[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun Apr 27 21:28:13 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f3089485 by Salvatore Bonaccorso at 2025-04-27T22:27:45+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,27 +3,27 @@ CVE-2025-46688 (quickjs-ng through 0.9.0 has an incorrect size calculation in JS
 CVE-2025-46687 (quickjs-ng through 0.9.0 has a missing length check in JS_ReadString f ...)
 	TODO: check
 CVE-2025-46657 (Karaz Karazal through 2025-04-14 allows reflected XSS via the lang par ...)
-	TODO: check
+	NOT-FOR-US: Karaz Karazal
 CVE-2025-3984 (A vulnerability was found in Apereo CAS 5.2.6 and classified as critic ...)
-	TODO: check
+	NOT-FOR-US: Apereo CAS
 CVE-2025-3983 (A vulnerability has been found in AMTT Hotel Broadband Operation Syste ...)
-	TODO: check
+	NOT-FOR-US: AMTT Hotel Broadband Operation System
 CVE-2025-3982 (A vulnerability, which was classified as problematic, was found in nor ...)
-	TODO: check
+	NOT-FOR-US: nortikin Sverchok
 CVE-2025-3981 (A vulnerability, which was classified as problematic, has been found i ...)
-	TODO: check
+	NOT-FOR-US: wowjoy Internet Doctor Workstation System
 CVE-2025-3980 (A vulnerability classified as problematic was found in wowjoy \u6d59\u ...)
-	TODO: check
+	NOT-FOR-US: wowjoy Internet Doctor Workstation System
 CVE-2025-3979 (A vulnerability classified as problematic has been found in dazhouda l ...)
-	TODO: check
+	NOT-FOR-US: dazhouda lecms
 CVE-2025-3978 (A vulnerability was found in dazhouda lecms 3.0.3. It has been rated a ...)
-	TODO: check
+	NOT-FOR-US: dazhouda lecms
 CVE-2025-3977 (A vulnerability was found in iteachyou Dreamer CMS up to 4.1.3. It has ...)
-	TODO: check
+	NOT-FOR-US: iteachyou Dreamer CMS
 CVE-2025-3976 (A vulnerability was found in PHPGurukul COVID19 Testing Management Sys ...)
 	NOT-FOR-US: PHPGurukul
 CVE-2025-3975 (A vulnerability was found in ScriptAndTools eCommerce-website-in-PHP 3 ...)
-	TODO: check
+	NOT-FOR-US: ScriptAndTools eCommerce-website-in-PHP
 CVE-2025-3974 (A vulnerability has been found in PHPGurukul COVID19 Testing Managemen ...)
 	NOT-FOR-US: PHPGurukul
 CVE-2025-3973 (A vulnerability, which was classified as critical, was found in PHPGur ...)
@@ -33,21 +33,21 @@ CVE-2025-3972 (A vulnerability, which was classified as critical, has been found
 CVE-2025-3971 (A vulnerability classified as critical was found in PHPGurukul COVID19 ...)
 	NOT-FOR-US: PHPGurukul
 CVE-2025-3970 (A vulnerability classified as problematic has been found in baseweb JS ...)
-	TODO: check
+	NOT-FOR-US: baseweb JSite
 CVE-2025-3969 (A vulnerability was found in codeprojects News Publishing Site Dashboa ...)
 	NOT-FOR-US: code-projects
 CVE-2025-3968 (A vulnerability was found in codeprojects News Publishing Site Dashboa ...)
 	NOT-FOR-US: code-projects
 CVE-2025-3967 (A vulnerability was found in itwanger paicoding 1.0.3. It has been cla ...)
-	TODO: check
+	NOT-FOR-US: itwanger paicoding
 CVE-2025-3966 (A vulnerability was found in itwanger paicoding 1.0.3 and classified a ...)
-	TODO: check
+	NOT-FOR-US: itwanger paicoding
 CVE-2025-3965 (A vulnerability has been found in itwanger paicoding 1.0.3 and classif ...)
-	TODO: check
+	NOT-FOR-US: itwanger paicoding
 CVE-2025-3964 (A vulnerability, which was classified as problematic, was found in wit ...)
-	TODO: check
+	NOT-FOR-US: withstars Books-Management-System
 CVE-2025-3886 (An issue in CatoNetworks CatoClient before v.5.8.0 allows attackers to ...)
-	TODO: check
+	NOT-FOR-US: CatoNetworks CatoClient
 CVE-2025-46675 (In NASA CryptoLib before 1.3.2, the key state is not checked before us ...)
 	NOT-FOR-US: NASA CryptoLib
 CVE-2025-46674 (NASA CryptoLib before 1.3.2 uses Extended Procedures that are a Work i ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f30894854ed2fad0b8aaaedf0e555c0a3456b725

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f30894854ed2fad0b8aaaedf0e555c0a3456b725
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250427/ee13871b/attachment.htm>

More information about the debian-security-tracker-commits mailing list