Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
bf58f8da by Salvatore Bonaccorso at 2025-04-06T10:37:03+02:00
Process some more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -15,15 +15,15 @@ CVE-2025-3307 (A vulnerability was found in code-projects
Blood Bank Management
CVE-2025-3306 (A vulnerability was found in code-projects Blood Bank
Management Syste ...)
NOT-FOR-US: code-projects
CVE-2025-3305 (A vulnerability has been found in 1902756969/code-projects
IKUN_Librar ...)
- TODO: check
+ NOT-FOR-US: code-projects
CVE-2025-3304 (A vulnerability, which was classified as critical, was found in
code-p ...)
NOT-FOR-US: code-projects
CVE-2025-3303 (A vulnerability, which was classified as critical, has been
found in c ...)
NOT-FOR-US: code-projects
CVE-2025-32370 (Kentico Xperience before 13.0.178 has a specific set of
allowed Conten ...)
- TODO: check
+ NOT-FOR-US: Kentico Xperience
CVE-2025-32369 (Kentico Xperience before 13.0.181 allows authenticated users
to distri ...)
- TODO: check
+ NOT-FOR-US: Kentico Xperience
CVE-2025-32366 (In ConnMan through 1.44, parse_rr in dnsproxy.c has a memcpy
length th ...)
TODO: check
CVE-2025-32365 (Poppler before 25.04.0 allows crafted input files to trigger
out-of-bo ...)
@@ -45,7 +45,7 @@ CVE-2024-58133 (In chainmaker-go (aka ChainMaker) before
2.4.0, when making freq
CVE-2024-58132 (In chainmaker-go (aka ChainMaker) before 2.3.6, multiple
updates to a ...)
TODO: check
CVE-2024-58131 (FISCO BCOS 3.11.0 has an issue with synchronization of the
transaction ...)
- TODO: check
+ NOT-FOR-US: FISCO BCOS
CVE-2025-3299 (A vulnerability was found in PHPGurukul Men Salon Management
System 1. ...)
NOT-FOR-US: PHPGurukul
CVE-2025-3298 (A vulnerability has been found in SourceCodester Online Eyewear
Shop 1 ...)
@@ -100,7 +100,7 @@ CVE-2024-13776 (The ZoomSounds - WordPress Wave Audio
Player with Playlist plugi
CVE-2024-13604 (The KB Support \u2013 Customer Support Ticket & Helpdesk
Plugin, Knowl ...)
NOT-FOR-US: WordPress plugin
CVE-2021-47667 (An OS command injection vulnerability in lib/NSSDropoff.php in
ZendTo ...)
- TODO: check
+ NOT-FOR-US: ZendTo
CVE-2025-3267 (A vulnerability, which was classified as critical, was found in
qinguo ...)
NOT-FOR-US: qinguoyi TinyWebServer
CVE-2025-3266 (A vulnerability, which was classified as critical, has been
found in q ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bf58f8da9d69610727ec5b04390ff8cd3a630925
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bf58f8da9d69610727ec5b04390ff8cd3a630925
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
