[Git][security-tracker-team/security-tracker][master] 2 commits: auto-nfu: Add another product covered by NVIDIA CNA rule

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Dec 24 06:11:20 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9c3fe578 by Salvatore Bonaccorso at 2025-12-24T07:10:17+01:00
auto-nfu: Add another product covered by NVIDIA CNA rule

- - - - -
11a7113a by Salvatore Bonaccorso at 2025-12-24T07:10:47+01:00
Process some more NFUs

- - - - -


2 changed files:

- data/CVE/list
- data/packages/nfu.yaml


Changes:

=====================================
data/CVE/list
=====================================
@@ -51,11 +51,11 @@ CVE-2025-48863
 CVE-2025-45493 (Netgear EX8000 V1.0.0.126 is vulnerable to Command Injection via the i ...)
 	NOT-FOR-US: Netgear
 CVE-2025-33224 (NVIDIA Isaac Launchable contains a vulnerability where an attacker cou ...)
-	TODO: check
+	NOT-FOR-US: NVIDIA
 CVE-2025-33223 (NVIDIA Isaac Launchable contains a vulnerability where an attacker cou ...)
-	TODO: check
+	NOT-FOR-US: NVIDIA
 CVE-2025-33222 (NVIDIA Isaac Launchable contains a vulnerability where an attacker cou ...)
-	TODO: check
+	NOT-FOR-US: NVIDIA
 CVE-2025-29229 (linksys E5600 V1.1.0.26 is vulnerable to command injection in the func ...)
 	NOT-FOR-US: Linksys
 CVE-2025-29228 (Linksys E5600 V1.1.0.26 is vulnerable to command injection in the runt ...)


=====================================
data/packages/nfu.yaml
=====================================
@@ -450,6 +450,7 @@
       - product: DGX Spark
       - product: DLS component of NVIDIA License System
       - product: Isaac Lab
+      - product: Isaac Launchable
       - product: Megatron LM
       - product: Megatron-LM
       - product: Merlin Transformers4Rec



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/60e3a153f434c20e0e250bba3ea6446434b9098e...11a7113af7c63318f6015f9b85903a5a4d0d728c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/60e3a153f434c20e0e250bba3ea6446434b9098e...11a7113af7c63318f6015f9b85903a5a4d0d728c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251224/207062c1/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list