[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Jul 2 21:20:10 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9913769d by Salvatore Bonaccorso at 2025-07-02T22:19:48+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,7 +1,7 @@
 CVE-2025-6943 (Secret Server version 11.7 and earlier is vulnerable to a SQL report c ...)
-	TODO: check
+	NOT-FOR-US: Secret Server
 CVE-2025-6942 (The distributed engine versions 8.4.39.0 and earlier of Secret Server  ...)
-	TODO: check
+	NOT-FOR-US: distributed engine
 CVE-2025-6725 (In the PdfViewer component, a Cross-Site Scripting (XSS) vulnerability ...)
 	NOT-FOR-US: Progress Software
 CVE-2025-53494 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
@@ -11,15 +11,15 @@ CVE-2025-53493 (Improper Neutralization of Input During Web Page Generation (XSS
 CVE-2025-53492 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
 	TODO: check
 CVE-2025-53359 (ethereum is a common ethereum structs for Rust. Prior to ethereum crat ...)
-	TODO: check
+	NOT-FOR-US: rust-ethereum
 CVE-2025-53358 (kotaemon is an open-source RAG-based tool for document comprehension.  ...)
-	TODO: check
+	NOT-FOR-US: kotaemon
 CVE-2025-53110 (Model Context Protocol Servers is a collection of reference implementa ...)
-	TODO: check
+	NOT-FOR-US: Model Context Protocol Servers
 CVE-2025-53109 (Model Context Protocol Servers is a collection of reference implementa ...)
-	TODO: check
+	NOT-FOR-US: Model Context Protocol Servers
 CVE-2025-53108 (HomeBox is a home inventory and organization system. Prior to 0.20.1,  ...)
-	TODO: check
+	NOT-FOR-US: HomeBox
 CVE-2025-53106 (Graylog is a free and open log management platform. In versions 6.2.0  ...)
 	TODO: check
 CVE-2025-53006 (DataEase is an open source business intelligence and data visualizatio ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9913769da48f6f52175b3153ed386026c26a7689

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9913769da48f6f52175b3153ed386026c26a7689
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250702/a9653491/attachment.htm>

More information about the debian-security-tracker-commits mailing list