[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Nov 6 08:18:52 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ee42adcd by Salvatore Bonaccorso at 2025-11-06T09:18:23+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -19,23 +19,23 @@ CVE-2025-64473
 CVE-2025-64472
 	REJECTED
 CVE-2025-64171 (MARIN3R is a lightweight, CRD based envoy control plane for kubernetes ...)
-	TODO: check
+	NOT-FOR-US: MARIN3R
 CVE-2025-64164 (Dataease is an open source data visualization analysis tool. In versio ...)
 	NOT-FOR-US: DataEase
 CVE-2025-64163 (DataEase is an open source data visualization analysis tool. In versio ...)
 	NOT-FOR-US: DataEase
 CVE-2025-64114 (ClipBucket v5 is an open source video sharing platform. Versions 5.5.2 ...)
-	TODO: check
+	NOT-FOR-US: ClipBucket
 CVE-2025-63585 (OSSN (Open Source Social Network) 8.6 is vulnerable to SQL Injection i ...)
-	TODO: check
+	NOT-FOR-US: OSSN (Open Source Social Network)
 CVE-2025-62596 (Youki is a container runtime written in Rust. In versions 0.5.6 and be ...)
-	TODO: check
+	NOT-FOR-US: Youki
 CVE-2025-62161 (Youki is a container runtime written in Rust. In versions 0.5.6 and be ...)
-	TODO: check
+	NOT-FOR-US: Youki
 CVE-2025-61994 (Cross-site scripting vulnerability exists in GROWI prior to v7.2.10. I ...)
-	TODO: check
+	NOT-FOR-US: GROWI
 CVE-2025-60784 (A vulnerability in the XiaozhangBang Voluntary Like System V8.8 allows ...)
-	TODO: check
+	NOT-FOR-US: XiaozhangBang Voluntary Like System
 CVE-2025-55278 (Improper authentication in the API authentication middleware of HCL De ...)
 	NOT-FOR-US: HCL
 CVE-2025-12779 (Improper handling of the authentication token in the Amazon WorkSpaces ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ee42adcd4df07e2d353274dd1e7b18a817c52c04

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ee42adcd4df07e2d353274dd1e7b18a817c52c04
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251106/8734ba15/attachment.htm>

More information about the debian-security-tracker-commits mailing list