[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Nov 15 20:13:11 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b8e2dfcd by security tracker role at 2025-11-15T20:13:04+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,23 @@
+CVE-2025-13221 (A weakness has been identified in Intelbras UnniTI 24.07.11. The affec ...)
+	TODO: check
+CVE-2025-13210 (A security vulnerability has been detected in itsourcecode Inventory M ...)
+	TODO: check
+CVE-2025-13209 (A weakness has been identified in bestfeng oa_git_free up to 9.5. This ...)
+	TODO: check
+CVE-2025-13208 (A security flaw has been discovered in FantasticLBP Hotels Server up t ...)
+	TODO: check
+CVE-2025-13203 (A weakness has been identified in code-projects Simple Cafe Ordering S ...)
+	TODO: check
+CVE-2025-13202 (A security flaw has been discovered in code-projects Simple Cafe Order ...)
+	TODO: check
+CVE-2025-13201 (A vulnerability was identified in code-projects Simple Cafe Ordering S ...)
+	TODO: check
+CVE-2025-13200 (A vulnerability was determined in SourceCodester Farm Management Syste ...)
+	TODO: check
+CVE-2025-13199 (A vulnerability was found in code-projects Email Logging Interface 2.0 ...)
+	TODO: check
+CVE-2025-13198 (A vulnerability has been found in DouPHP up to 1.8 Release 20251022. T ...)
+	TODO: check
 CVE-2025-9317 (The vulnerability, if exploited, could allow a miscreant with read  ac ...)
 	NOT-FOR-US: AVEVA
 CVE-2025-8994 (The Project Management, Team Collaboration, Kanban Board, Gantt Charts ...)
@@ -623,7 +643,7 @@ CVE-2016-15055 (JVC VN-T IP-camera models firmware versions up to 2016-08-22 (co
 	NOT-FOR-US: JVC VN-T IP-camera models firmware
 CVE-2011-10034 (AUTOMGEN versions up to and including 8.0.0.7 (also referenced as 8.02 ...)
 	NOT-FOR-US: AUTOMGEN
-CVE-2025-12983
+CVE-2025-12983 (GitLab has remediated an issue in GitLab CE/EE affecting all versions  ...)
 	- gitlab <unfixed>
 CVE-2025-7736 (GitLab has remediated an issue in GitLab CE/EE affecting all versions  ...)
 	- gitlab <not-affected> (Vulnerable code not yet present)
@@ -3233,6 +3253,7 @@ CVE-2025-55108 (The Control-M/Agent is vulnerable to unauthenticated remote code
 CVE-2025-52602 (HCL BigFix Query is affected by a sensitive information disclosure in  ...)
 	NOT-FOR-US: HCL
 CVE-2025-47151 (A type confusion vulnerability exists in the lasso_node_impl_init_from ...)
+	{DSA-6058-1}
 	- lasso 2.9.0-1
 	NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2025-2193
 	NOTE: https://git.entrouvert.org/lasso.git/commit/?id=8d12e6263fd6add923469bd5704e05a1ccfa8c69 (v2.9.0)
@@ -3241,12 +3262,14 @@ CVE-2025-46784 (A denial of service vulnerability exists in the lasso_node_init_
 	NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2025-2195
 	NOTE: https://git.entrouvert.org/lasso.git/commit/?id=8a588a8acb4a9cb7c7cb4dfd91a8278264a6d15a (v2.8.1)
 CVE-2025-46705 (A denial of service vulnerability exists in the g_assert_not_reached f ...)
+	{DSA-6058-1}
 	- lasso 2.9.0-1
 	NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2025-2196
 	NOTE: https://git.entrouvert.org/lasso.git/commit/?id=37836a9cf14234ce720edb5c43f6ed0491f72cf6 (v2.9.0)
 CVE-2025-46424 (Dell CloudLink, versions prior to 8.2, contain use of a Cryptographic  ...)
 	NOT-FOR-US: Dell / EMC
 CVE-2025-46404 (A denial of service vulnerability exists in the lasso_provider_verify_ ...)
+	{DSA-6058-1}
 	- lasso 2.9.0-1
 	NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2025-2194
 	NOTE: https://git.entrouvert.org/lasso.git/commit/?id=c880cad13732bcb50cbd9fa376ea39edb53e7d68 (v2.9.0)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b8e2dfcdd6fbc96be869d57690e333fa41f28ccf

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b8e2dfcdd6fbc96be869d57690e333fa41f28ccf
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251115/da172f07/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list