Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e65559a8 by Salvatore Bonaccorso at 2025-10-30T21:43:40+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -78,19 +78,19 @@ CVE-2025-54470 (This vulnerability affects NeuVector
deployments only when the R
CVE-2025-54469 (A vulnerability was identified in NeuVector, where the
enforcer used e ...)
NOT-FOR-US: NeuVector
CVE-2025-53883 (A Improper Neutralization of Script-Related HTML Tags in a Web
Page (B ...)
- TODO: check
+ NOT-FOR-US: SUSE Manager Server
CVE-2025-53880 (A Path Traversal vulnerability in the tftpsync/add and
tftpsync/delete ...)
- TODO: check
+ NOT-FOR-US: susemanager-tftpsync-recv
CVE-2025-52180 (Cross-site scripting (XSS) vulnerability in Zucchetti Ad Hoc
Infinity ...)
- TODO: check
+ NOT-FOR-US: Zucchetti Ad Hoc Infinity
CVE-2025-52179 (Cross-site scripting (XSS) vulnerability in Zucchetti Ad Hoc
Revolutio ...)
- TODO: check
+ NOT-FOR-US: Zucchetti Ad Hoc Revolution
CVE-2025-50739 (iib0011 omni-tools v0.4.0 is vulnerable to remote code
execution via u ...)
- TODO: check
+ NOT-FOR-US: iib0011 omni-tools
CVE-2025-50736 (An open redirect vulnerability exists in Byaidu
PDFMathTranslate v1.9. ...)
- TODO: check
+ NOT-FOR-US: Byaidu PDFMathTranslate
CVE-2025-50574 (Cross-site scripting (XSS) vulnerability in blog-details.php
in Hiruna ...)
- TODO: check
+ NOT-FOR-US: Hiruna Gallage's Glamour Salon Management System
CVE-2025-46423 (Dell Unity, version(s) 5.5 and prior, contain(s) an Improper
Neutraliz ...)
NOT-FOR-US: Dell / EMC
CVE-2025-46422 (Dell Unity, version(s) 5.5 and prior, contain(s) an Improper
Neutraliz ...)
@@ -106,7 +106,7 @@ CVE-2025-43940 (Dell Unity, version(s) 5.5 and Prior,
contain(s) an Improper Neu
CVE-2025-43939 (Dell Unity, version(s) 5.4 and prior, contain(s) an Improper
Neutraliz ...)
NOT-FOR-US: Dell / EMC
CVE-2025-43027 (A critical severity vulnerability has been identified in the
ALPR Mana ...)
- TODO: check
+ NOT-FOR-US: Security Center
CVE-2025-3356 (IBM Tivoli Monitoring 6.3.0.7 through 6.3.0.7 Service Pack 21
could al ...)
NOT-FOR-US: IBM
CVE-2025-3355 (IBM Tivoli Monitoring 6.3.0.7 through 6.3.0.7 Service Pack 21
could al ...)
@@ -128,9 +128,9 @@ CVE-2025-12060 (The keras.utils.get_file API in Keras, when
used with the extrac
CVE-2025-11998 (The following HP Card Readers B Models(X3D03B & Y7C05B) are
potentiall ...)
NOT-FOR-US: HP
CVE-2025-10348 (URVE Smart Office is vulnerable to Stored XSS in report
problem functi ...)
- TODO: check
+ NOT-FOR-US: URVE Smart Office
CVE-2025-10317 (Quick.Cart is vulnerable to Cross-Site Request Forgery in
product crea ...)
- TODO: check
+ NOT-FOR-US: Quick.Cart
CVE-2025-40105 (In the Linux kernel, the following vulnerability has been
resolved: v ...)
- linux <unfixed>
NOTE:
https://git.kernel.org/linus/56094ad3eaa21e6621396cc33811d8f72847a834 (6.18-rc2)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e65559a877bf28931d7490d0ab5b70ac4b1eb41d
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e65559a877bf28931d7490d0ab5b70ac4b1eb41d
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
