[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Aug 23 07:41:47 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ab3b889d by Salvatore Bonaccorso at 2025-08-23T08:41:22+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -139,7 +139,7 @@ CVE-2025-50859 (Reflected Cross-Site Scripting in the Change Template function i
 CVE-2025-50858 (Reflected Cross-Site Scripting in the List MySQL Databases function in ...)
 	NOT-FOR-US: Easy Hosting Control Panel (EHCP)
 CVE-2025-50733 (NextChat contains a cross-site scripting (XSS) vulnerability in the HT ...)
-	TODO: check
+	NOT-FOR-US: NextChat
 CVE-2025-50691 (MCSManager 10.5.3 daemon process runs as a root account by default, an ...)
 	NOT-FOR-US: MCSManager
 CVE-2025-50674 (An issue was discovered in the changePassword method in file /usr/shar ...)
@@ -183,9 +183,9 @@ CVE-2024-50645 (MallChat v1.0-SNAPSHOT has an authentication bypass vulnerabilit
 CVE-2024-50644 (zhisheng17 blog 3.0.1-SNAPSHOT has an authentication bypass vulnerabil ...)
 	NOT-FOR-US: zhisheng17 blog
 CVE-2024-48988 (SQL Injection vulnerability in Apache StreamPark.  This issue affects  ...)
-	TODO: check
+	NOT-FOR-US: Apache software not packaged in Debian
 CVE-2009-10006 (UFO: Alien Invasion versions up to and including 2.2.1 contain a buffe ...)
-	TODO: check
+	NOT-FOR-US: UFO
 CVE-2025-XXXX [qemu: stop using C (Credentials) flag for binfmt_misc registration]
 	- qemu 1:10.0.3+ds-3 (bug #1111844)
 	[trixie] - qemu 1:10.0.2+ds-2+deb13u1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ab3b889d636d7deb4ed64fe82f7b3fc870444e3d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ab3b889d636d7deb4ed64fe82f7b3fc870444e3d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250823/c16ce107/attachment.htm>

More information about the debian-security-tracker-commits mailing list