[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Jul 21 21:25:21 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
fa88755f by Salvatore Bonaccorso at 2025-07-21T22:24:58+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,13 +1,13 @@
CVE-2025-7962 (In Jakarta Mail 2.2 it is possible to preform a SMTP Injection by util ...)
- jakarta-mail <unfixed>
CVE-2025-7938 (A vulnerability was found in jerryshensjf JPACookieShop \u86cb\u7cd5\u ...)
- TODO: check
+ NOT-FOR-US: jerryshensjf JPACookieShop
CVE-2025-7936 (A vulnerability has been found in fuyang_lipengjun platform up to ca9a ...)
- TODO: check
+ NOT-FOR-US: fuyang_lipengjun platform
CVE-2025-7935 (A vulnerability, which was classified as critical, was found in fuyang ...)
- TODO: check
+ NOT-FOR-US: fuyang_lipengjun platform
CVE-2025-7934 (A vulnerability, which was classified as critical, has been found in f ...)
- TODO: check
+ NOT-FOR-US: fuyang_lipengjun platform
CVE-2025-7933 (A vulnerability classified as critical was found in Campcodes Sales an ...)
NOT-FOR-US: Campcodes
CVE-2025-7932 (A vulnerability classified as critical has been found in D-Link DIR\u2 ...)
@@ -35,221 +35,221 @@ CVE-2025-7716 (Improper Neutralization of Input During Web Page Generation ('Cro
CVE-2025-7715 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
NOT-FOR-US: Drupal core and addons
CVE-2025-7624 (An SQL injection vulnerability in the legacy (transparent) SMTP proxy ...)
- TODO: check
+ NOT-FOR-US: Sophos
CVE-2025-7393 (Improper Restriction of Excessive Authentication Attempts vulnerabilit ...)
NOT-FOR-US: Drupal core and addons
CVE-2025-7392 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
NOT-FOR-US: Drupal core and addons
CVE-2025-7382 (A command injection vulnerability in WebAdmin of Sophos Firewall versi ...)
- TODO: check
+ NOT-FOR-US: Sophos
CVE-2025-7325 (IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7324 (IrfanView CADImage Plugin DXF File Parsing Out-Of-Bounds Read Remote C ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7323 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7322 (IrfanView CADImage Plugin DWG File Parsing Out-Of-Bounds Read Remote C ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7321 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7320 (IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7319 (IrfanView CADImage Plugin DWG File Parsing Out-Of-Bounds Read Remote C ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7318 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7317 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7316 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7315 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7314 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7313 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7312 (IrfanView CADImage Plugin DWG File Parsing Out-Of-Bounds Read Remote C ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7311 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7310 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7309 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7308 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7307 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7306 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7305 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7304 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7303 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7302 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7301 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7300 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7299 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7298 (IrfanView CADImage Plugin DXF File Parsing Out-Of-Bounds Read Remote C ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7297 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7296 (IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7295 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7294 (IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7293 (IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7292 (IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7291 (IrfanView CADImage Plugin DXF File Parsing Out-Of-Bounds Read Remote C ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7290 (IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7289 (IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7288 (IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7287 (IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7286 (IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7285 (IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7284 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7283 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7282 (IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7281 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7280 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7279 (IrfanView CADImage Plugin CGM File Parsing Out-Of-Bounds Read Remote C ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7278 (IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7277 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7276 (IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7275 (IrfanView CADImage Plugin CGM File Parsing Out-Of-Bounds Read Remote C ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7274 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7273 (IrfanView CADImage Plugin DXF File Parsing Out-Of-Bounds Read Remote C ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7272 (IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7271 (IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7270 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7269 (IrfanView CADImage Plugin DXF File Parsing Out-Of-Bounds Read Remote C ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7268 (IrfanView CADImage Plugin DXF File Parsing Out-Of-Bounds Read Remote C ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7267 (IrfanView CADImage Plugin DXF File Parsing Out-Of-Bounds Read Remote C ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7266 (IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7265 (IrfanView CADImage Plugin CGM File Parsing Out-Of-Bounds Read Remote C ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7264 (IrfanView CADImage Plugin CGM File Parsing Out-Of-Bounds Read Remote C ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7263 (IrfanView CADImage Plugin CGM File Parsing Out-Of-Bounds Read Remote C ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7262 (IrfanView CADImage Plugin DWG File Parsing Out-Of-Bounds Read Remote C ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7261 (IrfanView CADImage Plugin DWG File Parsing Out-Of-Bounds Read Remote C ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7260 (IrfanView CADImage Plugin DXF File Parsing Out-Of-Bounds Write Remote ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7258 (IrfanView CADImage Plugin DWG File Parsing Out-Of-Bounds Write Remote ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7257 (IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7256 (IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7255 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7254 (IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7253 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7252 (IrfanView CADImage Plugin DWG File Parsing Out-Of-Bounds Read Remote C ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7251 (IrfanView CADImage Plugin DWG File Parsing Out-Of-Bounds Read Remote C ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7250 (IrfanView CADImage Plugin DWG File Parsing Out-Of-Bounds Read Remote C ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7249 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7248 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7247 (IrfanView CADImage Plugin DXF File Parsing Out-Of-Bounds Read Remote C ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7246 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7244 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7243 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7242 (IrfanView CADImage Plugin DWG File Parsing Out-Of-Bounds Read Remote C ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7241 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7240 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7239 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7238 (IrfanView CADImage Plugin DXF File Parsing Out-Of-Bounds Write Remote ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7237 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7236 (IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Co ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7235 (IrfanView CADImage Plugin DXF File Parsing Out-Of-Bounds Write Remote ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7234 (IrfanView CADImage Plugin CGM File Parsing Out-of-Bounds Write Remote ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7233 (IrfanView CADImage Plugin DWG File Parsing Out-Of-Bounds Read Informat ...)
- TODO: check
+ NOT-FOR-US: IrfanView
CVE-2025-7231 (INVT VT-Designer PM3 File Parsing Out-Of-Bounds Write Remote Code Exec ...)
- TODO: check
+ NOT-FOR-US: INVT VT-Designer
CVE-2025-7230 (INVT VT-Designer PM3 File Parsing Type Confusion Remote Code Execution ...)
- TODO: check
+ NOT-FOR-US: INVT VT-Designer
CVE-2025-7229 (INVT VT-Designer PM3 File Parsing Out-Of-Bounds Write Remote Code Exec ...)
- TODO: check
+ NOT-FOR-US: INVT VT-Designer
CVE-2025-7228 (INVT VT-Designer PM3 File Parsing Out-Of-Bounds Write Remote Code Exec ...)
- TODO: check
+ NOT-FOR-US: INVT VT-Designer
CVE-2025-7227 (INVT VT-Designer PM3 File Parsing Out-Of-Bounds Write Remote Code Exec ...)
- TODO: check
+ NOT-FOR-US: INVT VT-Designer
CVE-2025-7226 (INVT HMITool VPM File Parsing Out-Of-Bounds Write Remote Code Executio ...)
- TODO: check
+ NOT-FOR-US: INVT HMITool
CVE-2025-7225 (INVT HMITool VPM File Parsing Out-Of-Bounds Write Remote Code Executio ...)
- TODO: check
+ NOT-FOR-US: INVT HMITool
CVE-2025-7224 (INVT HMITool VPM File Parsing Out-Of-Bounds Write Remote Code Executio ...)
- TODO: check
+ NOT-FOR-US: INVT HMITool
CVE-2025-7223 (INVT HMITool VPM File Parsing Out-Of-Bounds Write Remote Code Executio ...)
- TODO: check
+ NOT-FOR-US: INVT HMITool
CVE-2025-7222 (Luxion KeyShot 3DM File Parsing Out-Of-Bounds Write Remote Code Execut ...)
- TODO: check
+ NOT-FOR-US: Luxion KeyShot
CVE-2025-6704 (An arbitrary file writing vulnerability in the Secure PDF eXchange (SP ...)
- TODO: check
+ NOT-FOR-US: Sophos
CVE-2025-6235 (In ExtremeControl before 25.5.12, a cross-site scripting (XSS) vulnera ...)
- TODO: check
+ NOT-FOR-US: ExtremeControl
CVE-2025-5681 (Authorization Bypass Through User-Controlled Key vulnerability in Turt ...)
- TODO: check
+ NOT-FOR-US: Turtek Software Eyotek
CVE-2025-54121 (Starlette is a lightweight ASGI (Asynchronous Server Gateway Interface ...)
TODO: check
CVE-2025-54082 (marshmallow-packages/nova-tiptap is a rich text editor for Laravel Nov ...)
@@ -257,7 +257,7 @@ CVE-2025-54082 (marshmallow-packages/nova-tiptap is a rich text editor for Larav
CVE-2025-54071 (RomM (ROM Manager) allows users to scan, enrich, browse and play their ...)
TODO: check
CVE-2025-52575 (EspoCRM is an Open Source CRM (Customer Relationship Management) softw ...)
- TODO: check
+ NOT-FOR-US: EspoCRM
CVE-2025-52374 (Use of hardcoded cryptographic key in Encryption.cs in hMailServer 5.8 ...)
TODO: check
CVE-2025-52373 (Use of hardcoded cryptographic key in BlowFish.cpp in hMailServer 5.8. ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fa88755ffe1f74adc203559f433cda99508a0c48
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fa88755ffe1f74adc203559f433cda99508a0c48
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250721/8cdabe7d/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list