[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Thu Nov 6 08:13:39 GMT 2025


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d578bc20 by security tracker role at 2025-11-06T08:13:33+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
 CVE-2025-9338 (A improper restriction of operations within the bounds of a memory buf ...)
-	TODO: check
+	NOT-FOR-US: ASUS
 CVE-2025-64480
 	REJECTED
 CVE-2025-64479
@@ -21,9 +21,9 @@ CVE-2025-64472
 CVE-2025-64171 (MARIN3R is a lightweight, CRD based envoy control plane for kubernetes ...)
 	TODO: check
 CVE-2025-64164 (Dataease is an open source data visualization analysis tool. In versio ...)
-	TODO: check
+	NOT-FOR-US: DataEase
 CVE-2025-64163 (DataEase is an open source data visualization analysis tool. In versio ...)
-	TODO: check
+	NOT-FOR-US: DataEase
 CVE-2025-64114 (ClipBucket v5 is an open source video sharing platform. Versions 5.5.2 ...)
 	TODO: check
 CVE-2025-63585 (OSSN (Open Source Social Network) 8.6 is vulnerable to SQL Injection i ...)
@@ -37,25 +37,25 @@ CVE-2025-61994 (Cross-site scripting vulnerability exists in GROWI prior to v7.2
 CVE-2025-60784 (A vulnerability in the XiaozhangBang Voluntary Like System V8.8 allows ...)
 	TODO: check
 CVE-2025-55278 (Improper authentication in the API authentication middleware of HCL De ...)
-	TODO: check
+	NOT-FOR-US: HCL
 CVE-2025-12779 (Improper handling of the authentication token in the Amazon WorkSpaces ...)
-	TODO: check
+	NOT-FOR-US: Amazon
 CVE-2025-12563 (The Blog2Social: Social Media Auto Post & Scheduler plugin for WordPre ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-12560 (The Blog2Social: Social Media Auto Post & Scheduler plugin for WordPre ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-12471 (The Hubbub Lite \u2013 Fast, free social sharing and follow buttons pl ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-12360 (The Better Find and Replace \u2013 AI-Powered Suggestions plugin for W ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-11271 (The Easy Digital Downloads plugin for WordPress is vulnerable to Order ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-10691 (The Easy Email Subscription plugin for WordPress is vulnerable to Cros ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-10683 (The Easy Email Subscription plugin for WordPress is vulnerable to SQL  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-10259 (Improper Validation of Specified Quantity in Input vulnerability in TC ...)
-	TODO: check
+	NOT-FOR-US: Mitsubishi
 CVE-2025-12729
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d578bc20f26e6b346f6552b708cfb4907fc1ec7a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d578bc20f26e6b346f6552b708cfb4907fc1ec7a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251106/77a4a76c/attachment.htm>
