[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) jmm at debian.org
Sun Jun 22 21:35:01 BST 2025 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3fbdb9d9 by Moritz Muehlenhoff at 2025-06-22T22:34:24+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,15 +1,15 @@
 CVE-2025-6492 (A vulnerability has been found in MarkText up to 0.17.1 and classified ...)
-	TODO: check
+	NOT-FOR-US: MarkText
 CVE-2025-6490 (A vulnerability was found in sparklemotion nokogiri up to 1.18.7 and c ...)
 	TODO: check
 CVE-2025-6489 (A vulnerability has been found in itsourcecode Agri-Trading Online Sho ...)
 	NOT-FOR-US: itsourcecode System
 CVE-2025-6487 (A vulnerability was found in TOTOLINK A3002R 1.1.1-B20200824.0128. It  ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2025-6486 (A vulnerability was found in TOTOLINK A3002R 1.1.1-B20200824.0128. It  ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2025-6485 (A vulnerability was found in TOTOLINK A3002R 1.1.1-B20200824.0128. It  ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2025-6484 (A vulnerability was found in code-projects Online Shopping Store 1.0 a ...)
 	NOT-FOR-US: code-projects
 CVE-2025-6483 (A vulnerability has been found in code-projects Simple Pizza Ordering  ...)
@@ -337,7 +337,7 @@ CVE-2025-52708 (Improper Control of Filename for Include/Require Statement in PH
 CVE-2025-52707 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
 	NOT-FOR-US: WordPress plugin or theme
 CVE-2025-52484 (RISC Zero is a general computing platform based on zk-STARKs and the R ...)
-	TODO: check
+	NOT-FOR-US: RISC Zero
 CVE-2025-50051 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
 	NOT-FOR-US: WordPress plugin or theme
 CVE-2025-50050 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
@@ -514,7 +514,7 @@ CVE-2025-3228 (Mattermost versions 10.5.x <= 10.5.5, 9.11.x <= 9.11.15, 10.8.x <
 CVE-2025-3227 (Mattermost versions 10.5.x <= 10.5.5, 9.11.x <= 9.11.15, 10.8.x <= 10. ...)
 	- mattermost-server <itp> (bug #823556)
 CVE-2025-34030 (An OS command injection vulnerability exists in sar2html version 3.2.2 ...)
-	TODO: check
+	NOT-FOR-US: sar2html
 CVE-2025-34029 (An OS command injection vulnerability exists in the Edimax EW-7438RPn  ...)
 	NOT-FOR-US: Edimax
 CVE-2025-34024 (An OS command injection vulnerability exists in the Edimax EW-7438RPn  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3fbdb9d9ed4b430542648ff52121d7c613ac41d5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3fbdb9d9ed4b430542648ff52121d7c613ac41d5
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250622/0e59b286/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list