[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) jmm at debian.org
Tue May 13 11:10:09 BST 2025 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
56d8a285 by Moritz Muehlenhoff at 2025-05-13T12:09:22+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
 CVE-2025-4632 (Improper limitation of a pathname to a restricted directory vulnerabil ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2025-4474 (The Frontend Dashboard plugin for WordPress is vulnerable to Privilege ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-4473 (The Frontend Dashboard plugin for WordPress is vulnerable to Privilege ...)
@@ -60,7 +60,7 @@ CVE-2025-3659 (Improper authentication handling was identified in a set of HTTP
 CVE-2025-3107 (The Newsletters plugin for WordPress is vulnerable to time-based SQL I ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-35471 (conda-forge openssl-feedstock before 066e83c (2024-05-20), on Microsof ...)
-	TODO: check
+	NOT-FOR-US: conda-forge openssl-feedstock
 CVE-2025-31329 (SAP NetWeaver is vulnerable to an Information Disclosure vulnerability ...)
 	NOT-FOR-US: SAP
 CVE-2025-31260 (A permissions issue was addressed with additional restrictions. This i ...)
@@ -208,7 +208,7 @@ CVE-2025-22249 (VMware Aria automation contains a DOM based Cross-Site Scripting
 CVE-2025-22246 (Cloud Foundry UAA release versions from v77.21.0 to v7.31.0 are vulner ...)
 	TODO: check
 CVE-2023-49641 (Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL In ...)
-	TODO: check
+	NOT-FOR-US: Kashipara Billing Software
 CVE-2025-47712
 	- nbdkit <unfixed>
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2365724



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/56d8a2852a8743bd6bbcf499fe54b2f8d7226bf1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/56d8a2852a8743bd6bbcf499fe54b2f8d7226bf1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250513/099d3b0f/attachment.htm>

More information about the debian-security-tracker-commits mailing list