[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Jan 3 20:18:56 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ca21ab3f by Salvatore Bonaccorso at 2025-01-03T21:18:26+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,59 +1,59 @@
 CVE-2025-21610 (Trix is a what-you-see-is-what-you-get rich text editor for everyday w ...)
-	TODO: check
+	NOT-FOR-US: Trix
 CVE-2025-21609 (SiYuan is self-hosted, open source personal knowledge management softw ...)
-	TODO: check
+	NOT-FOR-US: SiYuan
 CVE-2025-0197 (A vulnerability classified as critical was found in code-projects Poin ...)
-	TODO: check
+	NOT-FOR-US: code-projects Point of Sales and Inventory Management System
 CVE-2025-0196 (A vulnerability classified as critical has been found in code-projects ...)
-	TODO: check
+	NOT-FOR-US: code-projects Point of Sales and Inventory Management System
 CVE-2025-0195 (A vulnerability was found in code-projects Point of Sales and Inventor ...)
-	TODO: check
+	NOT-FOR-US: code-projects Point of Sales and Inventory Management System
 CVE-2024-9140 (Moxa\u2019s cellular routers, secure routers, and network security app ...)
-	TODO: check
+	NOT-FOR-US: Moxa
 CVE-2024-9138 (Moxa\u2019s cellular routers, secure routers, and network security app ...)
-	TODO: check
+	NOT-FOR-US: Moxa
 CVE-2024-5591 (IBM Jazz Foundation 7.0.2, 7.0.3, and 7.1.0 could allow a remote attac ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2024-56514 (Karmada is a Kubernetes management system that allows users to run clo ...)
 	TODO: check
 CVE-2024-56513 (Karmada is a Kubernetes management system that allows users to run clo ...)
 	TODO: check
 CVE-2024-56412 (PhpSpreadsheet is a PHP library for reading and writing spreadsheet fi ...)
-	TODO: check
+	NOT-FOR-US: PhpSpreadsheet
 CVE-2024-56411 (PhpSpreadsheet is a PHP library for reading and writing spreadsheet fi ...)
-	TODO: check
+	NOT-FOR-US: PhpSpreadsheet
 CVE-2024-56410 (PhpSpreadsheet is a PHP library for reading and writing spreadsheet fi ...)
-	TODO: check
+	NOT-FOR-US: PhpSpreadsheet
 CVE-2024-56409 (PhpSpreadsheet is a PHP library for reading and writing spreadsheet fi ...)
-	TODO: check
+	NOT-FOR-US: PhpSpreadsheet
 CVE-2024-56408 (PhpSpreadsheet is a PHP library for reading and writing spreadsheet fi ...)
-	TODO: check
+	NOT-FOR-US: PhpSpreadsheet
 CVE-2024-56366 (PhpSpreadsheet is a PHP library for reading and writing spreadsheet fi ...)
-	TODO: check
+	NOT-FOR-US: PhpSpreadsheet
 CVE-2024-56365 (PhpSpreadsheet is a PHP library for reading and writing spreadsheet fi ...)
-	TODO: check
+	NOT-FOR-US: PhpSpreadsheet
 CVE-2024-56324 (GoCD is a continuous deliver server. GoCD versions prior to 24.4.0 can ...)
-	TODO: check
+	NOT-FOR-US: GoCD
 CVE-2024-56322 (GoCD is a continuous deliver server. GoCD versions 16.7.0 through 24.4 ...)
-	TODO: check
+	NOT-FOR-US: GoCD
 CVE-2024-56321 (GoCD is a continuous deliver server. GoCD versions 18.9.0 through 24.4 ...)
-	TODO: check
+	NOT-FOR-US: GoCD
 CVE-2024-56320 (GoCD is a continuous deliver server. GoCD versions prior to 24.5.0 are ...)
-	TODO: check
+	NOT-FOR-US: GoCD
 CVE-2024-55507 (An issue in CodeAstro Complaint Management System v.1.0 allows a remot ...)
-	TODO: check
+	NOT-FOR-US: CodeAstro Complaint Management System
 CVE-2024-55078 (An arbitrary file upload vulnerability in the component /adminUser/upd ...)
-	TODO: check
+	NOT-FOR-US: WukongCRM-11.0-JAVA
 CVE-2024-48814 (SQL Injection vulnerability in Silverpeas 6.4.1 allows a remote attack ...)
-	TODO: check
+	NOT-FOR-US: Silverpeas
 CVE-2024-41780 (IBM Jazz Foundation 7.0.2, 7.0.3, and 7.1.0 could   could allow a phys ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2024-36613 (FFmpeg n6.1.1 has a vulnerability in the DXA demuxer of the libavforma ...)
 	TODO: check
 CVE-2024-35365 (FFmpeg version n6.1.1 has a double-free vulnerability in the fftools/f ...)
 	TODO: check
 CVE-2024-12132 (The WP Job Portal \u2013 A Complete Recruitment System for Company or  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-22275 (iTerm2 3.5.6 through 3.5.10 before 3.5.11 sometimes allows remote atta ...)
 	NOT-FOR-US: iTerm2
 CVE-2025-0176 (A vulnerability was found in code-projects Point of Sales and Inventor ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ca21ab3f86683ae8ea69ffcdf11973dfbd7b0932

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ca21ab3f86683ae8ea69ffcdf11973dfbd7b0932
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250103/52b7476a/attachment.htm>

More information about the debian-security-tracker-commits mailing list