[Git][security-tracker-team/security-tracker][master] Process some NFUs

Thu Nov 13 20:28:08 GMT 2025


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
21351902 by Salvatore Bonaccorso at 2025-11-13T21:27:45+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -11,35 +11,35 @@ CVE-2025-64739 (External control of file name or path in certain Zoom Clients ma
 CVE-2025-64738 (External control of file name or path in Zoom Workplace for macOS befo ...)
 	NOT-FOR-US: Zoom
 CVE-2025-64726 (Socket Firewall is an HTTP/HTTPS proxy server that intercepts package  ...)
-	TODO: check
+	NOT-FOR-US: Socket Firewall
 CVE-2025-64718 (js-yaml is a JavaScript YAML parser and dumper. In js-yaml 4.1.0 and b ...)
 	TODO: check
 CVE-2025-64717 (ZITADEL is an open source identity management platform. Starting in ve ...)
-	TODO: check
+	NOT-FOR-US: Zitadel
 CVE-2025-64716 (Anubis is a Web AI Firewall Utility that challenges users' connections ...)
 	TODO: check
 CVE-2025-64714 (PrivateBin is an online pastebin where the server has zero knowledge o ...)
-	TODO: check
+	NOT-FOR-US: PrivateBin
 CVE-2025-64711 (PrivateBin is an online pastebin where the server has zero knowledge o ...)
-	TODO: check
+	NOT-FOR-US: PrivateBin
 CVE-2025-64710 (Bitplatform Boilerplate is a Visual studio and .NET project template.  ...)
-	TODO: check
+	NOT-FOR-US: Bitplatform Boilerplate
 CVE-2025-64709 (Typebot is an open-source chatbot builder. In versions prior to 3.13.1 ...)
-	TODO: check
+	NOT-FOR-US: Typebot
 CVE-2025-64707 (Frappe Learning is a learning system that helps users structure their  ...)
-	TODO: check
+	NOT-FOR-US: Frappe Learning is a learning system
 CVE-2025-64706 (Typebot is an open-source chatbot builder. In version 3.9.0 up to but  ...)
-	TODO: check
+	NOT-FOR-US: Typebot
 CVE-2025-64705 (Frappe Learning is a learning system that helps users structure their  ...)
-	TODO: check
+	NOT-FOR-US: Frappe Learning is a learning system
 CVE-2025-64703 (MaxKB is an open-source AI assistant for enterprise. In versions prior ...)
-	TODO: check
+	NOT-FOR-US: MaxKB
 CVE-2025-64525 (Astro is a web framework. In Astro versions 2.16.0 up to but excluding ...)
-	TODO: check
+	NOT-FOR-US: Astro
 CVE-2025-64523 (File Browser provides a file managing interface within a specified dir ...)
 	TODO: check
 CVE-2025-64511 (MaxKB is an open-source AI assistant for enterprise. In versions prior ...)
-	TODO: check
+	NOT-FOR-US: MaxKB
 CVE-2025-64482 (Tuleap is an Open Source Suite to improve management of software devel ...)
 	NOT-FOR-US: Tuleap
 CVE-2025-64429 (DuckDB is a SQL database management system. DuckDB implemented block-b ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/21351902fa89728803a3f08e2c0112222c7a8b28

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/21351902fa89728803a3f08e2c0112222c7a8b28
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251113/d72d2dd5/attachment.htm>
