[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Aug 4 04:34:46 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0b773012 by Salvatore Bonaccorso at 2025-08-04T05:34:11+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,27 +1,27 @@
 CVE-2025-8513 (A vulnerability, which was classified as problematic, was found in Cai ...)
-	TODO: check
+	NOT-FOR-US: Caixin News App
 CVE-2025-8512 (A vulnerability, which was classified as problematic, has been found i ...)
-	TODO: check
+	NOT-FOR-US: TVB Big Big Shop App
 CVE-2025-8511 (A vulnerability classified as problematic was found in Portabilis i-Di ...)
-	TODO: check
+	NOT-FOR-US: Portabilis
 CVE-2025-8510 (A vulnerability classified as problematic has been found in Portabilis ...)
-	TODO: check
+	NOT-FOR-US: Portabilis
 CVE-2025-8509 (A vulnerability was found in Portabilis i-Educar 2.9. It has been rate ...)
-	TODO: check
+	NOT-FOR-US: Portabilis
 CVE-2025-8508 (A vulnerability was found in Portabilis i-Educar 2.9. It has been decl ...)
-	TODO: check
+	NOT-FOR-US: Portabilis
 CVE-2025-8507 (A vulnerability was found in Portabilis i-Educar 2.9. It has been clas ...)
-	TODO: check
+	NOT-FOR-US: Portabilis
 CVE-2025-8506 (A vulnerability was found in 495300897 wx-shop up to de1b6633136869577 ...)
-	TODO: check
+	NOT-FOR-US: wx-shop
 CVE-2025-54956 (The gh package before 1.5.0 for R delivers an HTTP response in a data  ...)
 	TODO: check
 CVE-2024-52279 (Improper Input Validation vulnerability in Apache Zeppelin. The fix fo ...)
-	TODO: check
+	NOT-FOR-US: Apache Zeppelin
 CVE-2024-51775 (Missing Origin Validation in WebSockets vulnerability in Apache Zeppel ...)
-	TODO: check
+	NOT-FOR-US: Apache Zeppelin
 CVE-2024-41177 (Incomplete Blacklist to Cross-Site Scripting vulnerability in Apache Z ...)
-	TODO: check
+	NOT-FOR-US: Apache Zeppelin
 CVE-2025-8505 (A vulnerability has been found in 495300897 wx-shop up to de1b66331368 ...)
 	NOT-FOR-US: wx-shop
 CVE-2025-8504 (A vulnerability, which was classified as critical, was found in code-p ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0b7730123ecc5d15585a4ea711e0e173f414258c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0b7730123ecc5d15585a4ea711e0e173f414258c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250804/1693f786/attachment.htm>

More information about the debian-security-tracker-commits mailing list