[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Wed May 14 09:12:54 BST 2025


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
59547700 by security tracker role at 2025-05-14T08:12:47+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,7 +3,7 @@ CVE-2025-4668
 CVE-2025-4574 (In crossbeam-channel rust crate, the internal `Channel` type's `Drop`  ...)
 	TODO: check
 CVE-2025-4520 (The Uncanny Automator plugin for WordPress is vulnerable to unauthoriz ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-47905 (Varnish Cache before 7.6.3 and 7.7 before 7.7.1, and Varnish Enterpris ...)
 	TODO: check
 CVE-2025-47899
@@ -25,51 +25,51 @@ CVE-2025-47892
 CVE-2025-47891
 	REJECTED
 CVE-2025-43572 (Dimension versions 4.1.2 and earlier are affected by an out-of-bounds  ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2025-43571 (Substance3D - Stager versions 3.1.1 and earlier are affected by a Use  ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2025-43570 (Substance3D - Stager versions 3.1.1 and earlier are affected by a Use  ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2025-43569 (Substance3D - Stager versions 3.1.1 and earlier are affected by an out ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2025-43568 (Substance3D - Stager versions 3.1.1 and earlier are affected by a Use  ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2025-43567 (Adobe Connect versions 12.8 and earlier are affected by a reflected Cr ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2025-43566 (ColdFusion versions 2025.1, 2023.13, 2021.19 and earlier are affected  ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2025-43565 (ColdFusion versions 2025.1, 2023.13, 2021.19 and earlier are affected  ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2025-43564 (ColdFusion versions 2025.1, 2023.13, 2021.19 and earlier are affected  ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2025-43563 (ColdFusion versions 2025.1, 2023.13, 2021.19 and earlier are affected  ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2025-43562 (ColdFusion versions 2025.1, 2023.13, 2021.19 and earlier are affected  ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2025-43561 (ColdFusion versions 2025.1, 2023.13, 2021.19 and earlier are affected  ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2025-43560 (ColdFusion versions 2025.1, 2023.13, 2021.19 and earlier are affected  ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2025-43559 (ColdFusion versions 2025.1, 2023.13, 2021.19 and earlier are affected  ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2025-43554 (Substance3D - Modeler versions 1.21.0 and earlier are affected by an o ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2025-43553 (Substance3D - Modeler versions 1.21.0 and earlier are affected by an U ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2025-43551 (Substance3D - Stager versions 3.1.1 and earlier are affected by an out ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2025-43549 (Substance3D - Stager versions 3.1.1 and earlier are affected by a Use  ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2025-43548 (Dimension versions 4.1.2 and earlier are affected by an out-of-bounds  ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2025-3623 (The Uncanny Automator plugin for WordPress is vulnerable to PHP Object ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-30316 (Adobe Connect versions 12.8 and earlier are affected by a stored Cross ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2025-30315 (Adobe Connect versions 12.8 and earlier are affected by a stored Cross ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2025-30314 (Adobe Connect versions 12.8 and earlier are affected by a stored Cross ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2025-26646 (External control of file name or path in .NET, Visual Studio, and Buil ...)
 	TODO: check
 CVE-2025-24308 (Improper input validation in the UEFI firmware error handler for the I ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/59547700067b2ddeef54fa8ccc5bf00b253aea33

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/59547700067b2ddeef54fa8ccc5bf00b253aea33
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250514/bcc1e96b/attachment-0001.htm>
