[Git][security-tracker-team/security-tracker][master] auto-nfu: Add more Oracle products
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Wed Apr 16 14:21:42 BST 2025
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
88da9165 by Moritz Muehlenhoff at 2025-04-16T15:21:23+02:00
auto-nfu: Add more Oracle products
- - - - -
2 changed files:
- data/CVE/list
- data/packages/nfu.yaml
Changes:
=====================================
data/CVE/list
=====================================
@@ -333,7 +333,7 @@ CVE-2025-21584 (Vulnerability in the MySQL Server product of Oracle MySQL (compo
CVE-2025-21583 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <not-affected> (Only affects 8.4 and later)
CVE-2025-21582 (Vulnerability in the Oracle CRM Technical Foundation product of Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2025-21581 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
CVE-2025-21580 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
@@ -341,17 +341,17 @@ CVE-2025-21580 (Vulnerability in the MySQL Server product of Oracle MySQL (compo
CVE-2025-21579 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
CVE-2025-21578 (Vulnerability in Oracle Secure Backup (component: General). Supported ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2025-21577 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
CVE-2025-21576 (Vulnerability in the Oracle Commerce Platform product of Oracle Commer ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2025-21575 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
CVE-2025-21574 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <unfixed>
CVE-2025-21573 (Vulnerability in the Oracle Financial Services Revenue Management and ...)
- TODO: check
+ NOT-FOR-US: Oracle
CVE-2025-1656 (A maliciously crafted PDF file, when linked or imported into Autodesk ...)
NOT-FOR-US: Autodesk
CVE-2025-1277 (A maliciously crafted PDF file, when parsed through Autodesk applicati ...)
=====================================
data/packages/nfu.yaml
=====================================
@@ -179,18 +179,22 @@
- product: Oracle Applications Framework
- product: Oracle Applications Technology Stack
- product: Oracle BI Publisher
+ - product: Oracle CRM Technical Foundation
+ - product: Oracle Commerce Platform
- product: Oracle Common Applications
- product: Oracle Communications Order and Service Management
- product: Oracle Configurator
- product: Oracle Database Server
+ - product: Oracle Financial Services Revenue Management and Billing
- product: Oracle Hospitality Simphony
- - product: Oracle iSupplier Portal
- product: Oracle Scripting
+ - product: Oracle Secure Backup
- product: Oracle Smart View for Office
- product: Oracle Solaris
- product: Oracle Teleservice
- product: Oracle User Management
- product: Oracle iStore
+ - product: Oracle iSupplier Portal
- product: PeopleSoft Enterprise CC Common Application Objects
- product: PeopleSoft Enterprise HCM Talent Acquisition Manager
- product: PeopleSoft Enterprise PeopleTools
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/88da9165de717ad3ecee764d131252162d51fdc8
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/88da9165de717ad3ecee764d131252162d51fdc8
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250416/b3687987/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list