[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) Tue, 29 Apr 2025 01:12:17 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
15665c9c by security tracker role at 2025-04-29T08:12:01+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,71 @@
+CVE-2025-4039 (A vulnerability was found in PHPGurukul Rail Pass Management 
System 1. ...)
+       TODO: check
+CVE-2025-4038 (A vulnerability was found in code-projects Train Ticket 
Reservation Sy ...)
+       TODO: check
+CVE-2025-4037 (A vulnerability was found in code-projects ATM Banking 1.0. It 
has bee ...)
+       TODO: check
+CVE-2025-46761
+       REJECTED
+CVE-2025-46760
+       REJECTED
+CVE-2025-46759
+       REJECTED
+CVE-2025-46758
+       REJECTED
+CVE-2025-46757
+       REJECTED
+CVE-2025-46756
+       REJECTED
+CVE-2025-46755
+       REJECTED
+CVE-2025-46754
+       REJECTED
+CVE-2025-46753
+       REJECTED
+CVE-2025-46343 (n8n is a workflow automation platform. Prior to version 
1.90.0, n8n is ...)
+       TODO: check
+CVE-2025-46338 (Audiobookshelf is a self-hosted audiobook and podcast server. 
Prior to ...)
+       TODO: check
+CVE-2025-46330 (libsnowflakeclient is the Snowflake Connector for C/C++. 
Versions star ...)
+       TODO: check
+CVE-2025-46329 (libsnowflakeclient is the Snowflake Connector for C/C++. 
Versions star ...)
+       TODO: check
+CVE-2025-46328 (snowflake-connector-nodejs is a NodeJS driver for Snowflake. 
Versions  ...)
+       TODO: check
+CVE-2025-46327 (gosnowflake is the Snowflake Golang driver. Versions starting 
from 1.7 ...)
+       TODO: check
+CVE-2025-46326 (snowflake-connector-net is the Snowflake Connector for .NET. 
Versions  ...)
+       TODO: check
+CVE-2025-31203 (An integer overflow was addressed with improved input 
validation. This ...)
+       TODO: check
+CVE-2025-31202 (A null pointer dereference was addressed with improved input 
validatio ...)
+       TODO: check
+CVE-2025-31197 (The issue was addressed with improved checks. This issue is 
fixed in m ...)
+       TODO: check
+CVE-2025-30445 (A type confusion issue was addressed with improved checks. 
This issue  ...)
+       TODO: check
+CVE-2025-2893 (The Gutenverse \u2013 Ultimate Block Addons and Page Builder 
for Site  ...)
+       TODO: check
+CVE-2025-24271 (An access issue was addressed with improved access 
restrictions. This  ...)
+       TODO: check
+CVE-2025-24270 (This issue was addressed by removing the vulnerable code. This 
issue i ...)
+       TODO: check
+CVE-2025-24252 (A use-after-free issue was addressed with improved memory 
management.  ...)
+       TODO: check
+CVE-2025-24251 (The issue was addressed with improved checks. This issue is 
fixed in m ...)
+       TODO: check
+CVE-2025-24206 (An authentication issue was addressed with improved state 
management.  ...)
+       TODO: check
+CVE-2025-24179 (A null pointer dereference was addressed with improved input 
validatio ...)
+       TODO: check
+CVE-2025-0049 (When a Web User without Create permission on subfolders 
attempts to up ...)
+       TODO: check
+CVE-2024-12273 (The Calculated Fields Form WordPress plugin before 5.2.62 does 
not san ...)
+       TODO: check
+CVE-2024-11922 (Missing input validation in certain features of the Web Client 
of Fort ...)
+       TODO: check
+CVE-2024-10635 (Enterprise Protection contains an improper input validation 
vulnerabil ...)
+       TODO: check
 CVE-2025-4035
        - libsoup3 <unfixed>
        - libsoup2.4 <unfixed>
@@ -512741,7 +512809,7 @@ CVE-2018-13374 (A Improper Access Control in Fortinet 
FortiOS 6.0.2, 5.6.7 and b
 CVE-2018-13373
        RESERVED
 CVE-2018-13372
-       RESERVED
+       REJECTED
 CVE-2018-13371 (An external control of system vulnerability in FortiOS may 
allow an au ...)
        NOT-FOR-US: Fortiguard
 CVE-2018-13370
@@ -579796,7 +579864,7 @@ CVE-2017-7741 (In libsndfile before 1.0.28, an error 
in the "flac_buffer_copy()"
        NOTE: 1.0.27-2 in unstable contain fix_bufferoverflows.patch meant to 
address this issue
        NOTE: 
https://sources.debian.org/data/main/libs/libsndfile/1.0.27-2/debian/patches/fix_bufferoverflows.patch
 CVE-2017-7740
-       RESERVED
+       REJECTED
 CVE-2017-7739 (A reflected Cross-site Scripting (XSS) vulnerability in web 
proxy disc ...)
        NOT-FOR-US: Fortinet FortiOS
 CVE-2017-7738 (An Information Disclosure vulnerability in Fortinet FortiOS 
5.6.0 to 5 ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/15665c9c78668446e006c0e3928f5fa21e6917bc

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/15665c9c78668446e006c0e3928f5fa21e6917bc
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] automatic update

Reply via email to