8705786998b7d92de589b2bc

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f383c81720798a2c8705786998b7d92de589b2bc
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260531/a0398805/attachment.htm>

More information about the debian-security-tracker-commits mailing list