[Git][security-tracker-team/security-tracker][master] 2 commits: Add new issues in galette

Fri Dec 19 20:37:01 GMT 2025


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7fac34a4 by Salvatore Bonaccorso at 2025-12-19T21:35:49+01:00
Add new issues in galette

- - - - -
c468c0f3 by Salvatore Bonaccorso at 2025-12-19T21:36:28+01:00
Adjust tracking for some older galette CVEs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -41,11 +41,11 @@ CVE-2025-65035 (pluginsGLPI's Database Inventory Plugin "manages" the Teclib' in
 CVE-2025-63665 (An issue in GT Edge AI Platform Versions before v2.0.10-dev allows att ...)
 	NOT-FOR-US: GT Edge AI Platform
 CVE-2025-58053 (Galette is a membership management web application for non profit orga ...)
-	TODO: check
+	- galette <removed>
 CVE-2025-58052 (Galette is a membership management web application for non profit orga ...)
-	TODO: check
+	- galette <removed>
 CVE-2025-53922 (Galette is a membership management web application for non profit orga ...)
-	TODO: check
+	- galette <removed>
 CVE-2025-50681 (igmpproxy 0.4 before commit 2b30c36 allows remote attackers to cause a ...)
 	- igmpproxy <unfixed>
 	NOTE: https://github.com/pali/igmpproxy/issues/97
@@ -16049,9 +16049,9 @@ CVE-2025-54335 (An issue was discovered in the GPU driver in Samsung Mobile Proc
 CVE-2025-52910 (An issue was discovered in the GPU in Samsung Mobile Processor and Wea ...)
 	NOT-FOR-US: Samsung
 CVE-2025-48884 (Galette is a membership management web application for non profit orga ...)
-	NOT-FOR-US: Galette
+	- galette <removed>
 CVE-2025-48076 (Galette is a membership management web application for non profit orga ...)
-	NOT-FOR-US: Galette
+	- galette <removed>
 CVE-2025-47776 (Mantis Bug Tracker (MantisBT) is an open source issue tracker. Due to  ...)
 	- mantis <removed>
 CVE-2025-32786 (The GLPI Inventory Plugin handles network discovery, inventory, softwa ...)
@@ -794336,7 +794336,7 @@ CVE-2012-2339 (Cross-site scripting (XSS) vulnerability in the Glossary module 6
 	NOTE: https://www.openwall.com/lists/oss-security/2012/05/11/2
 	NOT-FOR-US: Drupal Glossary
 CVE-2012-2338 (SQL injection vulnerability in includes/picture.class.php in Galette 0 ...)
-	NOT-FOR-US: Galette
+	- galette <removed>
 	NOTE: http://redmine.ulysses.fr/issues/250
 	NOTE: http://redmine.ulysses.fr/projects/galette/repository/revisions/8c13ec159ba
 	NOTE: https://www.openwall.com/lists/oss-security/2012/05/10/5



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/ed7af98c9d447fef44412ba8f4d9a9f6d0b08cbf...c468c0f3df59c769dc940a59b2e4b2402d68822c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/ed7af98c9d447fef44412ba8f4d9a9f6d0b08cbf...c468c0f3df59c769dc940a59b2e4b2402d68822c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251219/048d700f/attachment-0001.htm>
