[Git][security-tracker-team/security-tracker][master] automatic update

Sun Mar 2 20:12:23 GMT 2025


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
58142826 by security tracker role at 2025-03-02T20:12:16+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,4 +1,36 @@
-CVE-2022-49733 [ALSA: pcm: oss: Fix race at SNDCTL_DSP_SYNC]
+CVE-2025-1831 (A vulnerability classified as critical has been found in zj1983 zz up  ...)
+	TODO: check
+CVE-2025-1830 (A vulnerability was found in zj1983 zz up to 2024-8. It has been rated ...)
+	TODO: check
+CVE-2025-1829 (A vulnerability was found in TOTOLINK X18 9.1.0cu.2024_B20220329. It h ...)
+	TODO: check
+CVE-2025-1821 (A vulnerability was found in zj1983 zz up to 2024-8 and classified as  ...)
+	TODO: check
+CVE-2025-1820 (A vulnerability has been found in zj1983 zz up to 2024-8 and classifie ...)
+	TODO: check
+CVE-2025-1819 (A vulnerability, which was classified as critical, was found in Tenda  ...)
+	TODO: check
+CVE-2025-1818 (A vulnerability, which was classified as critical, has been found in z ...)
+	TODO: check
+CVE-2025-1817 (A vulnerability classified as problematic was found in Mini-Tmall up t ...)
+	TODO: check
+CVE-2025-1816 (A vulnerability classified as problematic has been found in FFmpeg up  ...)
+	TODO: check
+CVE-2025-1815 (A vulnerability, which was classified as critical, was found in pbrong ...)
+	TODO: check
+CVE-2025-1814 (A vulnerability, which was classified as critical, has been found in T ...)
+	TODO: check
+CVE-2025-1813 (A vulnerability classified as problematic was found in zj1983 zz up to ...)
+	TODO: check
+CVE-2025-1812 (A vulnerability classified as critical has been found in zj1983 zz up  ...)
+	TODO: check
+CVE-2025-1811 (A vulnerability was found in AT Software Solutions ATSVD up to 3.4.1.  ...)
+	TODO: check
+CVE-2025-0895 (IBM Cognos Analytics Mobile 1.1 for Android could allow a user with ph ...)
+	TODO: check
+CVE-2024-55907 (IBM Cognos Analytics Mobile 1.1 for iOS application could allow an att ...)
+	TODO: check
+CVE-2022-49733 (In the Linux kernel, the following vulnerability has been resolved:  A ...)
 	- linux 5.19.11-1
 	[bullseye] - linux 5.10.148-1
 	NOTE: https://git.kernel.org/linus/8423f0b6d513b259fdab9c9bf4aaa6188d054c2d (6.0-rc5)
@@ -642,7 +674,7 @@ CVE-2024-13647 (The School Management System \u2013 SakolaWP plugin for WordPres
 	NOT-FOR-US: WordPress plugin
 CVE-2024-0392 (A Cross-Site Request Forgery (CSRF) vulnerability exists in the manage ...)
 	NOT-FOR-US: WSO2 Enterprise Integrator
-CVE-2024-36353
+CVE-2024-36353 (Insufficient clearing of GPU global memory could allow a malicious pro ...)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2343791
 	TODO: check, AMD GPU related, but unclear if src:linux
 CVE-2025-21797 (In the Linux kernel, the following vulnerability has been resolved:  H ...)
@@ -8741,6 +8773,7 @@ CVE-2025-0158 (IBM EntireX 11.1 could allow a local user to cause a denial of se
 CVE-2024-57609 (An issue in Kanaries Inc Pygwalker before v.0.4.9.9 allows a remote at ...)
 	NOT-FOR-US: Kanaries Inc Pygwalker
 CVE-2024-57392 (Buffer Overflow vulnerability in Proftpd commit 4017eff8 allows a remo ...)
+	{DLA-4077-1}
 	- proftpd-dfsg <unfixed>
 	NOTE: https://github.com/proftpd/proftpd/issues/1866
 	NOTE: https://github.com/proftpd/proftpd/issues/1866#issuecomment-2645976560



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/581428260e39c9e36df0d15995fadf57daf998c1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/581428260e39c9e36df0d15995fadf57daf998c1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250302/41427bc0/attachment.htm>
