[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Mar 3 20:34:51 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
92857ab3 by Salvatore Bonaccorso at 2025-03-03T21:34:30+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,7 +3,7 @@ CVE-2025-27501 (OpenZiti is a free and open source project focused on bringing z
 CVE-2025-27500 (OpenZiti is a free and open source project focused on bringing zero tr ...)
 	TODO: check
 CVE-2025-27499 (WeGIA is an open source Web Manager for Institutions with a focus on P ...)
-	TODO: check
+	NOT-FOR-US: WeGIA
 CVE-2025-27498 (aes-gcm is a pure Rust implementation of the AES-GCM. In decrypt_in_pl ...)
 	TODO: check
 CVE-2025-27423 (Vim is an open source, command line text editor. Vim is distributed wi ...)
@@ -13,13 +13,13 @@ CVE-2025-27422 (FACTION is a PenTesting Report Generation and Collaboration Fram
 CVE-2025-27421 (Abacus is a highly scalable and stateless counting API. A critical gor ...)
 	TODO: check
 CVE-2025-27420 (WeGIA is an open source Web Manager for Institutions with a focus on P ...)
-	TODO: check
+	NOT-FOR-US: WeGIA
 CVE-2025-27419 (WeGIA is an open source Web Manager for Institutions with a focus on P ...)
-	TODO: check
+	NOT-FOR-US: WeGIA
 CVE-2025-27418 (WeGIA is an open source Web Manager for Institutions with a focus on P ...)
-	TODO: check
+	NOT-FOR-US: WeGIA
 CVE-2025-27417 (WeGIA is an open source Web Manager for Institutions with a focus on P ...)
-	TODO: check
+	NOT-FOR-US: WeGIA
 CVE-2025-27371 (In certain IETF OAuth 2.0-related specifications, when the JSON Web To ...)
 	TODO: check
 CVE-2025-27370 (OpenID Connect Core through 1.0 errata set 2 allows audience injection ...)
@@ -399,9 +399,9 @@ CVE-2025-1879 (A vulnerability was found in i-Drive i11 and i12 up to 20250227 a
 CVE-2025-1878 (A vulnerability has been found in i-Drive i11 and i12 up to 20250227 a ...)
 	TODO: check
 CVE-2025-1877 (A vulnerability, which was classified as critical, was found in D-Link ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2025-1876 (A vulnerability, which was classified as critical, has been found in D ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2025-1875 (SQL injection vulnerability have been found in 101news affecting versi ...)
 	TODO: check
 CVE-2025-1874 (SQL injection vulnerability have been found in 101news affecting versi ...)
@@ -425,7 +425,7 @@ CVE-2025-1866 (Improper Restriction of Operations within the Bounds of a Memory
 CVE-2025-1864 (Improper Restriction of Operations within the Bounds of a Memory Buffe ...)
 	TODO: check
 CVE-2025-1859 (A vulnerability, which was classified as critical, has been found in P ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul
 CVE-2025-1858 (A vulnerability classified as critical was found in Codezips Online Sh ...)
 	TODO: check
 CVE-2025-0289 (Paragon Partition Manager version 17, both community and Business vers ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/92857ab35d9009b8f8e6b774de191679977daa6d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/92857ab35d9009b8f8e6b774de191679977daa6d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250303/5670ed51/attachment.htm>

More information about the debian-security-tracker-commits mailing list