[Git][security-tracker-team/security-tracker][master] 2 commits: Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Jun 16 21:36:45 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
df9a50c8 by Salvatore Bonaccorso at 2025-06-16T22:36:26+02:00
Process some NFUs
- - - - -
aaf701ce by Salvatore Bonaccorso at 2025-06-16T22:36:28+02:00
Add CVE-2025-6170/libxml2
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,13 +1,14 @@
CVE-2025-6179 (Permissions Bypass in Extension Management in Google ChromeOS ...)
- TODO: check
+ NOT-FOR-US: Google ChromeOS
CVE-2025-6177 (Privilege Escalation in MiniOS in Google ChromeOS (16063.45.2 and pote ...)
- TODO: check
+ NOT-FOR-US: Google ChromeOS
CVE-2025-6172 (Permission vulnerability in the mobile application (com.afmobi.boompla ...)
NOT-FOR-US: TECNO Mobile
CVE-2025-6170 (A flaw was found in the interactive shell of the xmllint command-line ...)
- TODO: check
+ - libxml2 <unfixed>
+ NOTE: https://gitlab.gnome.org/GNOME/libxml2/-/issues/941
CVE-2025-6137 (A vulnerability classified as critical has been found in TOTOLINK T10 ...)
- TODO: check
+ NOT-FOR-US: TOTOLINK
CVE-2025-6136 (A vulnerability was found in Projectworlds Life Insurance Management S ...)
NOT-FOR-US: Project Worlds
CVE-2025-6135 (A vulnerability was found in Projectworlds Life Insurance Management S ...)
@@ -17,15 +18,15 @@ CVE-2025-6134 (A vulnerability was found in Projectworlds Life Insurance Managem
CVE-2025-6133 (A vulnerability was found in Projectworlds Life Insurance Management S ...)
NOT-FOR-US: Project Worlds
CVE-2025-6132 (A vulnerability has been found in Chanjet CRM 1.0 and classified as cr ...)
- TODO: check
+ NOT-FOR-US: Chanjet CRM
CVE-2025-6131 (A vulnerability, which was classified as problematic, was found in Cod ...)
NOT-FOR-US: CodeAstro
CVE-2025-6130 (A vulnerability, which was classified as critical, has been found in T ...)
- TODO: check
+ NOT-FOR-US: TOTOLINK
CVE-2025-6129 (A vulnerability classified as critical was found in TOTOLINK EX1200T 4 ...)
- TODO: check
+ NOT-FOR-US: TOTOLINK
CVE-2025-6128 (A vulnerability classified as critical has been found in TOTOLINK EX12 ...)
- TODO: check
+ NOT-FOR-US: TOTOLINK
CVE-2025-6127 (A vulnerability was found in PHPGurukul Nipah Virus Testing Management ...)
NOT-FOR-US: PHPGurukul
CVE-2025-6126 (A vulnerability was found in PHPGurukul Rail Pass Management System 1. ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/3821b50fdbfd9c6c474bbd274d48fcece3e2c18d...aaf701cec09cf501495569fcce9de35af20e5a24
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/3821b50fdbfd9c6c474bbd274d48fcece3e2c18d...aaf701cec09cf501495569fcce9de35af20e5a24
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250616/e5b6b1f6/attachment.htm>
More information about the debian-security-tracker-commits
mailing list