[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Apr 29 09:12:09 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
15665c9c by security tracker role at 2025-04-29T08:12:01+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,71 @@
+CVE-2025-4039 (A vulnerability was found in PHPGurukul Rail Pass Management System 1. ...)
+	TODO: check
+CVE-2025-4038 (A vulnerability was found in code-projects Train Ticket Reservation Sy ...)
+	TODO: check
+CVE-2025-4037 (A vulnerability was found in code-projects ATM Banking 1.0. It has bee ...)
+	TODO: check
+CVE-2025-46761
+	REJECTED
+CVE-2025-46760
+	REJECTED
+CVE-2025-46759
+	REJECTED
+CVE-2025-46758
+	REJECTED
+CVE-2025-46757
+	REJECTED
+CVE-2025-46756
+	REJECTED
+CVE-2025-46755
+	REJECTED
+CVE-2025-46754
+	REJECTED
+CVE-2025-46753
+	REJECTED
+CVE-2025-46343 (n8n is a workflow automation platform. Prior to version 1.90.0, n8n is ...)
+	TODO: check
+CVE-2025-46338 (Audiobookshelf is a self-hosted audiobook and podcast server. Prior to ...)
+	TODO: check
+CVE-2025-46330 (libsnowflakeclient is the Snowflake Connector for C/C++. Versions star ...)
+	TODO: check
+CVE-2025-46329 (libsnowflakeclient is the Snowflake Connector for C/C++. Versions star ...)
+	TODO: check
+CVE-2025-46328 (snowflake-connector-nodejs is a NodeJS driver for Snowflake. Versions  ...)
+	TODO: check
+CVE-2025-46327 (gosnowflake is the Snowflake Golang driver. Versions starting from 1.7 ...)
+	TODO: check
+CVE-2025-46326 (snowflake-connector-net is the Snowflake Connector for .NET. Versions  ...)
+	TODO: check
+CVE-2025-31203 (An integer overflow was addressed with improved input validation. This ...)
+	TODO: check
+CVE-2025-31202 (A null pointer dereference was addressed with improved input validatio ...)
+	TODO: check
+CVE-2025-31197 (The issue was addressed with improved checks. This issue is fixed in m ...)
+	TODO: check
+CVE-2025-30445 (A type confusion issue was addressed with improved checks. This issue  ...)
+	TODO: check
+CVE-2025-2893 (The Gutenverse \u2013 Ultimate Block Addons and Page Builder for Site  ...)
+	TODO: check
+CVE-2025-24271 (An access issue was addressed with improved access restrictions. This  ...)
+	TODO: check
+CVE-2025-24270 (This issue was addressed by removing the vulnerable code. This issue i ...)
+	TODO: check
+CVE-2025-24252 (A use-after-free issue was addressed with improved memory management.  ...)
+	TODO: check
+CVE-2025-24251 (The issue was addressed with improved checks. This issue is fixed in m ...)
+	TODO: check
+CVE-2025-24206 (An authentication issue was addressed with improved state management.  ...)
+	TODO: check
+CVE-2025-24179 (A null pointer dereference was addressed with improved input validatio ...)
+	TODO: check
+CVE-2025-0049 (When a Web User without Create permission on subfolders attempts to up ...)
+	TODO: check
+CVE-2024-12273 (The Calculated Fields Form WordPress plugin before 5.2.62 does not san ...)
+	TODO: check
+CVE-2024-11922 (Missing input validation in certain features of the Web Client of Fort ...)
+	TODO: check
+CVE-2024-10635 (Enterprise Protection contains an improper input validation vulnerabil ...)
+	TODO: check
 CVE-2025-4035
 	- libsoup3 <unfixed>
 	- libsoup2.4 <unfixed>
@@ -512741,7 +512809,7 @@ CVE-2018-13374 (A Improper Access Control in Fortinet FortiOS 6.0.2, 5.6.7 and b
 CVE-2018-13373
 	RESERVED
 CVE-2018-13372
-	RESERVED
+	REJECTED
 CVE-2018-13371 (An external control of system vulnerability in FortiOS may allow an au ...)
 	NOT-FOR-US: Fortiguard
 CVE-2018-13370
@@ -579796,7 +579864,7 @@ CVE-2017-7741 (In libsndfile before 1.0.28, an error in the "flac_buffer_copy()"
 	NOTE: 1.0.27-2 in unstable contain fix_bufferoverflows.patch meant to address this issue
 	NOTE: https://sources.debian.org/data/main/libs/libsndfile/1.0.27-2/debian/patches/fix_bufferoverflows.patch
 CVE-2017-7740
-	RESERVED
+	REJECTED
 CVE-2017-7739 (A reflected Cross-site Scripting (XSS) vulnerability in web proxy disc ...)
 	NOT-FOR-US: Fortinet FortiOS
 CVE-2017-7738 (An Information Disclosure vulnerability in Fortinet FortiOS 5.6.0 to 5 ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/15665c9c78668446e006c0e3928f5fa21e6917bc

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/15665c9c78668446e006c0e3928f5fa21e6917bc
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250429/72fe2fe8/attachment.htm>

More information about the debian-security-tracker-commits mailing list