[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Dec 12 08:55:16 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f4acf605 by Salvatore Bonaccorso at 2025-12-12T09:54:45+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -41,27 +41,27 @@ CVE-2025-66585 (In AzeoTech DAQFactory release 20.7 (Build 2555), a Use After Fr
 CVE-2025-66584 (In AzeoTech DAQFactory release 20.7 (Build 2555), a Stack-Based Buffer ...)
 	NOT-FOR-US: AzeoTech DAQFactory
 CVE-2025-66492 (Masa CMS is an open source Enterprise Content Management platform. Ver ...)
-	TODO: check
+	NOT-FOR-US: Masa CMS
 CVE-2025-66452 (LibreChat is a ChatGPT clone with additional features. In versions 0.8 ...)
-	TODO: check
+	NOT-FOR-US: LibreChat
 CVE-2025-66451 (LibreChat is a ChatGPT clone with additional features. In versions 0.8 ...)
-	TODO: check
+	NOT-FOR-US: LibreChat
 CVE-2025-66450 (LibreChat is a ChatGPT clone with additional features. In versions 0.8 ...)
-	TODO: check
+	NOT-FOR-US: LibreChat
 CVE-2025-66446 (MaxKB is an open-source AI assistant for enterprise. Versions 2.3.1 an ...)
-	TODO: check
+	NOT-FOR-US: MaxKB
 CVE-2025-66429 (An issue was discovered in cPanel 110 through 132. A directory travers ...)
-	TODO: check
+	NOT-FOR-US: cPanel
 CVE-2025-66419 (MaxKB is an open-source AI assistant for enterprise. In versions 2.3.1 ...)
-	TODO: check
+	NOT-FOR-US: MaxKB
 CVE-2025-66284 (Stored cross-site scripting vulnerabilities exist in GroupSession Free ...)
-	TODO: check
+	NOT-FOR-US: GroupSession
 CVE-2025-65120 (Reflected cross-site scripting vulnerability exists in GroupSession Fr ...)
-	TODO: check
+	NOT-FOR-US: GroupSession
 CVE-2025-64781 (In GroupSession Free edition prior to ver5.7.1, GroupSession byCloud p ...)
-	TODO: check
+	NOT-FOR-US: GroupSession
 CVE-2025-64721 (Sandboxie is a sandbox-based isolation software for 32-bit and 64-bit  ...)
-	TODO: check
+	NOT-FOR-US: Sandboxie
 CVE-2025-64702 (quic-go is an implementation of the QUIC protocol in Go. Versions 0.56 ...)
 	TODO: check
 CVE-2025-62192 (SQL Injection vulnerability exists in GroupSession Free edition prior  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f4acf60518d90a7008a48b034cb09ef026111135

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f4acf60518d90a7008a48b034cb09ef026111135
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251212/2ef8124f/attachment.htm>

More information about the debian-security-tracker-commits mailing list