Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
131335d5 by security tracker role at 2026-07-12T19:14:06+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -7,7 +7,7 @@ CVE-2026-61874 (filebrowser versions before 2.63.17 fail to 
normalize paths befo
 CVE-2026-59260 (OpenWrt luci-app-samba4 read ACL grants file.exec permission 
on /usr/s ...)
        TODO: check
 CVE-2026-58596 (Untrusted pointer dereference in Microsoft Edge 
(Chromium-based) allow ...)
-       TODO: check
+       NOT-FOR-US: Microsoft
 CVE-2026-56336 (Capgo before 12.128.2 contains an information disclosure 
vulnerability ...)
        TODO: check
 CVE-2026-56313 (Capgo before 12.128.2 contains a cross-organization account 
disruption ...)
@@ -17,7 +17,7 @@ CVE-2026-56308 (Capgo before 12.128.2 allows email address 
changes without requi
 CVE-2026-56281 (Capgo before 12.128.2 contains a sql injection vulnerability 
in the PO ...)
        TODO: check
 CVE-2026-56271 (Flowise before 3.1.0 (affected versions 3.0.13 and earlier) 
uses weak  ...)
-       TODO: check
+       NOT-FOR-US: Flowise
 CVE-2026-56260 (Crawl4AI before 0.8.7 contains an arbitrary file write 
vulnerability i ...)
        TODO: check
 CVE-2026-56259 (Crawl4AI before 0.8.8 contains credential exfiltration 
vulnerabilities ...)
@@ -59,23 +59,23 @@ CVE-2026-15489 (A vulnerability was identified in RafyMrX 
TOKO-ONLINE-ROTI up to
 CVE-2026-15488 (A vulnerability was determined in hcr707305003 shiroiAdmin 
1.1/1.3. Af ...)
        TODO: check
 CVE-2026-15487 (A vulnerability was found in TRENDnet TEW-821DAP 1.11B03. This 
impacts ...)
-       TODO: check
+       NOT-FOR-US: TRENDnet
 CVE-2026-15486 (A vulnerability has been found in TRENDnet TEW-821DAP 1.11B03. 
This af ...)
-       TODO: check
+       NOT-FOR-US: TRENDnet
 CVE-2026-15485 (A flaw has been found in TRENDnet TEW-821DAP 1.11B03. The 
impacted ele ...)
-       TODO: check
+       NOT-FOR-US: TRENDnet
 CVE-2026-10668 (The Nuvoton NuMaker HSUSBD USB device-controller driver 
(drivers/usb/u ...)
-       TODO: check
+       NOT-FOR-US: Zephyr, different from src:zephyr
 CVE-2026-10667 (Zephyr's dynamic kernel-object tracking 
(kernel/userspace/userspace.c, ...)
-       TODO: check
+       NOT-FOR-US: Zephyr, different from src:zephyr
 CVE-2026-10666 (parse_ipv4() in subsys/net/ip/utils.c (reached via 
net_ipaddr_parse()  ...)
-       TODO: check
+       NOT-FOR-US: Zephyr, different from src:zephyr
 CVE-2026-10665 (In Zephyr's WireGuard subsystem (subsys/net/lib/wireguard), 
wg_process ...)
-       TODO: check
+       NOT-FOR-US: Zephyr, different from src:zephyr
 CVE-2026-10664 (The nRF70 Wi-Fi driver's power-save event handler 
nrf_wifi_event_proc_ ...)
-       TODO: check
+       NOT-FOR-US: Zephyr, different from src:zephyr
 CVE-2026-10663 (In Zephyr's experimental USB host stack 
(CONFIG_USB_HOST_STACK), usbh_ ...)
-       TODO: check
+       NOT-FOR-US: Zephyr, different from src:zephyr
 CVE-2026-58281 (Deserialization of untrusted data in Microsoft Edge 
(Chromium-based) a ...)
        NOT-FOR-US: Microsoft
 CVE-2026-15484 (A vulnerability was detected in TRENDnet TEW-821DAP 1.12B01. 
The affec ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/131335d52575dc96a57b97efb3a3b51299e0fe0b

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/131335d52575dc96a57b97efb3a3b51299e0fe0b
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help


_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to