[Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Tue May 13 22:24:25 BST 2025
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5b791358 by Moritz Muehlenhoff at 2025-05-13T23:23:38+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -139,41 +139,41 @@ CVE-2025-31930 (A vulnerability has been identified in IEC 1Ph 7.4kW Child socke
CVE-2025-31929 (A vulnerability has been identified in IEC 1Ph 7.4kW Child socket (8EM ...)
NOT-FOR-US: Siemens
CVE-2025-31493 (Kirby is an open-source content management system. A vulnerability in ...)
- TODO: check
+ NOT-FOR-US: Kirby CMS
CVE-2025-30400 (Use after free in Windows DWM allows an authorized attacker to elevate ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-30397 (Access of resource using incompatible type ('type confusion') in Micro ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-30394 (Sensitive data storage in improperly locked memory in Remote Desktop G ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-30393 (Use after free in Microsoft Office Excel allows an unauthorized attack ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-30388 (Heap-based buffer overflow in Windows Win32K - GRFX allows an unauthor ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-30387 (Improper limitation of a pathname to a restricted directory ('path tra ...)
TODO: check
CVE-2025-30386 (Use after free in Microsoft Office allows an unauthorized attacker to ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-30385 (Use after free in Windows Common Log File System Driver allows an auth ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-30384 (Deserialization of untrusted data in Microsoft Office SharePoint allow ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-30383 (Access of resource using incompatible type ('type confusion') in Micro ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-30382 (Deserialization of untrusted data in Microsoft Office SharePoint allow ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-30381 (Out-of-bounds read in Microsoft Office Excel allows an unauthorized at ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-30379 (Release of invalid pointer or reference in Microsoft Office Excel allo ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-30378 (Deserialization of untrusted data in Microsoft Office SharePoint allow ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-30377 (Use after free in Microsoft Office allows an unauthorized attacker to ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-30376 (Heap-based buffer overflow in Microsoft Office Excel allows an unautho ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-30375 (Access of resource using incompatible type ('type confusion') in Micro ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-30330 (Illustrator versions 29.3, 28.7.5 and earlier are affected by a Heap-b ...)
NOT-FOR-US: Adobe
CVE-2025-30329 (Animate versions 24.0.8, 23.0.11 and earlier are affected by a NULL Po ...)
@@ -197,7 +197,7 @@ CVE-2025-30318 (InDesign Desktop versions ID19.5.2, ID20.2 and earlier are affec
CVE-2025-30310 (Dreamweaver Desktop versions 21.4 and earlier are affected by an Acces ...)
NOT-FOR-US: Adobe
CVE-2025-30207 (Kirby is an open-source content management system. A vulnerability in ...)
- TODO: check
+ NOT-FOR-US: Kirby CMS
CVE-2025-30176 (A vulnerability has been identified in SIMATIC PCS neo V4.1 (All versi ...)
NOT-FOR-US: Siemens
CVE-2025-30175 (A vulnerability has been identified in SIMATIC PCS neo V4.1 (All versi ...)
@@ -205,57 +205,57 @@ CVE-2025-30175 (A vulnerability has been identified in SIMATIC PCS neo V4.1 (All
CVE-2025-30174 (A vulnerability has been identified in SIMATIC PCS neo V4.1 (All versi ...)
NOT-FOR-US: Siemens
CVE-2025-30159 (Kirby is an open-source content management system. A vulnerability in ...)
- TODO: check
+ NOT-FOR-US: Kirby CMS
CVE-2025-29979 (Heap-based buffer overflow in Microsoft Office Excel allows an unautho ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-29978 (Use after free in Microsoft Office PowerPoint allows an unauthorized a ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-29977 (Use after free in Microsoft Office Excel allows an unauthorized attack ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-29976 (Improper privilege management in Microsoft Office SharePoint allows an ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-29975 (Improper link resolution before file access ('link following') in Micr ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-29974 (Integer underflow (wrap or wraparound) in Windows Kernel allows an una ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-29973 (Improper access control in Azure File Sync allows an authorized attack ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-29971 (Out-of-bounds read in Web Threat Defense (WTD.sys) allows an unauthori ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-29970 (Use after free in Microsoft Brokering File System allows an authorized ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-29969 (Time-of-check time-of-use (toctou) race condition in Windows Fundament ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-29968 (Improper input validation in Active Directory Certificate Services (AD ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-29967 (Heap-based buffer overflow in Remote Desktop Gateway Service allows an ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-29966 (Heap-based buffer overflow in Windows Remote Desktop allows an unautho ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-29964 (Heap-based buffer overflow in Windows Media allows an unauthorized att ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-29963 (Heap-based buffer overflow in Windows Media allows an unauthorized att ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-29962 (Heap-based buffer overflow in Windows Media allows an unauthorized att ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-29961 (Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-29960 (Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-29959 (Use of uninitialized resource in Windows Routing and Remote Access Ser ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-29958 (Use of uninitialized resource in Windows Routing and Remote Access Ser ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-29957 (Uncontrolled resource consumption in Windows Deployment Services allow ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-29956 (Buffer over-read in Windows SMB allows an authorized attacker to discl ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-29955 (Improper input validation in Windows Hyper-V allows an unauthorized at ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-29954 (Uncontrolled resource consumption in Windows LDAP - Lightweight Direct ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-29842 (Acceptance of extraneous untrusted data with trusted data in UrlMon al ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-29841 (Concurrent execution using shared resource with improper synchronizati ...)
TODO: check
CVE-2025-29840 (Stack-based buffer overflow in Windows Media allows an unauthorized at ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5b7913588ce3b851c202986512d3ad7588e57094
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5b7913588ce3b851c202986512d3ad7588e57094
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250513/ac032596/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list