Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f59943fc by security tracker role at 2025-11-28T20:13:37+00:00
automatic NOT-FOR-US entries update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -7,15 +7,15 @@ CVE-2025-51734 (Cross-site scripting (XSS) vulnerability in
HCL Technologies Ltd
CVE-2025-51733 (Cross-Site Request Forgery (CSRF) vulnerability in HCL
Technologies Lt ...)
TODO: check
CVE-2025-13683 (Exposure of credentials in unintended requests in Devolutions
Server, ...)
- TODO: check
+ NOT-FOR-US: Devolutions
CVE-2025-12638 (Keras version 3.11.3 is affected by a path traversal
vulnerability in ...)
TODO: check
CVE-2025-12183 (Out-of-bounds memory operations in org.lz4:lz4-java 1.8.0 and
earlier ...)
- TODO: check
+ NOT-FOR-US: Sonatype
CVE-2025-12143 (Stack-based Buffer Overflow vulnerability in ABB Terra AC
wallbox.This ...)
- TODO: check
+ NOT-FOR-US: ABB group
CVE-2025-11156 (Netskope was notified about a potential gap in its agent (NS
Client) o ...)
- TODO: check
+ NOT-FOR-US: Netskope
CVE-2025-66386 (app/Model/EventReport.php in MISP before 2.5.27 allows path
traversal ...)
NOT-FOR-US: MISP
CVE-2025-66385 (UsersController::edit in Cerebrate before 1.30 allows an
authenticated ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f59943fcc2c4c0634ddec8bfc01e8ded0c2c92b9
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f59943fcc2c4c0634ddec8bfc01e8ded0c2c92b9
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
