[Git][security-tracker-team/security-tracker][master] automatic update

Sat Jul 5 09:12:10 BST 2025


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5d2b54c8 by security tracker role at 2025-07-05T08:12:02+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,35 @@
+CVE-2025-7070 (A vulnerability has been found in IROAD Dashcam Q9 up to 20250624 and  ...)
+	TODO: check
+CVE-2025-7069 (A vulnerability, which was classified as problematic, was found in HDF ...)
+	TODO: check
+CVE-2025-7068 (A vulnerability, which was classified as problematic, has been found i ...)
+	TODO: check
+CVE-2025-53605 (The protobuf crate before 3.7.2 for Rust allows uncontrolled recursion ...)
+	TODO: check
+CVE-2025-53604 (The web-push crate before 0.10.3 for Rust allows a denial of service ( ...)
+	TODO: check
+CVE-2025-53603 (In Alinto SOPE SOGo 2.0.2 through 5.12.2, sope-core/NGExtensions/NGHas ...)
+	TODO: check
+CVE-2025-53602 (Zipkin through 3.5.1 has a /heapdump endpoint (associated with the use ...)
+	TODO: check
+CVE-2025-53366 (The MCP Python SDK, called `mcp` on PyPI, is a Python implementation o ...)
+	TODO: check
+CVE-2025-53365 (The MCP Python SDK, called `mcp` on PyPI, is a Python implementation o ...)
+	TODO: check
+CVE-2025-48952 (NetAlertX is a network, presence scanner, and alert framework. Prior t ...)
+	TODO: check
+CVE-2025-47228 (In the Production Environment extension in Netmake ScriptCase through  ...)
+	TODO: check
+CVE-2025-47227 (In the Production Environment extension in Netmake ScriptCase through  ...)
+	TODO: check
+CVE-2025-43711 (Tunnelblick 3.5beta06 before 7.0, when incompletely uninstalled, allow ...)
+	TODO: check
+CVE-2025-26850 (The agent in Quest KACE Systems Management Appliance (SMA) before 14.0 ...)
+	TODO: check
+CVE-2024-58254
+	REJECTED
+CVE-2023-50786 (Dradis through 4.16.0 allows referencing external images (resources) o ...)
+	TODO: check
 CVE-2025-47917
 	- mbedtls <unfixed> (bug #1108791)
 	NOTE: https://github.com/Mbed-TLS/mbedtls-docs/blob/main/security-advisories/mbedtls-security-advisory-2025-06-7.md



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5d2b54c8473d993227b6288c53d55991fa649fcd

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5d2b54c8473d993227b6288c53d55991fa649fcd
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250705/4fc468ee/attachment.htm>
