Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
40d5b06f by Salvatore Bonaccorso at 2025-10-30T09:33:27+01:00
Process two more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3,7 +3,7 @@ CVE-2025-9954 (Missing Authorization vulnerability in Drupal
Acquia DAM allows F
CVE-2025-62257 (Password enumeration vulnerability in Liferay Portal 7.4.0
through 7.4 ...)
NOT-FOR-US: Liferay
CVE-2025-61959 (Prior to September 19, 2025, the Hospital Manager Backend
Services ret ...)
- TODO: check
+ NOT-FOR-US: Hospital Manager Backend Services
CVE-2025-54549 (Cryptographic validation of upgrade images could be
circumventing by d ...)
NOT-FOR-US: Arista Networks
CVE-2025-54548 (On affected platforms, restricted users could view sensitive
portions ...)
@@ -15,7 +15,7 @@ CVE-2025-54546 (On affected platforms, restricted users could
use SSH port forwa
CVE-2025-54545 (On affected platforms, a restricted user could break out of
the CLI sa ...)
NOT-FOR-US: Arista Networks
CVE-2025-54459 (Prior to September 19, 2025, the Hospital Manager Backend
Services exp ...)
- TODO: check
+ NOT-FOR-US: Hospital Manager Backend Services
CVE-2025-12475 (The Blocksy Companion plugin for WordPress is vulnerable to
Stored Cro ...)
NOT-FOR-US: WordPress plugin
CVE-2025-12466 (Authentication Bypass Using an Alternate Path or Channel
vulnerability ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/40d5b06fed02124da535ea8a61477d8c7dd49938
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/40d5b06fed02124da535ea8a61477d8c7dd49938
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
