[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Sat Aug 9 21:13:56 BST 2025


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
59a8b291 by security tracker role at 2025-08-09T20:13:49+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -11,11 +11,11 @@ CVE-2025-8764 (A vulnerability classified as critical has been found in linlinja
 CVE-2025-8763 (A vulnerability was found in Ruijie EG306MG 3.0(1)B11P309. It has been ...)
 	TODO: check
 CVE-2025-8759 (A vulnerability was found in TRENDnet TN-200 1.02b02. It has been decl ...)
-	TODO: check
+	NOT-FOR-US: TRENDnet
 CVE-2025-8758 (A vulnerability was found in TRENDnet TEW-822DRE FW103B02. It has been ...)
-	TODO: check
+	NOT-FOR-US: TRENDnet
 CVE-2025-8757 (A vulnerability was found in TRENDnet TV-IP110WN 1.2.2 and classified  ...)
-	TODO: check
+	NOT-FOR-US: TRENDnet
 CVE-2025-8756 (A vulnerability has been found in TDuckCloud tduck-platform up to 5.1  ...)
 	TODO: check
 CVE-2025-8755 (A vulnerability was found in macrozheng mall up to 1.0.3 and classifie ...)
@@ -45,11 +45,11 @@ CVE-2025-8740 (A vulnerability was found in zhenfeng13 My-Blog up to 1.0.0. It h
 CVE-2025-8739 (A vulnerability was found in zhenfeng13 My-Blog up to 1.0.0 and classi ...)
 	TODO: check
 CVE-2025-7726 (The The7 theme for WordPress is vulnerable to Stored Cross-Site Script ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-7020 (An incorrect encryption implementation vulnerability exists in the sys ...)
 	TODO: check
 CVE-2025-6573 (Kernel software installed and running inside an untrusted/rich executi ...)
-	TODO: check
+	NOT-FOR-US: Imagination Technologies
 CVE-2025-55188 (7-Zip before 25.01 does not always properly handle symbolic links duri ...)
 	TODO: check
 CVE-2025-55152 (oak is a middleware framework for Deno's native HTTP server, Deno Depl ...)
@@ -83,11 +83,11 @@ CVE-2025-54888 (Fedify is a TypeScript library for building federated server app
 CVE-2025-54417 (Craft is a platform for creating digital experiences. Versions 4.13.8  ...)
 	TODO: check
 CVE-2025-4655 (SSRF vulnerability in FreeMarker templates in Liferay Portal 7.4.0 thr ...)
-	TODO: check
+	NOT-FOR-US: Liferay
 CVE-2025-4581 (Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q1.0 thro ...)
-	TODO: check
+	NOT-FOR-US: Liferay
 CVE-2025-46709 (Possible memory leak or kernel exceptions caused by reading kernel hea ...)
-	TODO: check
+	NOT-FOR-US: Imagination Technologies
 CVE-2024-58238 (In the Linux kernel, the following vulnerability has been resolved:  B ...)
 	- linux 6.9.7-1
 	NOTE: https://git.kernel.org/linus/e4db90e4eb8d5487098712ffb1048f3fa6d25e98 (6.9-rc1)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/59a8b29155a7eb5d2fe155791c4541179fa2bb19

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/59a8b29155a7eb5d2fe155791c4541179fa2bb19
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250809/334fd86a/attachment.htm>
