[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
cebf2e99 by Salvatore Bonaccorso at 2025-12-12T09:43:29+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,17 +1,17 @@
 CVE-2025-67780 (SpaceX Starlink Dish devices with firmware 2024.12.04.mr46620 (e.g., o ...)
-	TODO: check
+	NOT-FOR-US: SpaceX Starlink Dish devices
 CVE-2025-67779 (It was found that the fix addressing CVE-2025-55184 in React Server Co ...)
-	TODO: check
+	NOT-FOR-US: React Server Components
 CVE-2025-67737 (AzuraCast is a self-hosted, all-in-one web radio management suite. Ver ...)
-	TODO: check
+	NOT-FOR-US: AzuraCast
 CVE-2025-67731 (Servify Express is a Node.js package to start an Express server and lo ...)
-	TODO: check
+	NOT-FOR-US: Servify Express Node.js package
 CVE-2025-67730 (Frappe Learning Management System (LMS) is a learning system that help ...)
-	TODO: check
+	NOT-FOR-US: Frappe Learning Management System (LMS)
 CVE-2025-67728 (Fireshare facilitates self-hosted media and link sharing. Versions 1.2 ...)
-	TODO: check
+	NOT-FOR-US: Fireshare
 CVE-2025-67727 (Parse Server is an open source backend that can be deployed to any inf ...)
-	TODO: check
+	NOT-FOR-US: Parse Server
 CVE-2025-67726 (Tornado is a Python web framework and asynchronous networking library. ...)
 	TODO: check
 CVE-2025-67725 (Tornado is a Python web framework and asynchronous networking library. ...)
@@ -19,21 +19,21 @@ CVE-2025-67725 (Tornado is a Python web framework and asynchronous networking li
 CVE-2025-67724 (Tornado is a Python web framework and asynchronous networking library. ...)
 	TODO: check
 CVE-2025-67508 (gardenctl is a command-line client for the Gardener which configures a ...)
-	TODO: check
+	NOT-FOR-US: Gardener
 CVE-2025-66590 (In AzeoTech DAQFactory release 20.7 (Build 2555), an Out-of-bounds Wri ...)
-	TODO: check
+	NOT-FOR-US: AzeoTech DAQFactory
 CVE-2025-66589 (In AzeoTech DAQFactory release 20.7 (Build 2555), an Out-of-bounds Rea ...)
-	TODO: check
+	NOT-FOR-US: AzeoTech DAQFactory
 CVE-2025-66588 (In AzeoTech DAQFactory release 20.7 (Build 2555), an Access of Uniniti ...)
-	TODO: check
+	NOT-FOR-US: AzeoTech DAQFactory
 CVE-2025-66587 (In AzeoTech DAQFactory release 20.7 (Build 2555), the affected applica ...)
-	TODO: check
+	NOT-FOR-US: AzeoTech DAQFactory
 CVE-2025-66586 (In AzeoTech DAQFactory release 20.7 (Build 2555), an Access of Resourc ...)
-	TODO: check
+	NOT-FOR-US: AzeoTech DAQFactory
 CVE-2025-66585 (In AzeoTech DAQFactory release 20.7 (Build 2555), a Use After Free vul ...)
-	TODO: check
+	NOT-FOR-US: AzeoTech DAQFactory
 CVE-2025-66584 (In AzeoTech DAQFactory release 20.7 (Build 2555), a Stack-Based Buffer ...)
-	TODO: check
+	NOT-FOR-US: AzeoTech DAQFactory
 CVE-2025-66492 (Masa CMS is an open source Enterprise Content Management platform. Ver ...)
 	TODO: check
 CVE-2025-66452 (LibreChat is a ChatGPT clone with additional features. In versions 0.8 ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cebf2e991f95fc4413105a40abe5f766d9c26528

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cebf2e991f95fc4413105a40abe5f766d9c26528
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251212/5ac60d43/attachment-0001.htm>