[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) jmm at debian.org
Tue May 27 10:33:42 BST 2025 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
83f1e148 by Moritz Muehlenhoff at 2025-05-27T11:28:06+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -97,9 +97,9 @@ CVE-2025-33079 (IBM Controller 11.0.0, 11.0.1, and 11.1.0 application could allo
 CVE-2025-2407 (Missing Authentication & Authorization in Web-API in Mobatime AMX MTAP ...)
 	NOT-FOR-US: Mobatime AMX MTAPI
 CVE-2025-26211 (Gibbon before 29.0.00 allows CSRF.)
-	TODO: check
+	NOT-FOR-US: Gibbon
 CVE-2025-23393 (A Improper Neutralization of Script-Related HTML Tags in a Web Page (B ...)
-	TODO: check
+	NOT-FOR-US: Spacewalk
 CVE-2024-47090 (Improper neutralization of input in Nagvis before version 1.9.47 which ...)
 	- nagvis <unfixed>
 	NOTE: https://github.com/NagVis/nagvis/commit/5baf87d30175357aaa39e42ff0d99fb0abefbc06 (nagvis-1.9.47)
@@ -143,7 +143,7 @@ CVE-2025-5200 (A vulnerability was found in Open Asset Import Library Assimp 5.4
 CVE-2025-5196 (A vulnerability has been found in Wing FTP Server up to 7.4.3 and clas ...)
 	NOT-FOR-US: Wing FTP Server
 CVE-2025-5186 (A vulnerability was found in thinkgem JeeSite up to 5.11.1. It has bee ...)
-	TODO: check
+	NOT-FOR-US: JeeSite
 CVE-2025-5185 (A vulnerability was found in Summer Pearl Group Vacation Rental Manage ...)
 	NOT-FOR-US: Summer Pearl Group Vacation Rental Management Platform
 CVE-2025-5184 (A vulnerability was found in Summer Pearl Group Vacation Rental Manage ...)
@@ -197,7 +197,7 @@ CVE-2025-39498 (Insertion of Sensitive Information Into Sent Data vulnerability
 CVE-2025-23394 (A UNIX Symbolic Link (Symlink) Following vulnerability in openSUSE Tum ...)
 	TODO: check
 CVE-2025-23392 (A Improper Neutralization of Script-Related HTML Tags in a Web Page (B ...)
-	TODO: check
+	NOT-FOR-US: Spacewalk
 CVE-2025-1985 (Due to improper neutralization of input during web page generation (XS ...)
 	NOT-FOR-US: Pepperl+Fuchs SE
 CVE-2025-37992 (In the Linux kernel, the following vulnerability has been resolved:  n ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/83f1e148ff4c289aef96f60d1aa0cf1daa746d20

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/83f1e148ff4c289aef96f60d1aa0cf1daa746d20
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250527/e2d68cd4/attachment.htm>

More information about the debian-security-tracker-commits mailing list