[Git][security-tracker-team/security-tracker][master] auto-nfu: Add rules for F5

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
97b065de by Moritz Muehlenhoff at 2025-05-08T11:53:27+02:00
auto-nfu: Add rules for F5

We can't use the whole CNA, they ship nginx.

- - - - -


2 changed files:

- data/CVE/list
- data/packages/nfu.yaml


Changes:

=====================================
data/CVE/list
=====================================
@@ -9,37 +9,37 @@ CVE-2025-46821 (Envoy is a cloud-native edge/middle/service proxy. Prior to vers
 CVE-2025-46727 (Rack is a modular Ruby web server interface. Prior to versions 2.2.14, ...)
 	TODO: check
 CVE-2025-46265 (On F5OS, an improper authorization vulnerability exists where remotely ...)
-	TODO: check
+	NOT-FOR-US: F5
 CVE-2025-43878 (When running in Appliance mode, an authenticated attacker assigned the ...)
-	TODO: check
+	NOT-FOR-US: F5
 CVE-2025-41433 (When a Session Initiation Protocol (SIP) message routing framework (MR ...)
-	TODO: check
+	NOT-FOR-US: F5
 CVE-2025-41431 (When connection mirroring is configured on a virtual server, undisclos ...)
-	TODO: check
+	NOT-FOR-US: F5
 CVE-2025-41414 (When HTTP/2 client and server profile is configured on a virtual serve ...)
-	TODO: check
+	NOT-FOR-US: F5
 CVE-2025-41399 (When a Stream Control Transmission Protocol (SCTP) profile is configur ...)
-	TODO: check
+	NOT-FOR-US: F5
 CVE-2025-3925 (BrightSign players running BrightSign OS series 4 prior to v8.5.53.1 o ...)
 	NOT-FOR-US: BrightSign
 CVE-2025-3419 (The Event Manager, Events Calendar, Tickets, Registrations \u2013 Even ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-36557 (When an HTTP profile with the Enforce RFC Compliance option is configu ...)
-	TODO: check
+	NOT-FOR-US: F5
 CVE-2025-36546 (On an F5OS system, if the root user had previously configured the syst ...)
-	TODO: check
+	NOT-FOR-US: F5
 CVE-2025-36525 (When a BIG-IP APM virtual server is configured to use a PingAccess pro ...)
-	TODO: check
+	NOT-FOR-US: F5
 CVE-2025-36504 (When a BIG-IP HTTP/2 httprouter profile is configured on a virtual ser ...)
-	TODO: check
+	NOT-FOR-US: F5
 CVE-2025-35995 (When a BIG-IP PEM system is licensed with URL categorization, and the  ...)
-	TODO: check
+	NOT-FOR-US: F5
 CVE-2025-35939 (Craft CMS stores arbitrary content provided by unauthenticated users i ...)
 	NOT-FOR-US: Craft CMS
 CVE-2025-32441 (Rack is a modular Ruby web server interface. Prior to version 2.2.14,  ...)
 	TODO: check
 CVE-2025-31644 (When running in Appliance mode, a command injection vulnerability exis ...)
-	TODO: check
+	NOT-FOR-US: F5
 CVE-2025-0936 (On affected platforms running Arista EOS with a gNMI transport enabled ...)
 	NOT-FOR-US: Arista Networks
 CVE-2024-55651 (i-Educar is free, fully online school management software. Version 2.9 ...)


=====================================
data/packages/nfu.yaml
=====================================
@@ -197,6 +197,13 @@
     - anyOf:
       - product: ArcGIS Server
       - product: ArcGIS Enterprise Builder
+- reason: F5
+  allOf:
+    - cna: f5
+    - anyOf:
+      - product: F5OS - Appliance
+      - product: F5OS - Chassis
+      - product: BIG-IP
 - reason: Fortra
   allOf:
     - cna: Fortra



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/97b065dea445ff4209d86566f0d6c7143e04de4c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/97b065dea445ff4209d86566f0d6c7143e04de4c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250508/621bf030/attachment-0001.htm>