[Git][security-tracker-team/security-tracker][master] Process some more NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Apr 6 09:37:28 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
bf58f8da by Salvatore Bonaccorso at 2025-04-06T10:37:03+02:00
Process some more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -15,15 +15,15 @@ CVE-2025-3307 (A vulnerability was found in code-projects Blood Bank Management
CVE-2025-3306 (A vulnerability was found in code-projects Blood Bank Management Syste ...)
NOT-FOR-US: code-projects
CVE-2025-3305 (A vulnerability has been found in 1902756969/code-projects IKUN_Librar ...)
- TODO: check
+ NOT-FOR-US: code-projects
CVE-2025-3304 (A vulnerability, which was classified as critical, was found in code-p ...)
NOT-FOR-US: code-projects
CVE-2025-3303 (A vulnerability, which was classified as critical, has been found in c ...)
NOT-FOR-US: code-projects
CVE-2025-32370 (Kentico Xperience before 13.0.178 has a specific set of allowed Conten ...)
- TODO: check
+ NOT-FOR-US: Kentico Xperience
CVE-2025-32369 (Kentico Xperience before 13.0.181 allows authenticated users to distri ...)
- TODO: check
+ NOT-FOR-US: Kentico Xperience
CVE-2025-32366 (In ConnMan through 1.44, parse_rr in dnsproxy.c has a memcpy length th ...)
TODO: check
CVE-2025-32365 (Poppler before 25.04.0 allows crafted input files to trigger out-of-bo ...)
@@ -45,7 +45,7 @@ CVE-2024-58133 (In chainmaker-go (aka ChainMaker) before 2.4.0, when making freq
CVE-2024-58132 (In chainmaker-go (aka ChainMaker) before 2.3.6, multiple updates to a ...)
TODO: check
CVE-2024-58131 (FISCO BCOS 3.11.0 has an issue with synchronization of the transaction ...)
- TODO: check
+ NOT-FOR-US: FISCO BCOS
CVE-2025-3299 (A vulnerability was found in PHPGurukul Men Salon Management System 1. ...)
NOT-FOR-US: PHPGurukul
CVE-2025-3298 (A vulnerability has been found in SourceCodester Online Eyewear Shop 1 ...)
@@ -100,7 +100,7 @@ CVE-2024-13776 (The ZoomSounds - WordPress Wave Audio Player with Playlist plugi
CVE-2024-13604 (The KB Support \u2013 Customer Support Ticket & Helpdesk Plugin, Knowl ...)
NOT-FOR-US: WordPress plugin
CVE-2021-47667 (An OS command injection vulnerability in lib/NSSDropoff.php in ZendTo ...)
- TODO: check
+ NOT-FOR-US: ZendTo
CVE-2025-3267 (A vulnerability, which was classified as critical, was found in qinguo ...)
NOT-FOR-US: qinguoyi TinyWebServer
CVE-2025-3266 (A vulnerability, which was classified as critical, has been found in q ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bf58f8da9d69610727ec5b04390ff8cd3a630925
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bf58f8da9d69610727ec5b04390ff8cd3a630925
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250406/4816c493/attachment.htm>
More information about the debian-security-tracker-commits
mailing list