[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Mar 25 20:44:12 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
f7d1278b by Salvatore Bonaccorso at 2025-03-25T21:42:20+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -34,11 +34,11 @@ CVE-2025-2559 (A flaw was found in Keycloak. When the configuration uses JWT tok
CVE-2025-2542 (The Your Simple SVG Support plugin for WordPress is vulnerable to Stor ...)
NOT-FOR-US: WordPress plugin
CVE-2025-2532 (Luxion KeyShot USDC File Parsing Use-After-Free Remote Code Execution ...)
- TODO: check
+ NOT-FOR-US: Luxion KeyShot
CVE-2025-2531 (Luxion KeyShot DAE File Parsing Heap-based Buffer Overflow Remote Code ...)
- TODO: check
+ NOT-FOR-US: Luxion KeyShot
CVE-2025-2530 (Luxion KeyShot DAE File Parsing Access of Uninitialized Pointer Remote ...)
- TODO: check
+ NOT-FOR-US: Luxion KeyShot
CVE-2025-2510 (The Frndzk Expandable Bottom Bar plugin for WordPress is vulnerable to ...)
NOT-FOR-US: WordPress plugin
CVE-2025-2319 (The EZ SQL Reports Shortcode Widget and DB Backup plugin for WordPress ...)
@@ -58,7 +58,7 @@ CVE-2025-27632 (A Host Header Injection vulnerability in TRMTracker application
CVE-2025-27631 (The TRMTracker web application is vulnerable to LDAP injection attack ...)
NOT-FOR-US: TRMTracker web application
CVE-2025-27147 (The GLPI Inventory Plugin handles various types of tasks for GLPI agen ...)
- TODO: check
+ NOT-FOR-US: GLPI Inventory Plugin
CVE-2025-26742 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-22230 (VMware Tools for Windows contains an authentication bypass vulnerabili ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f7d1278b425da9d02873e17bcbee01a4324dfd6e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f7d1278b425da9d02873e17bcbee01a4324dfd6e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250325/90cb0741/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list