[Git][security-tracker-team/security-tracker][master] Process some more NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Dec 17 08:27:20 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
28ef7a8a by Salvatore Bonaccorso at 2025-12-17T09:26:55+01:00
Process some more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,7 +1,7 @@
CVE-2025-68274 (SIPGO is a library for writing SIP services in the GO language. Starti ...)
- TODO: check
+ NOT-FOR-US: SIPGO
CVE-2025-64700 (Cross-site request forgery vulnerability exists in GROWI v7.3.3 and ea ...)
- TODO: check
+ NOT-FOR-US: GROWI
CVE-2025-64520 (GLPI is a free asset and IT management software package. Starting in v ...)
- glpi <removed>
NOTE: https://github.com/glpi-project/glpi/security/advisories/GHSA-62p9-prpq-j62q
@@ -15,7 +15,7 @@ CVE-2025-53618 (An out-of-bounds read vulnerability exists in the JPEGBITSCodec:
- gdcm <unfixed>
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2025-2210
CVE-2025-53524 (Fuji Electric Monitouch V-SFT-6 is vulnerable to an out-of-bounds writ ...)
- TODO: check
+ NOT-FOR-US: Fuji Electric
CVE-2025-52582 (An out-of-bounds read vulnerability exists in the Overlay::GrabOverlay ...)
- gdcm <unfixed>
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2025-2211
@@ -23,7 +23,7 @@ CVE-2025-48429 (An out-of-bounds read vulnerability exists in the RLECodec::Deco
- gdcm <unfixed>
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2025-2214
CVE-2025-34288 (Nagios XI versions prior to 2026R1.1 arevulnerable to local privilege ...)
- TODO: check
+ NOT-FOR-US: Nagios XI
CVE-2025-14817 (The component com.transsion.tranfacmode.entrance.main.MainActivity in ...)
NOT-FOR-US: TECNO Mobile
CVE-2025-14801 (A security vulnerability has been detected in xiweicheng TMS up to 2.2 ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/28ef7a8af8614a900936c1c22992d7e22e604aef
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/28ef7a8af8614a900936c1c22992d7e22e604aef
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251217/0bea925c/attachment.htm>
More information about the debian-security-tracker-commits
mailing list