[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
88e6212b by Salvatore Bonaccorso at 2025-07-25T15:24:25+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -7,43 +7,43 @@ CVE-2025-8135 (A vulnerability, which was classified as critical, has been found
 CVE-2025-8134 (A vulnerability classified as critical was found in PHPGurukul BP Moni ...)
 	NOT-FOR-US: PHPGurukul
 CVE-2025-8133 (A vulnerability classified as critical has been found in yanyutao0402  ...)
-	TODO: check
+	NOT-FOR-US: yanyutao0402 ChanCMS
 CVE-2025-8132 (A vulnerability was found in yanyutao0402 ChanCMS up to 3.1.2. It has  ...)
-	TODO: check
+	NOT-FOR-US: yanyutao0402 ChanCMS
 CVE-2025-8131 (A vulnerability was found in Tenda AC20 16.03.08.05. It has been decla ...)
 	NOT-FOR-US: Tenda
 CVE-2025-8129 (A vulnerability, which was classified as problematic, was found in Koa ...)
 	TODO: check
 CVE-2025-8128 (A vulnerability, which was classified as critical, has been found in z ...)
-	TODO: check
+	NOT-FOR-US: zhousg letao
 CVE-2025-8127 (A vulnerability classified as critical was found in deerwms deer-wms-2 ...)
-	TODO: check
+	NOT-FOR-US: deerwms deer-wms-2
 CVE-2025-8126 (A vulnerability classified as critical has been found in deerwms deer- ...)
-	TODO: check
+	NOT-FOR-US: deerwms deer-wms-2
 CVE-2025-8125 (A vulnerability was found in deerwms deer-wms-2 up to 3.3. It has been ...)
-	TODO: check
+	NOT-FOR-US: deerwms deer-wms-2
 CVE-2025-8124 (A vulnerability was found in deerwms deer-wms-2 up to 3.3. It has been ...)
-	TODO: check
+	NOT-FOR-US: deerwms deer-wms-2
 CVE-2025-8123 (A vulnerability was found in deerwms deer-wms-2 up to 3.3. It has been ...)
-	TODO: check
+	NOT-FOR-US: deerwms deer-wms-2
 CVE-2025-7742 (An authentication vulnerability exists in the LG Innotek camera model  ...)
-	TODO: check
+	NOT-FOR-US: LG Innotek camera model LNV5110R firmware
 CVE-2025-7404 (Improper Neutralization of Special Elements used in an OS Command ('OS ...)
-	TODO: check
+	- calibre-web <itp> (bug #982690)
 CVE-2025-7022 (The My Reservation System WordPress plugin through 2.3 does not saniti ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-6260 (The embedded web server on the thermostat listed version ranges contai ...)
-	TODO: check
+	NOT-FOR-US: Network Thermostat X-Series WiFi Thermostats
 CVE-2025-5835 (The Droip plugin for WordPress is vulnerable to unauthorized modificat ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-5831 (The Droip plugin for WordPress is vulnerable to arbitrary file uploads ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-54568 (Akamai Rate Control alpha before 2025 allows attackers to send request ...)
-	TODO: check
+	NOT-FOR-US: Akamai Rate Control alpha
 CVE-2025-54558 (OpenAI Codex CLI before 0.9.0 auto-approves ripgrep (aka rg) execution ...)
-	TODO: check
+	NOT-FOR-US: OpenAI Codex CLI
 CVE-2025-54379 (LF Edge eKuiper is a lightweight IoT data analytics and stream process ...)
-	TODO: check
+	NOT-FOR-US: LF Edge eKuiper
 CVE-2025-54369
 	REJECTED
 CVE-2025-53940 (Quiet is an alternative to team chat apps like Slack, Discord, and Ele ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/88e6212b2f56b86f150d70989ce10b0823f9b3d1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/88e6212b2f56b86f150d70989ce10b0823f9b3d1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250725/3df1126f/attachment.htm>