[Git][security-tracker-team/security-tracker][master] bugnums

Moritz Muehlenhoff (@jmm) jmm at debian.org
Mon Dec 15 19:28:53 GMT 2025 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
394eb81c by Moritz Muehlenhoff at 2025-12-15T20:28:41+01:00
bugnums

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5782,9 +5782,8 @@ CVE-2025-12084 (When building nested elements using xml.dom.minidom methods such
 	NOTE: Fixed by: https://github.com/python/cpython/commit/027f21e417b26eed4505ac2db101a4352b7c51a0 (v3.14.2)
 	NOTE: Fixed by: https://github.com/python/cpython/commit/ddcd2acd85d891a53e281c773b3093f9db953964 (v3.13.11)
 CVE-2024-3884 (A flaw was found in Undertow that can cause remote denial of service a ...)
-	- undertow <undetermined>
+	- undertow <unfixed> (bug #1123001)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2275287
-	TODO: check, RH bug not public
 CVE-2024-32643 (Masa CMS is an open source Enterprise Content Management platform. Pri ...)
 	NOT-FOR-US: Masa CMS
 CVE-2024-32642 (Masa CMS is an open source Enterprise Content Management platform. Pri ...)
@@ -5971,9 +5970,8 @@ CVE-2025-41742 (Sprecher Automations SPRECON-E-C, SPRECON-E-P, SPRECON-E-T3is vu
 CVE-2025-41086 (Vulnerability in the access control system of the GAMS licensing syste ...)
 	NOT-FOR-US: GAMS licensing system
 CVE-2025-41066 (Horde Groupware v5.2.22 has a user enumeration vulnerability that allo ...)
-	- php-horde-groupware <undetermined>
+	- php-horde-groupware <unfixed> (bug #1123000)
 	NOTE: https://www.incibe.es/en/incibe-cert/notices/aviso/disclosure-sensitive-information-horde-groupware
-	TODO: check, light on details
 CVE-2025-41015 (User Enumeration Vulnerability in TCMAN GIM v11 version 20250304. This ...)
 	NOT-FOR-US: TCMAN GIM
 CVE-2025-41014 (User Enumeration Vulnerability in TCMAN GIM v11 version 20250304. This ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/394eb81cdbeb03291804f0f64ed839779ca61d75

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/394eb81cdbeb03291804f0f64ed839779ca61d75
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251215/222e712d/attachment.htm>

More information about the debian-security-tracker-commits mailing list