[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Jan 20 20:42:10 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c62a0120 by Salvatore Bonaccorso at 2025-01-20T21:40:27+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,27 +3,27 @@ CVE-2025-24337 (WriteFreely through 0.15.1, when MySQL is used, allows local use
 CVE-2025-24013 (CodeIgniter is a PHP full-stack web framework. Prior to 4.5.8, CodeIgn ...)
 	- codeigniter <itp> (bug #471583)
 CVE-2025-24010 (Vite is a frontend tooling framework for javascript. Vite allowed any  ...)
-	TODO: check
+	NOT-FOR-US: Vite
 CVE-2025-23221 (Fedify is a TypeScript library for building federated server apps powe ...)
-	TODO: check
+	NOT-FOR-US: Fedify
 CVE-2025-23220 (WeGIA is an open source web manager with a focus on the Portuguese lan ...)
-	TODO: check
+	NOT-FOR-US: WeGIA
 CVE-2025-23219 (WeGIA is an open source web manager with a focus on the Portuguese lan ...)
-	TODO: check
+	NOT-FOR-US: WeGIA
 CVE-2025-23218 (WeGIA is an open source web manager with a focus on the Portuguese lan ...)
-	TODO: check
+	NOT-FOR-US: WeGIA
 CVE-2025-23214 (Cosmos provides users the ability self-host a home server by acting as ...)
 	TODO: check
 CVE-2025-23044 (PwnDoc is a penetration test report generator. There is no CSRF protec ...)
-	TODO: check
+	NOT-FOR-US: PwnDoc
 CVE-2025-22620 (gitoxide is an implementation of git written in Rust. Prior to 0.17.0, ...)
 	TODO: check
 CVE-2025-22131 (PhpSpreadsheet is a PHP library for reading and writing spreadsheet fi ...)
-	TODO: check
+	NOT-FOR-US: PhpSpreadsheet
 CVE-2025-0479 (This vulnerability exists in the CP Plus Router due to insecure handli ...)
-	TODO: check
+	NOT-FOR-US: CP Plus Router
 CVE-2024-51738 (Sunshine is a self-hosted game stream host for Moonlight. In 0.23.1 an ...)
-	TODO: check
+	NOT-FOR-US: Sunshine
 CVE-2024-45647 (IBM Security Verify Access 10.0.0 through 10.0.8 and IBM Security Veri ...)
 	NOT-FOR-US: IBM
 CVE-2024-22349 (IBM DevOps Velocity 5.0.0 and IBM UrbanCode Velocity 4.0.0 through 4.0 ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c62a01203801009d5dec76ba1a82e1ff0bce5d5e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c62a01203801009d5dec76ba1a82e1ff0bce5d5e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250120/9c4af6b9/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list