[Git][security-tracker-team/security-tracker][master] Add some NFUs

Wed Mar 12 21:19:41 GMT 2025


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0520af7a by Salvatore Bonaccorso at 2025-03-12T22:19:13+01:00
Add some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5,23 +5,23 @@ CVE-2025-2239 (Generation of Error Message Containing Sensitive Information vuln
 CVE-2025-2002 (CWE-532: Insertion of Sensitive Information into Log Files vulnerabili ...)
 	TODO: check
 CVE-2025-29904 (In JetBrains Ktor before 3.1.1 an HTTP Request Smuggling was possible)
-	TODO: check
+	NOT-FOR-US: JetBrains Ktor
 CVE-2025-29903 (In JetBrains Runtime before 21.0.6b872.80 arbitrary dynamic library ex ...)
-	TODO: check
+	NOT-FOR-US: JetBrains
 CVE-2025-27915 (An issue was discovered in Zimbra Collaboration (ZCS) 9.0 and 10.0 and ...)
-	TODO: check
+	NOT-FOR-US: Zimbra
 CVE-2025-27914 (An issue was discovered in Zimbra Collaboration (ZCS) 9.0 and 10.0 and ...)
-	TODO: check
+	NOT-FOR-US: Zimbra
 CVE-2025-27794 (Flarum is open-source forum software. A session hijacking vulnerabilit ...)
-	TODO: check
+	NOT-FOR-US: Flarum
 CVE-2025-27788 (JSON is a JSON implementation for Ruby. Starting in version 2.10.0 and ...)
 	TODO: check
 CVE-2025-27407 (graphql-ruby is a Ruby implementation of GraphQL. Starting in version  ...)
 	TODO: check
 CVE-2025-27017 (Apache NiFi 1.13.0 through 2.2.0 includes the username and password us ...)
-	TODO: check
+	NOT-FOR-US: Apache NiFi
 CVE-2025-26260 (Plenti <= 0.7.16 is vulnerable to code execution. Users uploading '.sv ...)
-	TODO: check
+	NOT-FOR-US: Plenti
 CVE-2025-25975 (An issue in parse-git-config v.3.0.0 allows an attacker to obtain sens ...)
 	TODO: check
 CVE-2025-25774 (An issue was discovered in Open5GS v2.7.2. When a UE switches between  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0520af7aa2bc1e23f2ea8a5bd23eaba729294dfd

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0520af7aa2bc1e23f2ea8a5bd23eaba729294dfd
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250312/13583787/attachment.htm>
