[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Mar 12 21:42:52 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c045562f by Salvatore Bonaccorso at 2025-03-12T22:42:29+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,7 +1,7 @@
 CVE-2025-2240 (A flaw was found in Smallrye, where smallrye-fault-tolerance is vulner ...)
-	TODO: check
+	NOT-FOR-US: Smallrye
 CVE-2025-2239 (Generation of Error Message Containing Sensitive Information vulnerabi ...)
-	TODO: check
+	NOT-FOR-US: Hillstone
 CVE-2025-2002 (CWE-532: Insertion of Sensitive Information into Log Files vulnerabili ...)
 	TODO: check
 CVE-2025-29904 (In JetBrains Ktor before 3.1.1 an HTTP Request Smuggling was possible)
@@ -27,43 +27,43 @@ CVE-2025-25975 (An issue in parse-git-config v.3.0.0 allows an attacker to obtai
 CVE-2025-25774 (An issue was discovered in Open5GS v2.7.2. When a UE switches between  ...)
 	- open5gs <itp> (bug #1094791)
 CVE-2025-25711 (An issue in dtp.ae tNexus Airport View v.2.8 allows a remote attacker  ...)
-	TODO: check
+	NOT-FOR-US: tNexus Airport View
 CVE-2025-25709 (An issue in dtp.ae tNexus Airport View v.2.8 allows a remote attacker  ...)
-	TODO: check
+	NOT-FOR-US: tNexus Airport View
 CVE-2025-25683 (AlekSIS-Core is vulnerable to Incorrect Access Control. Unauthenticate ...)
-	TODO: check
+	NOT-FOR-US: AlekSIS-Core
 CVE-2025-25568 (SoftEtherVPN 5.02.5187 is vulnerable to Use after Free in the Command. ...)
-	TODO: check
+	NOT-FOR-US: SoftEtherVPN
 CVE-2025-25567 (SoftEther VPN 5.02.5187 is vulnerable to Buffer Overflow in Internat.c ...)
-	TODO: check
+	NOT-FOR-US: SoftEtherVPN
 CVE-2025-25566 (Memory Leak vulnerability in SoftEtherVPN 5.02.5187 allows an attacker ...)
-	TODO: check
+	NOT-FOR-US: SoftEtherVPN
 CVE-2025-25565 (SoftEther VPN 5.02.5187 is vulnerable to Buffer Overflow in the Comman ...)
-	TODO: check
+	NOT-FOR-US: SoftEtherVPN
 CVE-2025-22954 (Koha <= 21.11 is contains a SQL Injection vulnerability in /serials/la ...)
-	TODO: check
+	NOT-FOR-US: Koha Library Management System
 CVE-2025-21590 (An Improper Isolation or Compartmentalization vulnerability in the ker ...)
 	NOT-FOR-US: Juniper
 CVE-2025-20209 (A vulnerability in the Internet Key Exchange version 2 (IKEv2) functio ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2025-20177 (A vulnerability in the boot process of Cisco IOS XR Software could all ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2025-20146 (A vulnerability in the Layer 3 multicast feature of Cisco IOS XR Softw ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2025-20145 (A vulnerability in the access control list (ACL) processing in the egr ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2025-20144 (A vulnerability in the hybrid access control list (ACL) processing of  ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2025-20143 (A vulnerability in the boot process of Cisco IOS XR Software could all ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2025-20142 (A vulnerability in the IPv4 access control list (ACL) feature and qual ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2025-20141 (A vulnerability in the handling of specific packets that are punted fr ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2025-20138 (A vulnerability in the CLI of Cisco IOS XR Software could allow an aut ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2025-20115 (A vulnerability in confederation implementation for the Border Gateway ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2025-1984 (Xerox Desktop Print Experience application contains a Local Privilege  ...)
 	TODO: check
 CVE-2025-1960 (CWE-1188: Initialization of a Resource with an Insecure Default vulner ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c045562f37f5d5985daf00d6cf4de413b2d54f31

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c045562f37f5d5985daf00d6cf4de413b2d54f31
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250312/ac7f54f1/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list